βΌ CVE-2021-31227 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST request, due to an incorrect signed integer comparison. This vulnerability requires the attacker to send a malformed HTTP packet with a negative Content-Length, which bypasses the size checks and results in a large heap overflow in the wbs_multidata buffer copy.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31226 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST request, due to lack of size validation. This vulnerability requires the attacker to send a crafted HTTP POST request with a URI longer than 50 bytes. This leads to a heap overflow in wbs_post() via an strcpy() call.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31400 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in tcp_pulloutofband() in tcp_in.c in HCC embedded InterNiche 4.0.1. The TCP out-of-band urgent-data processing function invokes a panic function if the pointer to the end of the out-of-band data points outside of the TCP segment's data. If the panic function hadn't a trap invocation removed, it will enter an infinite loop and therefore cause DoS (continuous loop or a device reset).π Read
via "National Vulnerability Database".
π¦Ώ Knockoff semiconductor chips flood the enterprise market π¦Ώ
π Read
via "Tech Republic".
As the predominantly pandemic-caused global chip shortage rolls on, businesses are now facing another challenge β component scams and bogus supply-chain claims.π Read
via "Tech Republic".
TechRepublic
Knockoff semiconductor chips flood the enterprise market
As the predominantly pandemic-caused global chip shortage rolls on, businesses are now facing another challengeβcomponent scams and bogus supply-chain claims.
βΌ CVE-2021-39273 βΌ
π Read
via "National Vulnerability Database".
In XeroSecurity Sn1per 9.0 (free version), insecure permissions (0777) are set upon application execution, allowing an unprivileged user to modify the application, modules, and configuration files. This leads to arbitrary code execution with root privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2021-36762 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in HCC Embedded InterNiche NicheStack through 4.3. The tfshnd():tftpsrv.c TFTP packet processing function doesn't ensure that a filename is adequately '\0' terminated; therefore, a subsequent call to strlen for the filename might read out of bounds of the protocol packet buffer (if no '\0' byte exists within a reasonable range).π Read
via "National Vulnerability Database".
βΌ CVE-2020-35684 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in HCC Nichestack 3.0. The code that parses TCP packets relies on an unchecked value of the IP payload size (extracted from the IP header) to compute the length of the TCP payload within the TCP checksum computation function. When the IP payload size is set to be smaller than the size of the IP header, the TCP checksum computation function may read out of bounds (a low-impact write-out-of-bounds is also possible).π Read
via "National Vulnerability Database".
βΌ CVE-2021-27565 βΌ
π Read
via "National Vulnerability Database".
The web server in InterNiche NicheStack through 4.0.1 allows remote attackers to cause a denial of service (infinite loop and networking outage) via an unexpected valid HTTP request such as OPTIONS. This occurs because the HTTP request handler enters a miscoded wbs_loop() debugger hook.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39274 βΌ
π Read
via "National Vulnerability Database".
In XeroSecurity Sn1per 9.0 (free version), insecure directory permissions (0777) are set during installation, allowing an unprivileged user to modify the main application and the application configuration file. This results in arbitrary code execution with root privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31401 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in tcp_rcv() in nptcp.c in HCC embedded InterNiche 4.0.1. The TCP header processing code doesn't sanitize the value of the IP total length field (header length + data length). With a crafted IP packet, an integer overflow occurs whenever the value of the IP data length is calculated by subtracting the length of the header from the total length of the IP packet.π Read
via "National Vulnerability Database".
βΌ CVE-2020-35685 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in HCC Nichestack 3.0. The code that generates Initial Sequence Numbers (ISNs) for TCP connections derives the ISN from an insufficiently random source. As a result, an attacker may be able to determine the ISN of current and future TCP connections and either hijack existing ones or spoof future ones. (Proper ISN generation should aim to follow at least the specifications outlined in RFC 6528.)π Read
via "National Vulnerability Database".
βΌ CVE-2020-35683 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in HCC Nichestack 3.0. The code that parses ICMP packets relies on an unchecked value of the IP payload size (extracted from the IP header) to compute the ICMP checksum. When the IP payload size is set to be smaller than the size of the IP header, the ICMP checksum computation function may read out of bounds, causing a Denial-of-Service.π Read
via "National Vulnerability Database".
β Postmortem on U.S. Census Hack Exposes Cybersecurity Failures β
π Read
via "Threat Post".
Government says cybersecurity failures were many within failed January hack of U.S. Census Bureau systems.π Read
via "Threat Post".
Threat Post
Postmortem on U.S. Census Hack Exposes Cybersecurity Failures
Government says cybersecurity failures were many within failed January hack of U.S. Census Bureau systems.
π¦Ώ 83 million devices using the Kalay protocol are at risk for remote takeover. Are yours? π¦Ώ
π Read
via "Tech Republic".
ThroughTek's Kalay is used to manage security cameras, baby monitors, DVRs and more. A newly discovered flaw lets attackers watch, listen and steal recordings from hardware sold by dozens of vendors.π Read
via "Tech Republic".
TechRepublic
83 million devices using the Kalay protocol are at risk for remote takeover. Are yours?
ThroughTek's Kalay is used to manage security cameras, baby monitors, DVRs and more. A newly discovered flaw lets attackers watch, listen and steal recordings from hardware sold by dozens of vendors.
π¦Ώ It's time to retire the Social Security number π¦Ώ
π Read
via "Tech Republic".
With 40 million people having their SSN exposed during the T-Mobile hack, it's time to reconsider the usefulness of the Social Security number.π Read
via "Tech Republic".
TechRepublic
It's time to retire the Social Security number
With 40 million people having their SSN exposed during the T-Mobile hack, it's time to reconsider the usefulness of the Social Security number.
π¦Ώ 15 highest-paying certifications for 2021 π¦Ώ
π Read
via "Tech Republic".
The top certification on the annual Skillsoft list has a salary of more than $171,000. Find out what certifications you should be working toward.π Read
via "Tech Republic".
TechRepublic
15 highest-paying certifications for 2021
The top certification on the annual Skillsoft list has a salary of more than $171,000. Find out what certifications you should be working toward.
βΌ CVE-2021-27822 βΌ
π Read
via "National Vulnerability Database".
A persistent cross site scripting (XSS) vulnerability in the Add Categories module of Vehicle Parking Management System 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the Category field.π Read
via "National Vulnerability Database".
βΌ CVE-2021-27999 βΌ
π Read
via "National Vulnerability Database".
A SQL injection vulnerability was discovered in the editid parameter in Local Services Search Engine Management System Project 1.0. This vulnerability gives admin users the ability to dump all data from the database.π Read
via "National Vulnerability Database".
βΌ CVE-2021-28000 βΌ
π Read
via "National Vulnerability Database".
A persistent cross-site scripting vulnerability was discovered in Local Services Search Engine Management System Project 1.0 which allows remote attackers to execute arbitrary code via crafted payloads entered into the Name and Address fields.π Read
via "National Vulnerability Database".
βΌ CVE-2021-28002 βΌ
π Read
via "National Vulnerability Database".
A persistent cross-site scripting vulnerability was discovered in the Excerpt parameter in Textpattern CMS 4.9.0 which allows remote attackers to execute arbitrary code via a crafted payload entered into the URL field. The vulnerability is triggered by users visiting the 'Articles' page.π Read
via "National Vulnerability Database".
βΌ CVE-2021-28001 βΌ
π Read
via "National Vulnerability Database".
A cross-site scripting vulnerability was discovered in the Comments parameter in Textpattern CMS 4.8.4 which allows remote attackers to execute arbitrary code via a crafted payload entered into the URL field. The vulnerability is triggered by users visiting https://site.com/articles/welcome-to-your-site#comments-head.π Read
via "National Vulnerability Database".