βΌ CVE-2019-14480 βΌ
π Read
via "National Vulnerability Database".
AdRem NetCrunch 10.6.0.4587 has an Improper Session Handling vulnerability in the NetCrunch web client, which can lead to an authentication bypass or escalation of privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25621 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in SolarWinds N-Central 12.3.0.670. The local database does not require authentication: security is only based on ability to access a network interface. The database has keys and passwords.π Read
via "National Vulnerability Database".
βΌ CVE-2020-5360 βΌ
π Read
via "National Vulnerability Database".
Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25620 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in SolarWinds N-Central 12.3.0.670. Hard-coded Credentials exist by default for local user accounts named support@n-able.com and nableadmin@n-able.com. These allow logins to the N-Central Administrative Console (NAC) and/or the regular web interface.π Read
via "National Vulnerability Database".
βΌ CVE-2020-14248 βΌ
π Read
via "National Vulnerability Database".
BigFix Inventory up to v10.0.2 does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie.π Read
via "National Vulnerability Database".
βΌ CVE-2020-25622 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in SolarWinds N-Central 12.3.0.670. The AdvancedScripts HTTP endpoint allows CSRF.π Read
via "National Vulnerability Database".
βΌ CVE-2020-5359 βΌ
π Read
via "National Vulnerability Database".
Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to modify and corrupt the encrypted data.π Read
via "National Vulnerability Database".
βΌ CVE-2020-26198 βΌ
π Read
via "National Vulnerability Database".
Dell EMC iDRAC9 versions prior to 4.32.10.00 and 4.40.00.00 contain a reflected cross-site scripting vulnerability in the iDRAC9 web application. A remote attacker could potentially exploit this vulnerability to run malicious HTML or JavaScript in a victimΓ’β¬β’s browser by tricking a victim in to following a specially crafted link.π Read
via "National Vulnerability Database".
βΌ CVE-2020-14254 βΌ
π Read
via "National Vulnerability Database".
TLS-RSA cipher suites are not disabled in HCL BigFix Inventory up to v10.0.2. If TLS 2.0 and secure ciphers are not enabled then an attacker can passively record traffic and later decrypt it.π Read
via "National Vulnerability Database".
βΌ CVE-2020-4008 βΌ
π Read
via "National Vulnerability Database".
The installer of the macOS Sensor for VMware Carbon Black Cloud prior to 3.5.1 handles certain files in an insecure way. A malicious actor who has local access to the endpoint on which a macOS sensor is going to be installed, may overwrite a limited number of files with output from the sensor installation.π Read
via "National Vulnerability Database".
π Zeek 3.2.3 π
π Read
via "Packet Storm Security".
Zeek is a powerful network analysis framework that is much different from the typical IDS you may know. While focusing on network security monitoring, Zeek provides a comprehensive platform for more general network traffic analysis as well. Well grounded in more than 15 years of research, Zeek has successfully bridged the traditional gap between academia and operations since its inception. Today, it is relied upon operationally in particular by many scientific environments for securing their cyber-infrastructure. Zeek's user community includes major universities, research labs, supercomputing centers, and open-science communities. This is the source code release.π Read
via "Packet Storm Security".
Packetstormsecurity
Zeek 3.2.3 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
β Ryuk, Egregor Ransomware Attacks Leverage SystemBC Backdoor β
π Read
via "Threat Post".
In the past few months researchers have detected hundreds of attempted SystemBC deployments globally, as part of recent Ryuk and Egregor ransomware attacks.π Read
via "Threat Post".
Threat Post
Ryuk, Egregor Ransomware Attacks Leverage SystemBC Backdoor
In the past few months researchers have detected hundreds of attempted SystemBC deployments globally, as part of recent Ryuk and Egregor ransomware attacks.
π΄ Why the Weakest Links Matter π΄
π Read
via "Dark Reading".
The recent FireEye and SolarWinds compromises reinforce the fact that risks should be understood, controls should be in place, and care should be taken at every opportunity.π Read
via "Dark Reading".
Dark Reading
Why the Weakest Links Matter
The recent FireEye and SolarWinds compromises reinforce the fact that risks should be understood, controls should be in place, and care should be taken at every opportunity.
π΄ Senior Managers Twice as Likely to Share Work Devices With Outsiders π΄
π Read
via "Dark Reading".
New survey finds top C-suite managers are much shakier on security than their junior counterparts.π Read
via "Dark Reading".
Dark Reading
Senior Managers Twice as Likely to Share Work Devices With Outsiders
New survey finds top C-suite managers are much shakier on security than their junior counterparts.
βΌ CVE-2020-7781 βΌ
π Read
via "National Vulnerability Database".
This affects the package connection-tester before 0.2.1. The injection point is located in line 15 in index.js. The following PoC demonstrates the vulnerability:π Read
via "National Vulnerability Database".
βΌ CVE-2019-14479 βΌ
π Read
via "National Vulnerability Database".
AdRem NetCrunch 10.6.0.4587 allows Remote Code Execution. In the NetCrunch web client, a read-only administrator can execute arbitrary code on the server running the NetCrunch server software.π Read
via "National Vulnerability Database".
βΌ CVE-2019-14481 βΌ
π Read
via "National Vulnerability Database".
AdRem NetCrunch 10.6.0.4587 has a Cross-Site Request Forgery (CSRF) vulnerability in the NetCrunch web client. Successful exploitation requires a logged-in user to open a malicious page and leads to account takeover.π Read
via "National Vulnerability Database".
βΌ CVE-2020-7837 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in ML Report Program. There is a stack-based buffer overflow in function sub_41EAF0 at MLReportDeamon.exe. The function will call vsprintf without checking the length of strings in parameters given by attacker. And it finally leads to a stack-based buffer overflow via access to crafted web page. This issue affects: Infraware ML Report 2.19.312.0000.π Read
via "National Vulnerability Database".
βΌ CVE-2019-14476 βΌ
π Read
via "National Vulnerability Database".
AdRem NetCrunch 10.6.0.4587 has a Server-Side Request Forgery (SSRF) vulnerability in the NetCrunch server. Every user can trick the server into performing SMB requests to other systems.π Read
via "National Vulnerability Database".
βΌ CVE-2019-14478 βΌ
π Read
via "National Vulnerability Database".
AdRem NetCrunch 10.6.0.4587 has a stored Cross-Site Scripting (XSS) vulnerability in the NetCrunch web client. The user's input data is not properly encoded when being echoed back to the user. This data can be interpreted as executable code by the browser and allows an attacker to execute JavaScript code in the context of the user's browser if the victim opens or searches for a node whose "Display Name" contains an XSS payload.π Read
via "National Vulnerability Database".
βΌ CVE-2020-35133 βΌ
π Read
via "National Vulnerability Database".
irfanView 4.56 contains an error processing parsing files of type .pcx. Which leads to out-of-bounds writing at i_view32+0xdb60.π Read
via "National Vulnerability Database".