Security fix for CVE-2017-6009, CVE-2017-6010, CVE-2017-6011.
Monthly Archives: March 2017
icoutils-0.31.2-1.fc25
Security fix for CVE-2017-6009, CVE-2017-6010, CVE-2017-6011.
Avira Scout: the browser for your online security & privacy
Avira Scout has been launched for the public, combining our security expertise with the Chromium code to give users a free browser that slashes the risks from malware, malvertising, and obtrusive trackers. Scout provides multiple layers of security and privacy without interrupting the user experience. We’ve integrated together a selection of best-in-class security and privacy […]
The post Avira Scout: the browser for your online security & privacy appeared first on Avira Blog.
CVE-2017-6508
CRLF injection vulnerability in the url_parse function in url.c in Wget through 1.19.1 allows remote attackers to inject arbitrary HTTP headers via CRLF sequences in the host subcomponent of a URL.
StoneDrill Disk Wiping Malware Found Targeting European Industries
A new disk wiping malware has been uncovered targeting a petroleum company in Europe, which is quite similar to the mysterious disk wiper malware Shamoon that wiped data from 35,000 computers at Saudi Arabia’s national oil company in 2012.
Disk wiping malware has the ability to cripple any organization by permanently wiping out data from all hard drive and external storage on a targeted
Re: 0-Day: Dahua backdoor Generation 2 and 3
Posted by bashis on Mar 07
Greetings,
IPVM has published their independent report, along with their verification of the PoC and comments.
Below is the open link to the report I requested for Full Disclosure Community. (otherwise closed for IPVM members)
https://ipvm.com/reports/dahua-backdoor?code=bash
Have a nice day
/bashis
—–Original Message—–
From: Fulldisclosure <fulldisclosure-bounces () seclists org> on behalf of bashis <mcw () noemail eu>…
Re: Executable installers are defective^WEVIL (case 2): innosetup-5.5.9.exe and innosetup-5.5.9-unicode.exe
Posted by fulldisclosure on Mar 07
Hi,
does this actually result in any vulnerability? If not, I feel like this
is the wrong place for posting “bug reports”. If this leads to security
issues, some sort of PoC would be interesting.
You also might consider to publish a *generic* advisory for your
innosetup related findings. I do not see any additional information for
the specific targets. It seems to be the very same finding for each
advisory.
This feels more like a…
[Tool] Docker Scan: Security analysis tools for Docker Images and Docker Registries
Posted by cr0hn on Mar 07
Dear colleagues,
Please, let me to introduce Docker Scan -> https://github.com/cr0hn/docke=
rscan
Docker Scan is a Docker security analysis tools for Docker Images and Doc=
ker Registries.
-=3D =46or registries =3D-
— Delete: Delete remote image / tag
— Info: Show info from remote registry
— Push: Push and image (like Docker client)
— Upload: Upload random a file
-=3D Docker Images =3D-
— Analyze: Looking for sensitive information…
Brocade Network Advisor DashboardFileReceiveServlet filename Directory Traversal (CVE-2016-8205)
A directory traversal vulnerabilities exists in Brocade Network Advisor. The vulnerability is due to lack of authentication and insufficient input validation in the DashboardFileReceiveServlet servlet of dashboard-fileupload. war when processing HTTP multipart form requests. A remote, unauthenticated attacker can exploit this vulnerability by sending a malicious HTTP request to the target system. Successful exploitation could result in arbitrary code execution with privileges of the SYSTEM.
HPE Operations Orchestration Insecure Deserialization (CVE-2016-8519)
An insecure deserialization vulnerability has been reported in HPE Operations Orchestration. The vulnerability is due to the deserialization of untrusted data in several servlets used for backwards compatibility with older API versions. A remote, unauthenticated attacker can exploit this vulnerability by sending crafted serialized data to the target application.