Collaborate Disseminate
CVE-2020-1472, a privilege elevation vulnerability in the Netlogon Remote Protocol (MS-NRPC) for which Microsoft released a patch in August, has just become a huge liability for organizations that are struggling with timely patching. Secura researchers… Continue reading Are your domain controllers safe from Zerologon attacks?
A low-privileged process on a vulnerable machine could allow data harvesting and DoS. Continue reading IBM AI-Powered Data Management Software Subject to Simple Exploit
Have you already updated your Apache Struts 2 to version 2.5.22, released in November 2019? You might want to, and quickly, as information about a potential RCE vulnerability (CVE-2019-0230) and PoC exploits for it have been published. About the vulner… Continue reading Potential Apache Struts 2 RCE flaw fixed, PoCs released
Researchers have discovered freely available PoC code and exploit that can be used to attack unpatched security holes in Apache Struts 2. Continue reading PoC Exploit Targeting Apache Struts Surfaces on GitHub
The cross-site scripting flaw could enable arbitrary code execution, information disclosure – and even account takeover. Continue reading High-Severity TinyMCE Cross-Site Scripting Flaw Fixed
The fix for CVE-2019-16759, a remote code execution vulnerability in vBulletin that was patched in September 2019, is incomplete, security researcher Amir Etemadieh has discovered. The discovery and his publishing of PoC and full exploits spurred attac… Continue reading Exploits for vBulletin zero-day released, attacks are ongoing
A critical vulnerability (CVE-2020-11552) in ManageEngine ADSelfService Plus, an Active Directory password-reset solution, could allow attackers to remotely execute commands with system level privileges on the target Windows host. About ManageEngine AD… Continue reading Critical ManageEngine ADSelfService Plus RCE flaw patched
In May 2020, Microsoft patched CVE-2020-1048, a privilege escalation vulnerability in the Windows Print Spooler service discovered by Peleg Hadar and Tomer Bar from SafeBreach Labs. A month later, the two researchers found a way to bypass the patch and… Continue reading Researchers flag two zero-days in Windows Print Spooler
An unauthenticated file read vulnerability (CVE-2020-3452) affecting Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software is being exploited by attackers in the wild. For the moment, it seems that it is being used just to… Continue reading Attackers are exploiting Cisco ASA/FTD flaw in search for sensitive data
Last week, a “wormable” remote code execution flaw in the Windows DNS Server service (CVE-2020-1350) temporarily overshadowed all the other flaws patched by Microsoft on July 2020 Patch Tuesday, but CVE-2020-1147, a RCE affecting Microsoft SharePoint, … Continue reading Details and PoC for critical SharePoint RCE flaw released