Linux x86_64 /etc/passwd file sender shellcode.
Monthly Archives: June 2016
IoT Botnet — 25,000 CCTV Cameras Hacked to launch DDoS Attack
The Internet of Things (IoTs) or Internet-connected devices are growing at an exponential rate and so are threats to them.
Due to the insecure implementation, these Internet-connected embedded devices, including Smart TVs, Refrigerators, Microwaves, Set-top boxes, Security Cameras and printers, are routinely being hacked and used as weapons in cyber attacks.
We have seen how hackers
KL-001-2016-002 : Ubiquiti Administration Portal CSRF to Remote Command Execution
Posted by KoreLogic Disclosures on Jun 28
KL-001-2016-002 : Ubiquiti Administration Portal CSRF to Remote Command Execution
Title: Ubiquiti Administration Portal CSRF to Remote Command Execution
Advisory ID: KL-001-2016-002
Publication Date: 2016.06.28
Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2016-002.txt
1. Vulnerability Details
Affected Vendor: Ubiquiti
Affected Product: AirGateway, AirFiber, mFi
Affected Version: 1.1.6, 3.2, 2.1.11…
Zero-Day Warning! Ransomware targets Microsoft Office 365 Users
If just relying on the security tools of Microsoft Office 365 can protect you from cyber attacks, you are wrong.
Variants of Cerber Ransomware are now targeting MS Office 365 email users with a massive zero-day attack that has the ability to bypass Office 365’s built-in security tools.
According to a report published by cloud security provider Avanan, the massive zero-day Cerber ransomware
[KIS-2016-10] Concrete5 <= 5.7.3.1 (Application::dispatch) Local File Inclusion Vulnerability
Posted by Egidio Romano on Jun 28
——————————————————————————-
Concrete5 <= 5.7.3.1 (Application::dispatch) Local File Inclusion Vulnerability
——————————————————————————-
[-] Software Link:
[-] Affected Versions:
Version 5.7.3.1 and probably other versions.
[-] Vulnerability Description:
The vulnerable code is located within the…
[KIS-2016-09] Concrete5 <= 5.7.3.1 Multiple Stored Cross-Site Scripting Vulnerabilities
Posted by Egidio Romano on Jun 28
————————————————————————-
Concrete5 <= 5.7.3.1 Multiple Stored Cross-Site Scripting Vulnerabilities
————————————————————————-
[-] Software Link:
[-] Affected Versions:
Version 5.7.3.1 and probably other versions.
[-] Vulnerabilities Description:
1) User input passed through the “uEmail” and…
[KIS-2016-08] Concrete5 <= 5.7.3.1 Multiple Cross-Site Request Forgeries Vulnerabilities
Posted by Egidio Romano on Jun 28
————————————————————————–
Concrete5 <= 5.7.3.1 Multiple Cross-Site Request Forgeries Vulnerabilities
————————————————————————–
[-] Software Link:
[-] Affected Versions:
Version 5.7.3.1 and probably other versions.
[-] Vulnerabilities Description:
Concrete5 implements a Synchronizer Token Pattern in order to provide…
Alfine CMS 2.6 SQL Injection
Alfine CMS version 2.6 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Mutualaid CMS 4.3.1 SQL Injection
Mutualaid CMS version 4.3.1 suffers from a remote SQL injection vulnerability.
Ladesk Agent Session Reset Password
A password reset session web vulnerability has been discovered in the official Ladesk online service web-application. The vulnerability allows remote attackers to reset a session credentials to unauthorized access user accounts or data.