Full Disclosure: by date

• RSS Feed
• About List
• All Lists

Previous period

Next period

72 messages starting Jul 06 21 and ending Jul 26 21
Date index | Thread index | Author index

Tuesday, 06 July

Three vulnerabilities found in MikroTik's RouterOS Q C
IoT/ICS Armageddon: hacking devices like there’s no tomorrow (part 1) Red Timmy Security
Backdoor.Win32.NerTe.781 / Authentication Bypass RCE malvuln
Backdoor.Win32.NerTe.781 / Unauthenticated Remote Command Execution malvuln
Trojan-Dropper.Win32.SVB.cz / Authentication Bypass RCE malvuln
Trojan-Dropper.Win32.SVB.cz / Port Bounce Scan (MITM) malvuln
Trojan-Spy.Win32.Xspyout.a / Unauthenticated Open Proxy malvuln
Trojan-Proxy.Win32.Ranky.ag / Unauthenticated Open Proxy malvuln
Backdoor.Win32.Hupigon.aiss / Unauthenticated Open Proxy malvuln
Backdoor.Win32.Hupigon.gsy / Unauthenticated Open Proxy malvuln
Trojan.Win32.VB.bcng / Insecure Permissions malvuln
Trojan-Dropper.Win32.Agent.wxl / Insecure Permissions malvuln
HEUR.Trojan.Win32.Generic / Insecure Permissions malvuln
Trojan.Win32.Inject.adwas / Insecure Permissions malvuln
Backdoor.Win32.Zombam.l / Remote Stack Buffer Overflow malvuln
Backdoor.Win32.Zombam.l / Unauthenticated URL Command Injection malvuln
Backdoor.Win32.WinShell.40 / Authentication Bypass Command Execution malvuln
Virus.Win32.Shodi.e / Insecure Transit malvuln
Virus.Win32.Shodi.e / Unauthenticated Remote Command Execution malvuln
Virus.Win32.Shodi.e / Heap Corruption malvuln

Friday, 09 July

Novus Managment System Vulnerabilities (CVE-2021-34820, CVE-2021-38421) Dariusz G

Tuesday, 13 July

HEUR.Backdoor.Win32.Agent.gen / Insecure Permissions malvuln
Backdoor.IRC.Ataka.a / Insecure Permissions malvuln
Trojan-Proxy.Win32.Ranky.gen / Unauthenticated Open Proxy malvuln
Backdoor.Win32.NerTe.a / Authentication Bypass RCE malvuln
Backdoor.Win32.NerTe.a / Unauthenticated Remote Command Execution malvuln
Trojan.Win32.RASFlooder.b / Hardcoded Plaintext Password malvuln
Backdoor.Win32.Surila.j / Port Bounce Scan malvuln
Backdoor.Win32.Surila.j / Authentication Bypass malvuln
Backdoor.Win32.Surila.j / Remote Denial of Service malvuln
VirTool.Win32.Afix / Local Stack Buffer Overflow malvuln
VirTool.Win32.Afix / Local Stack Buffer Overflow malvuln

Wednesday, 14 July

SEC Consult SA-20210714-0 :: Critical vulnerabilities in Schneider Electric EVlink Charging Stations SEC Consult Vulnerability Lab

Friday, 16 July

Open-Xchange Security Advisory 2021-07-15 Martin Heiland via Fulldisclosure
New Release: UFONet v1.7 - "KRäK!eN"... psy
VMware ThinApp DLL hijacking vulnerability houjingyi

Monday, 19 July

[KIS-2021-05] Concrete5 <= 8.5.5 (Logging Settings) Phar Deserialization Vulnerability Egidio Romano

Tuesday, 20 July

Open-Xchange Security Advisory 2021-07-19 Martin Heiland via Fulldisclosure
Re: [FD] New Release: UFONet v1.7 - "KRäK!eN"... Pierre Kim
Multiple vulnerabilities in Dell OpenManage Enterprise Pierre Kim
Re: New Release: UFONet v1.7 - "KRäK!eN"... psy
HEUR.Backdoor.Win32.Generic / Unauthenticated Open Proxy malvuln
HEUR.Backdoor.Win32.Generic / Unauthenticated Open Proxy malvuln
Backdoor.Win32.IRCBot.gen / Weak Hardcoded Password malvuln
Backdoor.Win32.Agent.bjev / Insecure Permissions malvuln
Trojan-Spy.Win32.SpyEyes.abdb / Insecure Permissions malvuln
Trojan-Spy.Win32.SpyEyes.hqd / Insecure Permissions malvuln
Backdoor.Win32.IRCBot.gen / Unauthenticated Remote Command Execution malvuln

Thursday, 22 July

AST-2021-007: Remote Crash Vulnerability in PJSIP channel driver Asterisk Security Team
AST-2021-008: Remote crash when using IAX2 channel driver Asterisk Security Team
AST-2021-009: pjproject/pjsip: crash when SSL socket destroyed during handshake Asterisk Security Team

Friday, 23 July

CFP for Hardwear.io Netherlands 2021 Andrea Simonca
Cross-site Scripting vulnerability in Ampache 4.4.2 Daniel Bishtawi via Fulldisclosure
ipython3 may execute code from the current working directory Georgi Guninski
APPLE-SA-2021-07-21-1 iOS 14.7 and iPadOS 14.7 Apple Product Security via Fulldisclosure
APPLE-SA-2021-07-21-2 macOS Big Sur 11.5 Apple Product Security via Fulldisclosure
APPLE-SA-2021-07-21-3 Security Update 2021-004 Catalina Apple Product Security via Fulldisclosure
APPLE-SA-2021-07-21-4 Security Update 2021-005 Mojave Apple Product Security via Fulldisclosure
APPLE-SA-2021-07-21-5 watchOS 7.6 Apple Product Security via Fulldisclosure
APPLE-SA-2021-07-21-6 tvOS 14.7 Apple Product Security via Fulldisclosure
APPLE-SA-2021-07-21-7 Safari 14.1.2 Apple Product Security via Fulldisclosure

Monday, 26 July

Potential symlink attack in python3 __pycache__ Georgi Guninski
ATLASSIAN - CVE-2020-36239 - Jira Data Center and Jira Service Management Data Center Atlassian
Backdoor.Win32.Hupigon.aaur / Unauthenticated Open Proxy malvuln
Backdoor.Win32.Mazben.me / Unauthenticated Open Proxy malvuln
Backdoor.Win32.Agent.cu / Authentication Bypass RCE malvuln
Backdoor.Win32.Agent.cu / Port Bounce Scan (MITM) malvuln
Backdoor.Win32.Agent.cu / Unauthenticated Remote Command Execution malvuln
Backdoor.Win32.PsyRat.b / Unauthenticated Remote Command Execution malvuln
Backdoor.Win32.PsyRat.b / Remote Denial of Service malvuln
Backdoor.Win32.Bifrose.acci / Local Stack Buffer Overflow malvuln
Backdoor.Win32.Nbdd.bgz / Remote Stack Buffer Overflow malvuln

Previous period

Next period