316 matches found
EUVD-2024-54772
Malicious code in bioql PyPI...
GhostRedirector Hacks 65 Windows Servers Using Rungan Backdoor and Gamshen IIS Module
Cybersecurity researchers have lifted the lid on a previously undocumented threat cluster dubbed GhostRedirector that has managed to compromise at least 65 Windows servers primarily located in Brazil, Thailand, and Vietnam. The attacks, per Slovak cybersecurity company ESET, led to the deployment...
Microsoft Windows Ancillary Function Driver for WinSock 代码问题漏洞
Microsoft Windows Ancillary Function Driver for WinSock is a helper function driver for Winsock from Microsoft Corporation USA. A code issue vulnerability exists in Microsoft Windows Ancillary Function Driver for WinSock. An attacker could exploit the vulnerability to elevate privileges. The...
CVE-2024-43394
Server-Side Request Forgery SSRF in Apache HTTP Server on Windows allows to potentially leak NTLM hashes to a malicious server via modrewrite or apache expressions that pass unvalidated request input. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.63. Note: The Apache HTTP Server...
CVE-2024-43394 Apache HTTP Server: SSRF on Windows due to UNC paths
Server-Side Request Forgery SSRF in Apache HTTP Server on Windows allows to potentially leak NTLM hashes to a malicious server via modrewrite or apache expressions that pass unvalidated request input. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.63. Note: The Apache HTTP Server...
CVE-2024-43394 Apache HTTP Server: SSRF on Windows due to UNC paths
Server-Side Request Forgery SSRF in Apache HTTP Server on Windows allows to potentially leak NTLM hashes to a malicious server via modrewrite or apache expressions that pass unvalidated request input. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.63. Note: The Apache HTTP Server...
CVE-2024-43394 Apache HTTP Server: SSRF on Windows due to UNC paths
Server-Side Request Forgery SSRF in Apache HTTP Server on Windows allows to potentially leak NTLM hashes to a malicious server via modrewrite or apache expressions that pass unvalidated request input. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.63. Note: The Apache HTTP Server...
CVE-2024-43394
Summary of CVE-2024-43394 : A Server-Side Request Forgery (SSRF) in Apache HTTP Server on Windows could leak NTLM hashes via unvalidated input passed through mod_rewrite or Apache expressions. Affected versions are 2.4.0 through 2.4.63. The issue stems from how UNC paths may be unwittingly used, ...
Microsoft Universal Print 资源管理错误漏洞
Microsoft Universal Print is a cloud-based printing solution from Microsoft Corporation USA that enables a simple, rich and secure printing experience. A resource management error vulnerability exists in Microsoft Universal Print. An attacker could exploit the vulnerability to elevate privileges...
CVE-2024-3037
An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege...
CVE-2024-4712
An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled. This specific flaw exists within the image-handler process, which can incorrectly create files that don’t exist when a maliciously formed payload is provided. This can lead ...
Microsoft Windows Kerberos 信息泄露漏洞
Microsoft Windows Kerberos is a software for authentication in network clusters from Microsoft Corporation, U.S.A. Kerberos also serves as a network authentication protocol designed to provide strong authentication services to client/server applications through a key system. An information...
Microsoft DWM Core Library 安全漏洞
Microsoft DWM Core Library is a core library for Microsoft windows from Microsoft Corporation, USA. A security vulnerability exists in the Microsoft DWM Core Library. An attacker can exploit the vulnerability to elevate privileges. The following products and versions are affected:Windows Server...
Exploit for OS Command Injection in Php
CVE-2024-4577 Overview CVE-2024-4577 is a security vulner...
PaperCut MF < 23.0.9 Multiple Vulnerabilities
The version of PaperCut MF installed on the remote Windows host is affected by multiple vulnerabilities, as follows: - An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must...
PaperCut NG < 23.0.9 Multiple Vulnerabilities
The version of PaperCut NG installed on the remote Windows host is affected by multiple vulnerabilities, as follows: - An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must...
Microsoft Windows Online Certificate Status Protocol 资源管理错误漏洞
Microsoft Windows Online Certificate Status Protocol is a network protocol for verifying the status of digital certificates from Microsoft Corporation USA. A resource management error vulnerability exists in Microsoft Windows Online Certificate Status Protocol. An attacker could exploit this...
CVE-2024-8405
An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled. This specific flaw exists within the web-print.exe process, which can incorrectly create files that don’t exist when a maliciously formed payload is provided. This can be us...
CVE-2024-8404
CVE-2024-8404 describes an arbitrary file deletion vulnerability in PaperCut NG/MF on Windows servers with Web Print enabled. An attacker must have local login access and be able to run low-privilege code via the web-print-hot-folder to delete targeted files. The issue is tied to a split from CVE...
CVE-2024-8404 Arbitrary File Deletion in PaperCut NG/MF Web Print Hot folder
An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege...