Security

PCAUSA Rawether For Windows Local Privilege Escalation

March 15, 2017 007admin Leave a comment

ASUS PCE-AC56 WLAN card utilities (PCAUSA Rawether Windows 10 x64) local privilege escalation exploit.

Security

Joomla Vik Appointments 1.5 SQL Injection

March 15, 2017 007admin Leave a comment

Joomla Vik Appointments component version 1.5 suffers from a remote SQL injection vulnerability.

Security

Joomla Vik Rent Items 1.3 SQL Injection

March 15, 2017 007admin Leave a comment

Joomla Vik Rent Items component version 1.3 suffers from a remote SQL injection vulnerability.

Security

Joomla Vik Rent Car 1.11 SQL Injection

March 15, 2017 007admin Leave a comment

Joomla Vik Rent Car component version 1.11 suffers from a remote SQL injection vulnerability.

Kaspersky

APAC bore brunt of cyberattacks in 2016 -ZDNet

March 15, 2017 007admin Leave a comment

APAC bore brunt of cyberattacks in 2016 -ZDNet

Kaspersky

PetrWrap Ransomware Found, Attacks and Locks up Entire Organizations -SC Magazine

March 15, 2017 007admin Leave a comment

PetrWrap Ransomware Found, Attacks and Locks up Entire Organizations -SC Magazine

Hackers News

Microsoft Finally Releases Security Patches For Publicly-Disclosed Critical Flaws

March 15, 2017 007admin Leave a comment

After last month’s postponement, Microsoft’s Patch Tuesday is back with a massive release of fixes that includes patches for security vulnerabilities in Windows and associated software disclosed and exploited since January’s patch release.

Meanwhile, Adobe has also pushed out security updates for its products, releasing patches for at least seven security vulnerabilities in its Flash Player

Checkpoint

dotCMS H2 Database CategoriesServlet inode SQL Injection

March 15, 2017 007admin Leave a comment

An SQL injection vulnerability has been reported in dotCMS H2 Database. The vulnerability is due to insufficient validation of the inode parameter in HTTP request sent to the getCreateSortChildren function. A remote attacker could exploit this vulnerability by sending a malicious HTTP request to the target server.

Checkpoint

Brocade Network Advisor FileReceiveServlet filename Directory Traversal (CVE-2016-8204)

March 15, 2017 007admin Leave a comment

A directory traversal vulnerability exists in Brocade Network Advisor. The vulnerability is due to lack of authentication and insufficient input validation in the FileReceiveServlet servlet when processing HTTP multipart form requests. A remote, unauthenticated attacker can exploit this vulnerability by sending a malicious HTTP request to the target system. Successful exploitation could result in arbitrary code execution with privileges of the SYSTEM.

Security Focus

Bugtraq: Joomla com_kunena Component – 'id' Parameter Sql Injection Vulnerability

March 15, 2017 007admin Leave a comment

Joomla com_kunena Component – ‘id’ Parameter Sql Injection Vulnerability

007 Software

Monthly Archives: March 2017

PCAUSA Rawether For Windows Local Privilege Escalation

Joomla Vik Appointments 1.5 SQL Injection

Joomla Vik Rent Items 1.3 SQL Injection

Joomla Vik Rent Car 1.11 SQL Injection

APAC bore brunt of cyberattacks in 2016 -ZDNet

PetrWrap Ransomware Found, Attacks and Locks up Entire Organizations -SC Magazine

Microsoft Finally Releases Security Patches For Publicly-Disclosed Critical Flaws

dotCMS H2 Database CategoriesServlet inode SQL Injection

Brocade Network Advisor FileReceiveServlet filename Directory Traversal (CVE-2016-8204)

Bugtraq: Joomla com_kunena Component – 'id' Parameter Sql Injection Vulnerability

Software and Security Information