EUVD-2019-2651

Malware in sbrugna...

CVE-2019-10937

A vulnerability has been identified in SIMATIC TDC CP51M1 All versions V1.1.7. An attacker with network access to the device could cause a Denial-of-Service condition by sending a specially crafted UDP packet. The vulnerability affects the UDP communication of the device. The security vulnerabili...

Crypto Miners Using Tox P2P Messenger as Command and Control Server

Threat actors have begun to use the Tox peer-to-peer instant messaging service as a command-and-control method, marking a shift from its earlier role as a contact method for ransomware negotiations. The findings from Uptycs, which analyzed an Executable and Linkable Format ELF artifact "72client"...

CVE-2019-10937

A vulnerability has been identified in SIMATIC TDC CP51M1 All versions V1.1.7. An attacker with network access to the device could cause a Denial-of-Service condition by sending a specially crafted UDP packet. The vulnerability affects the UDP communication of the device. The security vulnerabili...

Code injection

A vulnerability has been identified in SIMATIC TDC CP51M1 All versions V1.1.7. An attacker with network access to the device could cause a Denial-of-Service condition by sending a specially crafted UDP packet. The vulnerability affects the UDP communication of the device. The security vulnerabili...

CVE-2019-10937

A vulnerability has been identified in SIMATIC TDC CP51M1 All versions V1.1.7. An attacker with network access to the device could cause a Denial-of-Service condition by sending a specially crafted UDP packet. The vulnerability affects the UDP communication of the device. The security vulnerabili...

ICSA-19-253-05 Siemens SIMATIC TDC CP51M1

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SIMATIC TDC CP51M1 Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could create a denial-of-service condition within UDP...

Netcore Netis Routers - UDP Backdoor Access

Netcore Netis Routers - UDP Backdoor Access !/usr/bin/python -- coding: utf8 -- NETCORE / NETDIS UDP 53413 BACKDOOR https://netisscan.shadowserver.org/ http://blog.trendmicro.com/trendlabs-security-intelligence/netis-routers-leave-wide-open-backdoor/ https://www.seebug.org/vuldb/ssvid-90227 impor...

Cry Ransomware Using UDP, Imgur, Google Maps

Ransomware purporting to come from a phony government agency, something called the Central Security Treatment Organization, has been making the rounds, researchers say. The ransomware, which is already known by a number of names including Cry, CSTO ransomware, or Central Security Treatment...

Patched BadTunnel Windows Bug Has 'Extensive' Impact

Among the more than three dozen vulnerabilities Microsoft patched on Tuesday was a fix for a bug that the researcher who found it said has “probably the widest impact in the history of Windows.” “There were also some wide impact vulnerabilities before, but maybe not like this extensive,” Chinese...

Kankun Smart Socket / Mobile App Hardcoded AES Key

Hi List, Vulnerability ============= Hardcoded AES 256 bit key used in Kankun IoT/Smart socket and its mobile App Vulnerability Description ========================== The kankun smart socket device and the mobile app use a hardcoded AES 256 bit key to encrypt the commands and responses between th...

ZKSoftware ZK5000 - Remote Information Disclosure

ZKSoftware ZK5000 - Remote Information Disclosure source: https://www.securityfocus.com/bid/39789/info The ZKSoftware ZK5000 device is prone to a remote information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Respons...

SIP Invite Spoof

This module will create a fake SIP invite request making the targeted device ring and display fake caller id information. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SIP Invite Spoof',...

Cauldron Chaser 1.41.5 - Remote Denial of Service (1)

Cauldron Chaser 1.41.5 - Remote Denial of Service 1 source: https://www.securityfocus.com/bid/9567/info Chaser has been reported to be prone to a denial of service vulnerability. This issue is caused by a lack of input validation of a size parameter specified in UDP network communication packets...

Cauldron Chaser 1.41.5 - Remote Denial of Service (2)

Cauldron Chaser 1.41.5 - Remote Denial of Service 2 source: https://www.securityfocus.com/bid/9567/info Chaser has been reported to be prone to a denial of service vulnerability. This issue is caused by a lack of input validation of a size parameter specified in UDP network communication packets...

Cauldron Chaser 1.4/1.5 - Remote Denial of Service (2)

source: https://www.securityfocus.com/bid/9567/info Chaser has been reported to be prone to a denial of service vulnerability. This issue is caused by a lack of input validation of a size parameter specified in UDP network communication packets. The process will attempt to read the amount of data...

Talk Service (talkd, in.talk, ntalk) Detection

The remote service responded to a talk request. A talk server also known as 'talkd', 'in.talk', or 'ntalk' is a service that works over UDP and notifies a user when someone wants to initiate a conversation. Note that talk is nowadays considered by many to be obsolete. C Tenable Network Security,...