date:20220414

[FD] Adversary3 v1.0 / Malware vulnerability intel tool for third-party attackers / updated

2022-04-14 Thread malvuln

Adversary3 has been updated with a bunch of new malware vulnz. https://github.com/malvuln/Adversary3 Thanks, Malvuln (aka hyp3rlinx) ___ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS:

[FD] Email-Worm.Win32.Pluto.b / Insecure Permissions

2022-04-14 Thread malvuln

Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/60a7d5e2d446110d84ef65f6a37af0eb.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Email-Worm.Win32.Pluto.b Vulnerability: Insecure Permissions Description: The malware writes a dir

[FD] Backdoor.Win32.Kilo.016 / Denial of Service (UDP Datagram)

2022-04-14 Thread malvuln

Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/9ede6951ea527f96a785c5e32b5079e6.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.Kilo.016 Vulnerability: Denial of Service (UDP Datagram) Description: The malware

[FD] Backdoor.Win32.NinjaSpy.c / Authentication Bypass

2022-04-14 Thread malvuln

Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/9f39606d9e19771af5acc6811ccf557f.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.NinjaSpy.c Vulnerability: Authentication Bypass Description: The malware listens on

[FD] Backdoor.Win32.NetSpy.10 / Unauthenticated Remote Command Execution

2022-04-14 Thread malvuln

Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/45d413b46f1d14a45e8fd36921813d62.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.NetSpy.10 Vulnerability: Unauthenticated Remote Command Execution Description: The

[FD] Backdoor.Win32.NetCat32.10 / Unauthenticated Remote Command Execution

2022-04-14 Thread malvuln

Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/dcf16aed5ad4e0058a6cfcc7593dd9e3.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.NetCat32.10 Vulnerability: Unauthenticated Remote Command Execution Description:

[FD] HackTool.Win32.IpcScan.c / Local Stack Buffer Overflow

2022-04-14 Thread malvuln

Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/8f44374d587eb1657d25da9628cb2b87.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: HackTool.Win32.IpcScan.c Vulnerability: Local Stack Buffer Overflow Description: Loading a

[FD] Backdoor.Win32.Psychward.03.a / Weak Hardcoded Password

2022-04-14 Thread malvuln

Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/d069738f18957117367b8a79195a6a96.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.Psychward.03.a Vulnerability: Weak Hardcoded Password Description: The malware

[FD] Backdoor.Win32.Prorat.cwx / Insecure Permissions

2022-04-14 Thread malvuln

Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/2d81bf2c55c81778533b55fb444d4dc6.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.Prorat.cwx Vulnerability: Insecure Permissions Description: The malware writes a

[FD] Backdoor.Win32.MotivFTP.12 / Authentication Bypass

2022-04-14 Thread malvuln

Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/91b2d216c5d26d9db4289acf68fa1743.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.MotivFTP.12 Vulnerability: Authentication Bypass Description: The malware listens

[FD] SEC Consult SA-20220413 :: Missing Authentication at File Download & Denial of Service in Siemens A8000 PLC

2022-04-14 Thread SEC Consult Vulnerability Lab, Research via Fulldisclosure

SEC Consult Vulnerability Lab Security Advisory < 20220413-0 > === title: Missing Authentication at File Download & Denial of Service product: Siemens A8000 CP-8050/CP-8031 SICAM WEB vulnerable

[FD] AST-2022-003: func_odbc: Possible SQL Injection

2022-04-14 Thread Asterisk Security Team

Asterisk Project Security Advisory - AST-2022-003 Product Asterisk Summary func_odbc: Possible SQL Injection Nature of Advisory SQL injection

[FD] AST-2022-002: res_stir_shaken: SSRF vulnerability with Identity header

2022-04-14 Thread Asterisk Security Team

Asterisk Project Security Advisory - AST-2022-002 ProductAsterisk Summaryres_stir_shaken: SSRF vulnerability with Identity header

[FD] AST-2022-001: res_stir_shaken: resource exhaustion with large files

2022-04-14 Thread Asterisk Security Team

Asterisk Project Security Advisory - AST-2022-001 ProductAsterisk Summaryres_stir_shaken: resource exhaustion with large files

[FD] Adversary3 v1.0 / Malware vulnerability intel tool for third-party attackers / updated

[FD] Email-Worm.Win32.Pluto.b / Insecure Permissions

[FD] Backdoor.Win32.Kilo.016 / Denial of Service (UDP Datagram)

[FD] Backdoor.Win32.NinjaSpy.c / Authentication Bypass

[FD] Backdoor.Win32.NetSpy.10 / Unauthenticated Remote Command Execution

[FD] Backdoor.Win32.NetCat32.10 / Unauthenticated Remote Command Execution

[FD] HackTool.Win32.IpcScan.c / Local Stack Buffer Overflow

[FD] Backdoor.Win32.Psychward.03.a / Weak Hardcoded Password

[FD] Backdoor.Win32.Prorat.cwx / Insecure Permissions

[FD] Backdoor.Win32.MotivFTP.12 / Authentication Bypass

[FD] SEC Consult SA-20220413 :: Missing Authentication at File Download & Denial of Service in Siemens A8000 PLC

[FD] AST-2022-003: func_odbc: Possible SQL Injection

[FD] AST-2022-002: res_stir_shaken: SSRF vulnerability with Identity header

[FD] AST-2022-001: res_stir_shaken: resource exhaustion with large files

14 matches

Site Navigation

Mail list logo

Footer information