16 matches found
EUVD-2008-2057
Malware in sbrugna...
EUVD-2015-6307
Malware in sbrugna...
Vulnerabilities fixed in Progress MOVEit
Progress has fixed vulnerabilities in MOVEit Transfer and MOVEit Gateway. During the vulnerability investigation, a vulnerability was also discovered in an unnamed Third-Party component in use by MOVEit Transfer. The vulnerabilities are located in the SFTP module of the affected applications and...
Cisco Nexus 3000 and 9000 Series Switches Port Channel ACL Programming (cisco-sa-nxos-po-acl-TkyePgvL)
A vulnerability exists in the access control list ACL programming for port channel subinterfaces of Cisco Nexus 3000 and 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to send traffic that should be blocked through an affected device. Please see the...
Gmailc2 - A Fully Undetectable C2 Server That Communicates Via Google SMTP To Evade Antivirus Protections And Network Traffic Restrictions
A Fully Undetectable C2 Server That Communicates Via Google SMTP to evade Antivirus Protections and Network Traffic Restrictions Note: This RAT communicates Via Gmail SMTP or u can use any other smtps as well but Gmail SMTP is valid because most of the companies block unknown traffic so gmail...
The vulnerability of the ARP Policer implementation on Juniper Networks’ Junos OS allows a perpetrator to circumvent traffic restrictions.
The vulnerability of the ARP Policer traffic filtering technology implemented in Juniper Networks’ Junos OS is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow a remote attacker to circumvent traffic restrictions...
Enhance Imperva Cloud WAF with a New Management Tool in the Imperva GitHub
Imperva recently launched the Imperva GitHub where our global community can access tools, code repositories and other neat resources that aid collaboration and streamline development. The nice thing about these tools is that you can clone them and customize them with whatever functionality you...
The vulnerability of the Cisco IOS operating system allows a hacker to circumvent restrictions on access to network traffic transmitted via tunnels.
The vulnerability of the Cisco IOS operating system is related to deficiencies in the access control list management process. Exploiting this vulnerability allows a malicious actor to circumvent restrictions on network traffic transmitted through tunnels...
Design/Logic Flaw
Cisco IOS 15.204M and 15.403M lets physical-interface ACLs supersede virtual PPP interface ACLs, which allows remote authenticated users to bypass intended network-traffic restrictions in opportunistic circumstances by using PPP, aka Bug ID CSCur61303...
Design/Logic Flaw
Cisco IOS 15.204M6 and 15.403S lets physical-interface ACLs supersede tunnel-interface ACLs, which allows remote attackers to bypass intended network-traffic restrictions in opportunistic circumstances by using a tunnel, aka Bug ID CSCur01042...
The vulnerability of the Windows operating system allows a hacker to circumvent restrictions related to network traffic.
The vulnerability of the Hyper-V operating system’s service is related to errors in the code. Exploiting this vulnerability allows an attacker, operating locally, to circumvent network traffic restrictions by using a specially crafted application that exploits errors in access control list ACL...
CVE-2015-2534
CVE-2015-2534 affects Windows Hyper-V on Windows 8.1, Windows Server 2012 R2, and Windows 10. The issue is improper processing of ACL settings in Hyper-V, enabling a local attacker to bypass network-traffic restrictions via a crafted application (security feature bypass). Public advisories and up...
KLA10433 Multiple vulnerabilities in Pidgin
Multiple serious vulnerabilities have been found in Pidgin. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary programs and other unknown impact. Below is a complete list of vulnerabilities 1. Improper traffic restrictions can be exploited remotely via...
CVE-2009-1184
The selinuxippostrouteiptablescompat function in security/selinux/hooks.c in the SELinux subsystem in the Linux kernel before 2.6.27.22, and 2.6.28.x before 2.6.28.10, when compatnet is enabled, omits calls to avchasperm for the 1 node and 2 port, which allows local users to bypass intended...
Design/Logic Flaw
Unspecified vulnerability in Cisco Intrusion Prevention System IPS 5.x before 5.18E2 and 6.x before 6.05E2, when inline mode and jumbo Ethernet support are enabled, allows remote attackers to cause a denial of service panic, and possibly bypass intended restrictions on network traffic, via a...
CVE-2008-2060
Cisco IPS Jumbo Frame DoS (CVE-2008-2060) affects Cisco Intrusion Prevention System versions 5.x before 5.1(8)E2 and 6.x before 6.0(5)E2 when inline mode and jumbo Ethernet support are enabled. A specific sequence of jumbo Ethernet frames on a gigabit inline-deployed platform can cause a kernel p...