Online upgrade information in some firmware packages of Dahua products is not encrypted. Attackers can obtain this information by analyzing firmware packages by specific means. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC-HFW2X2X,IPC-HDW4X2X,IPC-HFW4X2X,IPC-HDBW4X2X,IPC-HDW5X2X,IPC-HFW5X2X for versions which Build time is before August 18,2019.
In Code42 Enterprise 6.7.5 and earlier, 6.8.4 through 6.8.8, and 7.0.0 a vulnerability has been identified that may allow arbitrary files to be uploaded to Code42 servers and executed. This vulnerability could allow an attacker to create directories and save files on Code42 servers, which could potentially lead to code execution.
In Code42 Enterprise 6.7.5 and earlier, 6.8.4 through 6.8.8, and 7.0.0 a vulnerability has been identified that may allow arbitrary files to be uploaded to Code42 servers and executed. This vulnerability could allow an attacker to create directories and save files on Code42 servers, which could potentially lead to code execution.
Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3.
I recently TA’d the SANS SEC 504 class (Hacker Tools, Techniques, Exploits, and Incident Handling) , and one of the topics we covered was attackers “editing” windows event logs to cover their tracks, especially the Windows Security Event Log. The method to do this is: Set the Windows Event Log service state to “disabled” Stop …
Read more “Investigating Gaps in your Windows Event Logs, (Tue, Sep 17th)”
I recently TA’d the SANS SEC 504 class (Hacker Tools, Techniques, Exploits, and Incident Handling) , and one of the topics we covered was attackers “editing” windows event logs to cover their tracks, especially the Windows Security Event Log. The method to do this is: Set the Windows Event Log service state to “disabled” Stop …
Read more “Investigating Gaps in your Windows Event Logs, (Tue, Sep 17th)”
I recently TA’d the SANS SEC 504 class (Hacker Tools, Techniques, Exploits, and Incident Handling) , and one of the topics we covered was attackers “editing” windows event logs to cover their tracks, especially the Windows Security Event Log. The method to do this is: Set the Windows Event Log service state to “disabled” Stop …
Read more “Investigating Gaps in your Windows Event Logs, (Tue, Sep 17th)”
Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3.
Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3.
Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3.