Aggregator

A vulnerability, which was classified as problematic, has been found in Apple macOS up to 11.2.3. This issue affects some unknown processing of the component curl. The manipulation leads to improper certificate validation. The identification of this vulnerability is CVE-2020-8286. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in curl up to 7.73.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component FTP PASV Handler. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2020-8284. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as critical has been found in haxx.se cURL up to 7.73.0. This affects an unknown part of the component FTP Wildcard Handler. The manipulation leads to stack-based buffer overflow. This vulnerability is uniquely identified as CVE-2020-8285. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in Apple macOS up to 11.2.3. Affected is an unknown function of the component curl. The manipulation leads to buffer overflow. This vulnerability is traded as CVE-2020-8285. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle Essbase 21.2. It has been classified as critical. Affected is an unknown function of the component cURL. The manipulation leads to denial of service. This vulnerability is traded as CVE-2020-8285. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle Hyperion Essbase 11.1.2.4. It has been classified as very critical. Affected is an unknown function of the component Security/Provisioning. The manipulation leads to buffer overflow. This vulnerability is traded as CVE-2019-5482. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in curl up to 7.70.0. Affected by this issue is some unknown functionality of the component File Name Handler. The manipulation leads to injection. This vulnerability is handled as CVE-2020-8177. It is possible to launch the attack on the local host. There is no exploit available.

A vulnerability, which was classified as critical, was found in libcURL up to 7.71.1. This affects an unknown part of the component Connection Handler. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2020-8231. The attack needs to be approached within the local network. There is no exploit available.

A vulnerability, which was classified as critical, was found in Oracle Communications Cloud Native Core Policy 1.14.0. This affects an unknown part of the component Policy. The manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2020-8231. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as very critical, was found in Oracle HTTP Server 12.2.1.3.0/12.2.1.4.0. Affected is an unknown function of the component Web Listener. The manipulation leads to buffer overflow. This vulnerability is traded as CVE-2019-5482. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

The VanHelsing ransomware-as-a-service operation published the source code for its affiliate panel, data leak blog, and Windows encryptor builder after an old developer tried to sell it on the RAMP cybercrime forum. [...]

Author/Presenter: Fabricio Gimenes

Our sincere appreciation to BSidesLV, and the Presenters/Authors for publishing their erudite Security BSidesLV24 content. Originating from the conference’s events located at the Tuscany Suites & Casino; and via the organizations YouTube channel.

Permalink

The post BSidesLV24 – GroundFloor – Windows EventLog Persistence? The Windows Can Help Us appeared first on Security Boulevard.

A vulnerability has been found in Microsoft Windows and classified as critical. Affected by this vulnerability is an unknown functionality of the component Hyper-V. The manipulation leads to improper input validation. This vulnerability is known as CVE-2019-0620. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows and classified as critical. Affected by this issue is some unknown functionality of the component ActiveX. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2019-0888. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows 10/10 1607/10 1703/10 1709/Server 2016. It has been classified as critical. This affects an unknown part of the component Hyper-V. The manipulation leads to improper input validation. This vulnerability is uniquely identified as CVE-2019-0709. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows. It has been declared as critical. This vulnerability affects unknown code of the component Hyper-V. The manipulation leads to improper input validation. This vulnerability was named CVE-2019-0722. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Hyper-V. The manipulation leads to improper input validation. This vulnerability is known as CVE-2019-0710. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows. It has been rated as critical. Affected by this issue is some unknown functionality of the component Hyper-V. The manipulation leads to improper input validation. This vulnerability is handled as CVE-2019-0711. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as critical has been found in Microsoft Windows. This affects an unknown part of the component Hyper-V. The manipulation leads to improper input validation. This vulnerability is uniquely identified as CVE-2019-0713. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as critical was found in Microsoft Windows. This vulnerability affects unknown code of the component JET Database Engine. The manipulation leads to memory corruption. This vulnerability was named CVE-2019-0904. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.