Security News

Trojan-Spy.Win32.SpyEyes.auwl / Insecure Permissions EoP

Full Disclosure - 7 February, 2021 - 12:34

Posted by malvuln on Feb 07

Discovery / credits: Malvuln - malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/0115ba22a0d009a13d0748027dd62e2a.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Trojan-Spy.Win32.SpyEyes.auwl
Vulnerability: Insecure Permissions EoP
Description: SpyEyes creates a vuln dir named "cleansweep.exe" under
c:\ drive and drops an exe inside also named "cleansweep.exe". The
vulnerable trojan...

Trojan-Spy.Win32.SpyEyes.auqj / Insecure Permissions EoP

Full Disclosure - 7 February, 2021 - 12:34

Posted by malvuln on Feb 07

Discovery / credits: Malvuln - malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/ea6ed38ab5264cd92f0d42eb020e87d8.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Trojan-Spy.Win32.SpyEyes.auqj
Vulnerability: Insecure Permissions EoP
Description: SpyEyes.auqj creates a hidden vuln dir named
"wedfsadeex.exe" under c:\ drive, granting change (C) permissions to
the authenticated users group.
Type:...

Trojan.Win32.Gentee.h / Insecure Permissions EoP

Full Disclosure - 7 February, 2021 - 12:34

Posted by malvuln on Feb 07

Discovery / credits: Malvuln - malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/2bd5672432a545db03db0e09c120d42e.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Trojan.Win32.Gentee.h
Vulnerability: Insecure Permissions EoP
Description: Trojan Gentee.h creates a vuln dir named "Paltalk" under
c:\ drive, granting change (C) permissions to the authenticated users
group.
Type: PE32
MD5:...

Trojan.Win32.Gentee.b / Insecure Permissions EoP

Full Disclosure - 7 February, 2021 - 12:34

Posted by malvuln on Feb 07

Discovery / credits: Malvuln - malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/86e63bb63f3baf48ad3bf24c3f5b7e40.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Trojan.Win32.Gentee.b
Vulnerability: Insecure Permissions EoP
Description: Trojan creates a vuln dir under c:\ drive named "WINNT",
granting change (C) permissions to the authenticated user group.
Type: PE32
MD5:...

KSA_DEV-009 :- Authenticated Code Execution In Unibox 2.4

Full Disclosure - 7 February, 2021 - 12:33

Posted by Kaustubh via Fulldisclosure on Feb 07

=====================================================
Authenticated Remote Code Execution In Unibox 2.4
=====================================================

. contents:: Table Of Content

Overview
========

Title:- Authenticated command execution in all UNIBOX WiFi Hotspot
Controller.
CVE ID:- Not Yet Assign
Author: Kaustubh G. Padwad
Vendor: Wifi-soft (https://www.wifi-soft.com/)
Products:
     1.Unibox SMB
     2.UniBox - Enterprise...

KSA-Dev-008: Authenticated XSRF leads to complete account takeover in all UNIBOX WiFi Hotspot Controller

Full Disclosure - 7 February, 2021 - 12:33

Posted by Kaustubh via Fulldisclosure on Feb 07

=====================================================
Authenticated XSRF leads to complete Account Takeover
=====================================================

. contents:: Table Of Content

Overview
========

Title:- Authenticated XSRF leads to complete account takeover in all
UNIBOX WiFi Hotspot Controller.
CVE ID:- Not -Yet - Assign
Author: Kaustubh G. Padwad
Vendor: Wifi-soft (https://www.wifi-soft.com/)
Products:
     1.Unibox SMB...

Bug bounty failure stories to learn from: how we ended up to hack a bank with no reward

Full Disclosure - 4 February, 2021 - 14:01

Posted by Red Timmy Security on Feb 04

Hi,
bug bounty programs are spreading more and more nowadays.We would like
to share our experience in this area but from a different angle this
time: failure stories rather than success stories.

We provide some hints and talk about side effects (for example how one
can end up hacking a bank as happened to us), as well as the reasoning
behind the choices about targets and approaches followed during the
bounty campaign.

Full stories here...

Backdoor.Win32.RemoteManipulator.brr / Insecure Permissions EoP

Full Disclosure - 4 February, 2021 - 13:52

Posted by malvuln on Feb 04

Discovery / credits: Malvuln - malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/717f316391b6a7b97fa160b0a627a413.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Backdoor.Win32.RemoteManipulator.brr
Vulnerability: Insecure Permissions EoP
Description: This malware creates a dir named "eaKVB87.tmp" under c:\
and grants change (C) permissions to authenticated users group. This
can result in EoP as...

Backdoor.Win32.NetBull.11.b / Remote Buffer Overflow

Full Disclosure - 4 February, 2021 - 13:52

Posted by malvuln on Feb 04

Discovery / credits: Malvuln - malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/0e0fc966862971c29edd4dcaa0ba8e86.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Backdoor.Win32.NetBull.11.b
Vulnerability: Remote Buffer Overflow
Description: NetBull.11.b listens on both TCP ports 23456 and 23457,
sending a large junk packet results in buffer overflow overwriting
stack registers.
Type: PE32
MD5:...

null pointer deference in mfmp4srcsnk.dll in latest windows 10

Full Disclosure - 4 February, 2021 - 13:52

Posted by houjingyi on Feb 04

Found a null pointer deference in mfmp4srcsnk.dll in latest windows 10 by
accident.

Download mov file here:

https://github.com/MozillaSecurity/fuzzdata/blob/master/samples/samples.mplayerhq.hu/ffmpeg-bugs/roundup/issue2490/invalid_mov_time.mov

Your explorer will crash. If not use windows media player.

(2788.3588): Access violation - code c0000005 (first chance)
First chance exceptions are reported before any exception handling.
This exception...

Backdoor.Win32.Xyligan.blp / Insecure Permissions EoP

Full Disclosure - 2 February, 2021 - 02:25

Posted by malvuln on Feb 01

Discovery / credits: Malvuln - malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/6b9afcad282516173c0ab8a6eb91e8b4.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Backdoor.Win32.Xyligan.blp
Vulnerability: Insecure Permissions EoP
Description: Xyligan.blp creates an insecure dir named "Temp" under
c:\ drive and drops DLL "FengYun.dll into it". The C:\Temp is granted
change (C) permissions...

APPLE-SA-2021-02-01-4 Additional information for APPLE-SA-2021-01-26-3 watchOS 7.3

Full Disclosure - 2 February, 2021 - 02:25

Posted by Apple Product Security via Fulldisclosure on Feb 01

APPLE-SA-2021-02-01-4 Additional information for
APPLE-SA-2021-01-26-3 watchOS 7.3

watchOS 7.3 addresses the following issues. Information about the
security content is also available at
https://support.apple.com/HT212148.

Analytics
Available for: Apple Watch Series 3 and later
Impact: A remote attacker may be able to cause a denial of service
Description: This issue was addressed with improved checks.
CVE-2021-1761: Cees Elzinga
Entry added...

APPLE-SA-2021-02-01-3 Additional information for APPLE-SA-2021-01-26-2 tvOS 14.4

Full Disclosure - 2 February, 2021 - 02:25

Posted by Apple Product Security via Fulldisclosure on Feb 01

APPLE-SA-2021-02-01-3 Additional information for
APPLE-SA-2021-01-26-2 tvOS 14.4

tvOS 14.4 addresses the following issues. Information about the
security content is also available at
https://support.apple.com/HT212149.

Analytics
Available for: Apple TV 4K and Apple TV HD
Impact: A remote attacker may be able to cause a denial of service
Description: This issue was addressed with improved checks.
CVE-2021-1761: Cees Elzinga
Entry added February...

APPLE-SA-2021-02-01-2 Additional information for APPLE-SA-2021-01-26-1 iOS 14.4 and iPadOS 14.4

Full Disclosure - 2 February, 2021 - 02:25

Posted by Apple Product Security via Fulldisclosure on Feb 01

APPLE-SA-2021-02-01-2 Additional information for
APPLE-SA-2021-01-26-1 iOS 14.4 and iPadOS 14.4

iOS 14.4 and iPadOS 14.4 addresses the following issues. Information
about the security content is also available at
https://support.apple.com/HT212146.

Analytics
Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4
and later, and iPod touch (7th generation)
Impact: A remote attacker may be able to cause a denial of service...

APPLE-SA-2021-02-01-1 macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave

Full Disclosure - 2 February, 2021 - 02:25

Posted by Apple Product Security via Fulldisclosure on Feb 01

APPLE-SA-2021-02-01-1 macOS Big Sur 11.2, Security Update 2021-001
Catalina, Security Update 2021-001 Mojave

macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security
Update 2021-001 Mojave addresses the following issues. Information
about the security content is also available at
https://support.apple.com/HT212147.

Analytics
Available for: macOS Big Sur 11.0.1, macOS Catalina 10.15.7, and
macOS Mojave 10.14.6
Impact: A remote attacker...

Oracle DB: various issues related to malicious database gateways

Full Disclosure - 1 February, 2021 - 15:30

Posted by Harrison Neal on Feb 01

The Oracle CPU dated 2020 Jan 14 included patches for various issues
related to database links and gateways ("Oracle Heterogeneous Services").
Two vulnerabilities in particular might lead to privilege escalation,
denial of service, or code execution attacks against Oracle databases.

Attackers might look like either:

1 ) A malicious or compromised database user with at least the CREATE
[PUBLIC] DATABASE LINK privilege; the CREATE [ANY]...

Backdoor.Win32.Celine / Missing Authentication

Full Disclosure - 1 February, 2021 - 15:30

Posted by malvuln on Feb 01

Discovery / credits: Malvuln - malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/3a634db497c417679d7a20587d689d1f.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Backdoor.Win32.Celine
Vulnerability: Missing Authentication
Description: MTX Celine Trojan 3.3.3 by Del_Armg0, listens on TCP port
4523. The malware allows casual intruders access to the infected
system as there is no authentication required....

Backdoor.Win32.Buterat.cxq / Insecure Permissions EoP

Full Disclosure - 1 February, 2021 - 15:30

Posted by malvuln on Feb 01

Discovery / credits: Malvuln - malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/8bfac1f52a94f36b711e20bce30161cc.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Backdoor.Win32.Buterat.cxq
Vulnerability: Insecure Permissions EoP
Description: This malware creates an insecure dir under c:\ drive
named "process", where it drops a random named executable and later
moves it to...

Backdoor.Win32.Anaptix.bd / Insecure Permissions

Full Disclosure - 1 February, 2021 - 15:30

Posted by malvuln on Feb 01

Discovery / credits: Malvuln - malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/9f178de7f9918288d93ac0f065f0aa2f.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Backdoor.Win32.Anaptix.bd
Vulnerability: Insecure Permissions
Description: Anaptix.bd malware creates a vuln directory named
Synaptics under c:\ drive, granting change (C) permissions to the
authenticated users group.
Type: PE32
MD5:...

Packed.Win32.Katusha.o (Ransomeware) / Insecure Permissions EoP

Full Disclosure - 1 February, 2021 - 15:30

Posted by malvuln on Feb 01

Discovery / credits: Malvuln - malvuln.com (c) 2021
Original source:
https://malvuln.com/advisory/e184abe44bec183a522d2c66bc3f90e0.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Packed.Win32.Katusha.o (Ransomeware)
Vulnerability: Insecure Permissions EoP
Description: The malware create two dirs, one of them under the users
home dir. The files dropped are hidden and can be viewed using dir /a
command. Then after about 35...
Syndicate content