Microsoft Windows: Screen saver timeout

This test checks the setting for policy OpenVAS Vulnerability Test $Id: wintimoutscreensaver.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for Screen saver timeout users listed in HKU Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This...

broadcast-jenkins-discover NSE Script

Discovers Jenkins servers on a LAN by sending a discovery broadcast probe. For more information about Jenkins auto discovery, see: Script Arguments broadcast-jenkins.address address to which the probe packet is sent. default: 255.255.255.255 broadcast-jenkins.timeout socket timeout default: 5s...

NetScaler Gateway : Radius Authentication Fails Intermittently Despite RADIUS Server Accept

NetScaler Gateway Authentication Scenario 1: Gateway Page would present the authentication to be done in 2 factor. First the user enters the LDAP username and password. Now there would be 2 options either user can do the touch authentication present in the MFA Application or else can wait for the...

Security Bulletin: Privilege Escalation vulnerability affects Cognos Analytics (CVE-2016-8960)

Summary Cognos Analytics is vulnerable to a privilege escalation attack that could grant a user the Capabilities of another. Vulnerability Details CVEID: CVE-2016-8960 DESCRIPTION: IBM Cognos Business Intelligence could allow a user with lower privilege Capabilities to adopt the Capabilities of a...

Error: "Cannot Complete Your Request" Due to Incorrect Session Timeout Settings on StoreFront

The following error is displayed due to incorrect session time out settings on StoreFront: Cannot Complete Your Request...

GHSA-RC8H-3FV6-PXV8 Denial of Service in hapi

Versions of hapi prior to 11.1.3 are affected by a denial of service vulnerability. The vulnerability is triggered when certain input is passed into the If-Modified-Since or Last-Modified headers. This causes an 'illegal access' exception to be raised, and instead of sending a HTTP 500 error back...

OWASP Joomla Vulnerability Scanner Project: JoomScan

OWASP JoomScan short for Joomla Vulnerability Scanner is an opensource project in perl programming language to detect Joomla CMS vulnerabilities and analysis. If you want to do a penetration test on a Joomla CMS, OWASP JoomScan is Your best shot ever! This Project is being faster than ever and...

Error: "HTTP/1.1 Gateway Timeout" When Using NetScaler with Secure Web

After launching Secure Web Gateway, some websites report an error message "HTTP/1.1 Gateway Timeout". This is common with ADFS...

neobasnet.timeout.ru XSS vulnerability

Open Bug Bounty ID: OBB-584022 Description| Value ---|--- Affected Website:| neobasnet.timeout.ru Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Cisco Umbrella Dashboard Session Expiration Issue

Cisco Umbrella uses the internet infrastructure to block connections to malicious destinations before any connections to those destinations can be established. Cisco Umbrella also provides visibility into internet activity across all devices and all ports, even when users are no longer connected ...

Workspace Environment Management (WEM): Active Directory search improvements in WEM 4.6

Introduction The Active Directory AD system built into the WEM Administration Console and WEM Infrastructure Server has been refactored in WEM 4.6 to improve performance and stability. Although AD searches performed by the WEM Console and WEM Infrastructure server in previous WEM versions have...

CVE-2018-7675

In NetIQ Sentinel before 8.1.x, a Sentinel user is logged into the Sentinel Web Interface. After performing some tasks within Sentinel the user does not log out but does go idle for a period of time. This in turn causes the interface to timeout so that it requires the user to re-authenticate. If...

Non-reliable Nessus scan results

Do you perform massive unauthenticated vulnerability scans with Nessus? It might be a bad idea. It seems that Nessus is not reliable enough to assess hundreds and thousands of hosts in one scan and can lose some valuable information. The thing is that sometimes Nessus does not detect open ports a...

ABRT - raceabrt Privilege Escalation Exploit

Exploit for linux platform in category local exploits This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ABRT raceabrt Privilege Escalation', 'Description' = %q This module attempts to gain root...

SDX backups not being transferred back to MAS appliance

Backups seems to be started on SDX but not getting transferred to MAS. You can see the backups are created on the SDX but they are never transferred back to MAS server. Backups present on the SDX: You will see these errors in the MAS logs: mpsconfig.log: Thursday, 11 Jan 18 07:41:33.394 +0100 Err...

Security update for docker, docker-runc, containerd, golang-github-docker-libnetwork (important)

This update for docker, docker-runc, containerd, golang-github-docker-libnetwork fixes several issues. These security issues were fixed: - CVE-2017-16539: The DefaultLinuxSpec function in oci/defaults.go docker did not block /proc/scsi pathnames, which allowed attackers to trigger data loss when...

openSUSE Security Update : docker / docker-runc / containerd / etc (openSUSE-2018-152)

This update for docker, docker-runc, containerd, golang-github-docker-libnetwork fixes several issues. These security issues were fixed : - CVE-2017-16539: The DefaultLinuxSpec function in oci/defaults.go docker did not block /proc/scsi pathnames, which allowed attackers to trigger data loss when...

AppLayering 4.x - Unable to Publish Image to PVS - The operation timed out

When trying to publish an image in PVS, you will see the following error: 2017-11-15T16:04:11.104Z ERROR: pvs-connector/10307 on localhost.localdomain: reqNum=1663 c33700a0-ca47-11e7-af9c-83455e914109 - Operation 'pvs:UploadDiskOperation' has failed: Failed copying file to D:\xxxx\xxxxxxxxxx.vhd...

PVS 7.15 - Unable to boot target devices due to TFTP timeout error

While booting up PVS 7.15 target devices, it fails with "PXE - E32: TFTP open timeout"...

CVE-2017-1000411

OpenFlow Plugin and OpenDayLight Controller versions Nitrogen, Carbon, Boron, Robert Varga, Anil Vishnoi contain a flaw when multiple 'expired' flows take up the memory resource of CONFIG DATASTORE which leads to CONTROLLER shutdown. If multiple different flows with 'idle-timeout' and...