Piergiorgio Venuti

MySQL / MariaDB / PerconaDB – Root Privilege Escalation Exploit ( CVE-2016-6664 / CVE-2016-5617 )

Read More

Condividi


RSS

Piu’ articoli…

Categorie …

Tags

RSS CSIRT

RSS Dark Reading:

RSS Full Disclosure

  • Backdoor.Win32.BO2K.09.b / Unauthenticated Remote Command Execution Marzo 5, 2021
    Posted by malvuln on Mar 05Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/90894ac48059687ea80e565f7529e53f.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Backdoor.Win32.BO2K.09.b Vulnerability: Unauthenticated Remote Command Execution Description: Backdoor BO2K.09.b listens on TCP ports 707 and 808. Third party adversarys who can reach the system, can execute any command on the infected […]
  • Backdoor.Win32.BO2K.ab / Local File Buffer Overflow Marzo 5, 2021
    Posted by malvuln on Mar 05Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/ca4e5a6ff033b62fa59de5a5dd24c7f9.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Backdoor.Win32.BO2K.ab Vulnerability: Local File Buffer Overflow Description: PsyConf - Program configuration tool doesnt properly check the executables it parses. Loading a specially crafted file triggers a buffer overflow overwriting ECX...
  • Backdoor.Win32.DarkKomet.irv / Insecure Permissions Marzo 5, 2021
    Posted by malvuln on Mar 05Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/341b2c3222122bd25c8509fc09534dec.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Backdoor.Win32.DarkKomet.irv Vulnerability: Insecure Permissions Description: DarkKomet.irv creates an insecure hidden dir named "updter" under c:\ drive and drops executable "updt.exe". The backdoor grants change (C)...
  • Defense in depth -- the Microsof way (part 72): "compatibility" trumps security Marzo 5, 2021
    Posted by Stefan Kanthak on Mar 05Hi @ll, the following is a shortened version of With Windows 10 20H1, Microsoft moved the function to install and update device drivers available online, i.e. on Windows Update, from Device Manager to Windows Update. Device Manager runs under arbitrary "Administrator" accounts: device driver installation started from its GUI […]
  • New BlackArch Linux Slim ISO released! Marzo 5, 2021
    Posted by Black Arch on Mar 05Dear List, We are proud to present the newest BlackArch ISO; The Slim-ISO (v2021.03.01) which has a brand new graphical installer as well as some new things, such as: - XFCE desktop environment - stable tools only - default zsh shell - awesome theme and BlackArch customized menus - […]
  • AST-2021-006: Crash when negotiating T.38 with a zero port Marzo 4, 2021
    Posted by Asterisk Security Team on Mar 04 Asterisk Project Security Advisory - AST-2021-006 Product Asterisk Summary Crash when negotiating T.38 with a zero port Nature of Advisory Remote Crash Susceptibility Remote Authenticated Sessions Severity Minor...
  • Trojan-Spy.Win32.Stealer.osh / Insecure Permissions Marzo 2, 2021
    Posted by malvuln on Mar 02Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/d58b1c2f540268bd9dd920455568d45f.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Trojan-Spy.Win32.Stealer.osh Vulnerability: Insecure Permissions Description: The malware creates an insecure dir named "DESKTOP-2C3IQHO" under c:\ drive and grants change (C) permissions to the authenticated user group. Standard users...
  • Backdoor.Win32.RemoteManipulator.fdo / Insecure Permissions Marzo 2, 2021
    Posted by malvuln on Mar 02Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/66ef21e8d1cf30dce6e084a9e306c18f.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Backdoor.Win32.RemoteManipulator.fdo Vulnerability: Insecure Permissions Description: The backdoor creates an insecure randomly named hidden dir with a .tmp ext E.g. 8RK86.tmp and grants change (C) permissions to the authenticated user group....
  • Multiple Vulnerabilities in jpeg-xl (CVE-2021-27804) Marzo 2, 2021
    Posted by Marc on Mar 02Multiple Vulnerabilities in jpeg-xl =================================== CVE: CVE-2021-27804 Highest Severity Rating: High Confirmed Affected Versions: jpeg-xl v0.3.1 and earlier Vendor: Joint Photographic Experts Group (JPEG) Vendor URL: https://gitlab.com/wg1/jpeg-xl Summary and Impact ------------------ jpeg-xl is the reference implementation by the Joint Photographic Experts Group (JPEG) of the new JPEG XL standard. Multiple […]
  • SEC Consult SA-20210301-0 :: Authentication bypass vulnerability in Genua GenuGate High Resistance Firewall Marzo 1, 2021
    Posted by SEC Consult Vulnerability Lab on Mar 01seems we had some newline issues before, sorry for the inconvenience. Here is our advisory again: SEC Consult Vulnerability Lab Security Advisory < 20210301-0 > ======================================================================= title: Authentication bypass vulnerability product: Genua GenuGate High Resistance Firewall vulnerable version: GenuGate

Customers

Newsletter