βΌ CVE-2020-1660 βΌ
π Read
via "National Vulnerability Database".
When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of packets processed by the Multiservices PIC Management Daemon (mspmand) process, responsible for managing "URL Filtering service", may crash, causing the Services PIC to restart. While the Services PIC is restarting, all PIC services including DNS filtering service (DNS sink holing) will be bypassed until the Services PIC completes its boot process. This vulnerability might allow an attacker to cause an extended Denial of Service (DoS) attack against the device and to cause clients to be vulnerable to DNS based attacks by malicious DNS servers when they send DNS requests through the device. As a result, devices which were once protected by the DNS Filtering service are no longer protected and at risk of exploitation. This issue affects Juniper Networks Junos OS: 17.3 versions prior to 17.3R3-S8; 18.3 versions prior to 18.3R3-S1; 18.4 versions prior to 18.4R3; 19.1 versions prior to 19.1R3; 19.2 versions prior to 19.2R2; 19.3 versions prior to 19.3R3. This issue does not affect Juniper Networks Junos OS 17.4, 18.1, and 18.2.π Read
via "National Vulnerability Database".
βΌ CVE-2020-16936 βΌ
π Read
via "National Vulnerability Database".
An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Backup Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-16912, CVE-2020-16972, CVE-2020-16973, CVE-2020-16974, CVE-2020-16975, CVE-2020-16976.π Read
via "National Vulnerability Database".
βΌ CVE-2020-16863 βΌ
π Read
via "National Vulnerability Database".
A denial of service vulnerability exists in Windows Remote Desktop Service when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Service Denial of Service Vulnerability'.π Read
via "National Vulnerability Database".
βΌ CVE-2020-16995 βΌ
π Read
via "National Vulnerability Database".
An elevation of privilege vulnerability exists in Network Watcher Agent virtual machine extension for Linux, aka 'Network Watcher Agent Virtual Machine Extension for Linux Elevation of Privilege Vulnerability'.π Read
via "National Vulnerability Database".
βΌ CVE-2020-16937 βΌ
π Read
via "National Vulnerability Database".
An information disclosure vulnerability exists when the .NET Framework improperly handles objects in memory, aka '.NET Framework Information Disclosure Vulnerability'.π Read
via "National Vulnerability Database".
βΌ CVE-2020-16901 βΌ
π Read
via "National Vulnerability Database".
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-16938.π Read
via "National Vulnerability Database".
βΌ CVE-2020-16946 βΌ
π Read
via "National Vulnerability Database".
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-16945.π Read
via "National Vulnerability Database".
βΌ CVE-2020-16927 βΌ
π Read
via "National Vulnerability Database".
A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability'.π Read
via "National Vulnerability Database".
βΌ CVE-2020-16969 βΌ
π Read
via "National Vulnerability Database".
An information disclosure vulnerability exists in how Microsoft Exchange validates tokens when handling certain messages, aka 'Microsoft Exchange Information Disclosure Vulnerability'.π Read
via "National Vulnerability Database".
βΌ CVE-2020-16877 βΌ
π Read
via "National Vulnerability Database".
An elevation of privilege vulnerability exists when Microsoft Windows improperly handles reparse points, aka 'Windows Elevation of Privilege Vulnerability'.π Read
via "National Vulnerability Database".
βΌ CVE-2020-27197 βΌ
π Read
via "National Vulnerability Database".
** DISPUTED ** TAXII libtaxii through 1.1.117, as used in EclecticIQ OpenTAXII through 0.2.0 and other products, allows SSRF via an initial http:// substring to the parse method, even when the no_network setting is used for the XML parser. NOTE: the vendor points out that the parse method "wraps the lxml library" and that this may be an issue to "raise ... to the lxml group."π Read
via "National Vulnerability Database".
βΌ CVE-2020-13893 βΌ
π Read
via "National Vulnerability Database".
Multiple stored cross-site scripting (XSS) vulnerabilities in Sage EasyPay 10.7.5.10 allow authenticated attackers to inject arbitrary web script or HTML via multiple parameters through Unicode Transformations (Best-fit Mapping), as demonstrated by the full-width variants of the less-than sign (%EF%BC%9C) and greater-than sign (%EF%BC%9E).π Read
via "National Vulnerability Database".
β Microsoft: Most-Imitated Brand for Phishing Emails β
π Read
via "Threat Post".
The shift to remote working spurred Microsoft and Amazon to the top of the heap for cybercriminals to use as lures in the third quarter.π Read
via "Threat Post".
Threat Post
Microsoft is the Most-Imitated Brand for Phishing Emails
The shift to remote working spurred Microsoft and Amazon to the top of the heap for cybercriminals to use as lures in the third quarter.
β Naked Security Live β Ping of Death: are you at risk? β
π Read
via "Naked Security".
Here's the latest Naked Security Live video - enjoy (and please share with your friends)!π Read
via "Naked Security".
Naked Security
Naked Security Live β Ping of Death: are you at risk?
Hereβs the latest Naked Security Live video β enjoy (and please share with your friends)!
βΌ CVE-2020-7745 βΌ
π Read
via "National Vulnerability Database".
This affects the package MintegralAdSDK before 6.6.0.0. The SDK distributed by the company contains malicious functionality that acts as a backdoor. Mintegral and their partners (advertisers) can remotely execute arbitrary code on a user device.π Read
via "National Vulnerability Database".
π΄ A New Risk Vector: The Enterprise of Things π΄
π Read
via "Dark Reading".
Billions of devices -- including security cameras, smart TVs, and manufacturing equipment -- are largely unmanaged and increase an organization's risk.π Read
via "Dark Reading".
Dark Reading
A New Risk Vector: The Enterprise of Things
Billions of devices -- including security cameras, smart TVs, and manufacturing equipment -- are largely unmanaged and increase an organization's risk.
β Hackers Claim Source Code Theft for Watch Dogs: Legion, Albion β
π Read
via "Threat Post".
In both cases, cybercriminals claim to have reams of information for the popular gaming titles.π Read
via "Threat Post".
Threat Post
Game Titles Watch Dogs: Legion, Albion Both Targeted by Hackers
In both cases, cybercriminals claim to have reams of information for the popular gaming titles.
βΌ CVE-2020-15909 βΌ
π Read
via "National Vulnerability Database".
SolarWinds N-central through 2020.1 allows session hijacking.π Read
via "National Vulnerability Database".
βΌ CVE-2020-15910 βΌ
π Read
via "National Vulnerability Database".
SolarWinds N-central through 12.3 does not include the HTTPOnly flag in the Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.π Read
via "National Vulnerability Database".
βΌ CVE-2020-13778 βΌ
π Read
via "National Vulnerability Database".
rConfig 3.9.4 and earlier allows authenticated code execution (of system commands) by sending a forged GET request to lib/ajaxHandlers/ajaxAddTemplate.php or lib/ajaxHandlers/ajaxEditTemplate.php.π Read
via "National Vulnerability Database".
π¦Ώ Microsoft now the most impersonated brand in phishing attacks π¦Ώ
π Read
via "Tech Republic".
Almost 20% of phishing campaigns last quarter spoofed Microsoft as many people continue to work remotely due to the coronavirus pandemic, says Check Point Research.π Read
via "Tech Republic".