Mail Index

• Thread Index

• [FD] IRC-Worm.Win32.Silentium.a / Insecure Permissions
  • From: malvuln
• [FD] Backdoor.Win32.Burbul.b / Authentication Bypass MITM Port Bounce Scan
  • From: malvuln
• [FD] Backdoor.Win32.Burbul.b / Authentication Bypass MITM Port Bounce Scan
  • From: malvuln
• [FD] Trojan-Downloader.Win32.Delf.oxz / Insecure Permissions
  • From: malvuln
• [FD] Trojan-Downloader.Win32.Delf.ur / Insecure Permissions
  • From: malvuln
• [FD] Trojan-Downloader.Win32.Delf.nzg / Insecure Permissions
  • From: malvuln
• [FD] Onapsis Security Advisory 2021-0001: [CVE-2020-6207] - Unauthenticated RCE in SAP all SMD Agents connected to SAP SolMan
  • From: Onapsis Research via Fulldisclosure
• [FD] Onapsis Security Advisory 2021-0002: [CVE-2020-6234] - SAP Multiple root LPE through SAP Host Control
  • From: Onapsis Research via Fulldisclosure
• [FD] Onapsis Security Advisory 2021-0003: [CVE-2020-6287] - [SAP RECON] SAP JAVA: Unauthenticated execution of configuration tasks
  • From: Onapsis Research via Fulldisclosure
• [FD] Onapsis Security Advisory 2021-0004: [CVE-2020-26820] - SAP Java OS Remote Code Execution
  • From: Onapsis Research via Fulldisclosure
• [FD] python embedded program local arbitrary python script execution on windows
  • From: houjingyi
• [FD] Defense in depth -- The Microsoft way (part 74): Windows Defender SmartScreen is rather DUMP, it allows denial of service
  • From: Stefan Kanthak
• [FD] Trojan.Win32.Sharer.h / Anonymous Logon RCE
  • From: malvuln
• [FD] Trojan.Win32.Sharer.h / Anonymous Logon MITM Port Bounce Scan
  • From: malvuln
• [FD] Trojan.Win32.Sharer.h / Known Vulnerable Component - Heap Corruption
  • From: malvuln
• [FD] Trojan-Downloader.Win32.FraudLoad.xevn / Insecure Permissions
  • From: malvuln
• [FD] SEC Consult SA-20210407-0 :: Arbitrary File Upload and Bypassing .htaccess Rules in Monospace Directus Headless CMS
  • From: SEC Consult Vulnerability Lab
• [FD] CVE-2021-26709 - Multiple Pre-Auth Stack Buffer Overflow in D-Link DSL-320B-D1 ADSL Modem
  • From: Gabriele Gristina
• [FD] usd20210005: Privileged File Write in Check Point Identity Agent < R81.018.0000
  • From: Responsible Disclosure via Fulldisclosure
• [FD] Trojan.Win32.Hosts2.yqf / Insecure Permissions
  • From: malvuln
• [FD] Trojan-Downloader.Win32.Genome.omht / Insecure Permissions
  • From: malvuln
• [FD] Trojan-Downloader.Win32.Genome.qiw / Insecure Permissions
  • From: malvuln
• [FD] Trojan.Win32.Hotkeychick.d / Insecure Permissions
  • From: malvuln
• [FD] Backdoor.Win32.Hupigon.das / Unauthenticated Open Proxy
  • From: malvuln
• [FD] [SYSS-2020-032] Open Redirect in Tableau Server (CVE-2021-1629)
  • From: Vladimir Bostanov
• [FD] Backdoor.Win32.Small.n / Unauthenticated Remote Command Execution (SYSTEM)
  • From: malvuln
• [FD] CFP ZeroNights 2021
  • From: CFP ZeroNights
• [FD] SEC Consult SA-20210414-0 :: Reflected cross-site scripting in Microsoft Azure DevOps Server
  • From: SEC Consult Vulnerability Lab
• [FD] Plantronics HUB <= 3.21 EoP and DoS
  • From: Red Timmy Security
• [FD] [CVE-2021-20989, CVE-2021-20990, CVE-2021-20991, CVE-2021-20992] Multiple vulnerabilities in Fibaro Home Center
  • From: research
• [FD] Trojan.Win32.Jorik.qje / Insecure Permissions
  • From: malvuln
• [FD] Trojan.Win32.Agent.zfgh / Insecure Permissions
  • From: malvuln
• [FD] HEUR.Hoax.Win32.FrauDrop.gen / Insecure Permissions
  • From: malvuln
• [FD] Backdoor.Win32.Zombam.h / Remote Stack Buffer Overflow
  • From: malvuln
• [FD] Trojan.Win32.Agentb.iofv / Insecure Permissions
  • From: malvuln
• [FD] Trojan.Win32.NanoBot.onh / Insecure Permissions
  • From: malvuln
• [FD] Trojan-Dropper.Win32.Agent.bjtzcp / Insecure Permissions
  • From: malvuln
• [FD] Trojan.Win32.Bayrob.dtrg / Insecure Permissions
  • From: malvuln
• [FD] HEUR.Backdoor.Win32.Generic / Unauthenticated Open Proxy
  • From: malvuln
• [FD] Constructor.Win32.Bifrose.ag / Local Stack Buffer Overflow
  • From: malvuln
• [FD] Trojan.Win32.Agent.hsm / Insecure Permissions
  • From: malvuln
• [FD] [CVE-2021-1472/CVE-2021-1473] Cisco RV Series Authentication Bypass and Remote Command Execution
  • From: Takeshi Shiomitsu
• [FD] CVE-2021-28321-CVE-2021-28323: elevation of privileges in Microsoft Diaghub
  • From: Imre Rad
• [FD] SEC Consult SA-20210422-0 :: Stored Cross Site Scripting (Outdated software library) in BMDWeb 2.0
  • From: SEC Consult Vulnerability Lab
• [FD] Executable installers are vulnerable^WEVIL (case 61): arbitrary code execution WITH escalation of privilege via Intel WiFi drivers
  • From: Stefan Kanthak
• [FD] HEUR.Trojan.Win32.Generic / Insecure Permissions
  • From: malvuln
• [FD] Trojan-Dropper.Win32.Agent.xtp / Insecure Permissions
  • From: malvuln
• [FD] IM-Worm.Win32.Bropia.aa / Insecure Permissions
  • From: malvuln
• [FD] Backdoor.Win32.DarkKomet.artr / Insecure Permissions
  • From: malvuln
• [FD] Packed.Win32.Black.d / Unauthenticated Open Proxy
  • From: malvuln
• [FD] Supply Chain Attacks via GitHub.com Releases
  • From: Nightwatch Cybersecurity Research
• [FD] APPLE-SA-2021-04-26-1 iOS 14.5 and iPadOS 14.5
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2021-04-26-2 macOS Big Sur 11.3
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2021-04-26-3 Security Update 2021-002 Catalina
  • From: Apple Product Security via Fulldisclosure
• [FD] Virus.Win32.Banka.a / Insecure Permissions
  • From: malvuln
• [FD] Worm.Win32.Busan.k / Insecure Communication Protocol
  • From: malvuln
• [FD] APPLE-SA-2021-04-26-4 Security Update 2021-003 Mojave
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2021-04-26-6 tvOS 14.5
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2021-04-26-5 watchOS 7.4
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2021-04-26-7 Safari 14.1
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2021-04-26-8 iCloud for Windows 12.3
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2021-04-26-9 iTunes 12.11.3 for Windows
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2021-04-26-10 Xcode 12.5
  • From: Apple Product Security via Fulldisclosure
• [FD] XSS stored in PFSense 2.5.0 CVE-2021-27933
  • From: William Costa
• [FD] Trojan-Dropper.Win32.Dycler.vrp / Insecure Permissions
  • From: malvuln
• [FD] Trojan-Dropper.Win32.Injector.aobl / Insecure Permissions
  • From: malvuln
• [FD] Backdoor.Win32.Agent.afq / Missing Authentication
  • From: malvuln
• [FD] Backdoor.Win32.Agent.afq / Directory Traversal
  • From: malvuln
• [FD] Backdoor.Win32.Agent.afq / Remote Heap Corruption
  • From: malvuln
• [FD] Open-Xchange Security Advisory 2021-04-30
  • From: Martin Heiland via Fulldisclosure
• [FD] Defense in depth -- the Microsoft way (part 75): Bypass of SAFER alias Software Restriction Policies NOT FIXED
  • From: Stefan Kanthak
• [FD] Defense in depth -- The Microsoft way (part 76): arbitrary code execution WITH elevation of privilege in user-writable directories below %SystemRoot%
  • From: Stefan Kanthak
• [FD] HEUR.Trojan.Win32.Bayrob.gen / Insecure Permissions
  • From: malvuln
• [FD] Worm.Win32.Delf.hu / Insecure Permissions
  • From: malvuln
• [FD] Backdoor.Win32.Agent.ggw / Authentication Bypass
  • From: malvuln
• [FD] Backdoor.Win32.Agent.gmug / Heap Corruption
  • From: malvuln
• [FD] Backdoor.Win32.Agent.kte / Remote Stack Buffer Overflow (UDP Datagram)
  • From: malvuln
• [FD] Backdoor.Win32.Agent.oj / Remote Stack Buffer Overflow
  • From: malvuln
• [FD] Backdoor.Win32.Agent.oj / Unauthenticated Remote Command Execution
  • From: malvuln