Vulnerabilities
Vulnerability Research

Finding and Fixing Vulnerability in Microsoft Windows SMB2 _Smb2ValidateProviderCallback() Vulnerability (MS09-050, Network Check), a High Risk Vulnerability

Tue, 09/24/2019
Vulnerabilities in Microsoft Windows SMB2 '_Smb2ValidateProviderCallback()' Vulnerability (MS09-050, Network Check) is a high risk vulnerability that is one of the most frequently found on networks around the world. This issue has been around since at least 1990 but has proven either difficult to detect, difficult to resolve or prone to being overlooked entirely.http://www.microsoft.com/technet...
Vulnerability Management
Vulnerability Research

Finding and Fixing Vulnerability in Dropbear SSH Server Channel Concurrency Use-after-free Code Execution, a High Risk Vulnerability

Tue, 09/24/2019
What is Dropbear SSH Vulnerability?Vulnerabilities in Dropbear SSH Server Channel Concurrency Use-after-free Code Execution is a high risk vulnerability that is one of the most frequently found on networks around the world. This issue has been around since at least 1990 but has proven either difficult to detect, difficult to resolve or prone to being overlooked entirely.Vulnerability Name:Dropbear...
Vulnerability Management
Vulnerability Research

Finding and Fixing Vulnerability in Obsolete Web Server Software Detection, a High Risk Vulnerability

Tue, 09/24/2019
Vulnerabilities in Obsolete Web Server Software Detection is a high risk vulnerability that is one of the most frequently found on networks around the world. This issue has been around since at least 1990 but has proven either difficult to detect, difficult to resolve or prone to being overlooked entirely.Vulnerability Name:Obsolete Web Server Software DetectionTest ID:11350Risk:HighCategory:Web...
Vulnerability Management
Vulnerability Research

Finding and Fixing Vulnerabilities in .NET Framework and Microsoft Silverlight Allow Code Execution (MS12-016), a High Risk Vulnerability

Tue, 09/24/2019
Vulnerabilities in .NET Framework and Microsoft Silverlight Allow Code Execution (MS12-016) is a high risk vulnerability that is one of the most frequently found on networks around the world. This issue has been around since at least 1990 but has proven either difficult to detect, difficult to resolve or prone to being overlooked entirely.Vulnerability Name:Vulnerabilities in .NET Framework and...
Vulnerability Management
Vulnerability Research

Finding and Fixing Vulnerabilities in Microsoft SQL Server Allows Code Execution (MS09-004, KB959420), a High Risk Vulnerability

Tue, 09/24/2019
Vulnerabilities in Microsoft SQL Server Allows Code Execution (MS09-004, KB959420) is a high risk vulnerability that is one of the most frequently found on networks around the world. This issue has been around since at least 1990 but has proven either difficult to detect, difficult to resolve or prone to being overlooked entirely. Vulnerability Name:Microsoft SQL Server Allows Code Execution (MS09...
Vulnerability Management
Vulnerability Research

Finding and Fixing Vulnerabilities in .NET Framework Allows Code Execution (MS11-028), a High Risk Vulnerability

Tue, 09/24/2019
Vulnerabilities in .NET Framework Allows Code Execution (MS11-028) is a high risk vulnerability that is one of the most frequently found on networks around the world. This issue has been around since at least 1990 but has proven either difficult to detect, difficult to resolve or prone to being overlooked entirely.Vulnerability Name:.NET Framework Allows Code Execution (MS11-028)Test ID:13362Risk...
Vulnerability Management
Vulnerability Research

Finding and Fixing Vulnerabilities in PHP Unsupported Version Detection, a High Risk Vulnerability

Tue, 09/24/2019
Vulnerabilities in PHP Unsupported Version Detection is a high risk vulnerability that is one of the most frequently found on networks around the world. This issue has been around since at least 1990 but has proven either difficult to detect, difficult to resolve or prone to being overlooked entirely. Vulnerability Name:PHP Unsupported Version DetectionTest ID:14682Risk:HighCategory:Server Side...
Vulnerability Management
Vulnerability Research

Finding and Fixing Vulnerabilities in MySQL Unsupported Version Detection, a High Risk Vulnerability

Tue, 09/24/2019
Vulnerabilities in MySQL Unsupported Version Detection is a high risk vulnerability that is one of the most frequently found on networks around the world. This issue has been around since at least 1990 but has proven either difficult to detect, difficult to resolve or prone to being overlooked entirely.Vulnerability Name:Vulnerabilities in MySQL Unsupported Version DetectionTest ID:14261Risk...
Vulnerability Management
Vulnerability Research

Finding and Fixing Vulnerabilities in OpenSSL Running Version Prior to 1.0.1i, a High Risk Vulnerability

Tue, 09/24/2019
Vulnerabilities in OpenSSL Running Version Prior to 1.0.1i is a high risk vulnerability that is one of the most frequently found on networks around the world. This issue has been around since at least 1990 but has proven either difficult to detect, difficult to resolve or prone to being overlooked entirely.Vulnerability Name:Vulnerabilities in OpenSSL Running Version Prior to 1.0.1iTest ID...
Vulnerability Management
Vulnerability Research

Finding and Fixing Cisco SSH Malformed Packet DoS Vulnerability, a High Risk Vulnerability

Tue, 09/24/2019
Cisco SSH Malformed Packet DoS is a high risk vulnerability that is one of the most frequently found on networks around the world. This issue has been around since at least 1990 but has proven either difficult to detect, difficult to resolve or prone to being overlooked entirely.Vulnerability Name:Cisco SSH Malformed Packet DoSTest ID:2092Risk:HighCategory:Network devicesType:AttackSummary:It is...
Vulnerability Management
Vulnerability Research

How to Find and Fix the Mountable NFS Shares Vulnerability (High Risk)

Tue, 09/24/2019
Mountable NFS Shares is a high-risk vulnerability that is one of the most frequently found on networks around the world. This issue has been around since at least but has proven either difficult to detect, difficult to resolve or prone to being overlooked entirely. As NFS Exported Share Information Disclosures outline, successful exploitation will allow remote attackers to mount an NFS file system...
Vulnerability Management
Vulnerability Research

Finding and Fixing Microsoft Windows HTTP.sys Code Execution, a High Risk Vulnerability

Tue, 09/24/2019
Microsoft Windows HTTP.sys Code Execution is a high risk vulnerability that is one of the most frequently found on networks around the world. This issue has been around since at least April 14, 2015, but has proven either difficult to detect, difficult to resolve or prone to being overlooked entirely.Name:Microsoft Windows HTTP.sys Code Execution VulnerabilityAVDS Test ID: 17596Risk Level...
Vulnerability Management
Vulnerability Research

BlueKeep Vulnerability – Patch Now, Patch Again

Wed, 06/19/2019
With the May 2019 Patch Tuesday release from Microsoft, it was revealed a number of older Microsoft operating systems are vulnerable to a condition known as BlueKeep (CVE-2019-0708). BlueKeep is a Remote Code Execution (RCE) flaw in Remote Desktop Services (RDS)/Remote Desktop Protocol (RDP) allowing code to run with system level access and is potentially “wormable” making it possible for an...
Vulnerability Management
Vulnerability Research

SoftNAS Cloud® Zero-day Blog

Wed, 03/20/2019
A vulnerability has been identified in SoftNAS Cloud(R) data storage platform discovered by our Vulnerability Research Team (VRT). The engineers at SoftNAS are to be commended for their prompt response to the identified flaw and their team’s work with VRT to provide prompt fixes for this cyber security issue.SoftNAS has provided a patch for the vulnerability identified on the application. The...
Vulnerability Management
Vulnerability Research

Analysis of NUUO NVRmini2 Stack Overflow Vulnerability

Mon, 12/10/2018
Exploiting CVE-2018-19864- Samuel S., Senior Vulnerability ResearcherDuring an audit of NUUO’s NVRmini2, a stack overflow vulnerability was discovered in a request handling function in the ‘lite_mv’ custom SIP service binary. The NUUO NVRmini2 runs a custom SIP service on TCP ports 5160 and 5150 via a binary at /NUUO/bin/lite_mv. In order to examine this bug more closely, we analyze the function...
Vulnerability Management
Vulnerability Research

NUUO Firmware Disclosure

Thu, 11/29/2018
NUUO Zero-Day BlogA vulnerability identified in NUUO NVRmini2 Network Video Recorder devices discovered by our Vulnerability Research Team (VRT). We commend NUUO for their prompt response to the identified flaws and their engineering team’s work with VRT to provide fixes for these cyber security issues.NUUO has provided a patch for the vulnerability identified on the application. The patched...
Vulnerability Management
Vulnerability Research

ManageEngine Disclosure #3

Wed, 05/02/2018
Our research team is disclosing vulnerabilities identified in ManageEngine’s ADSelfService Plus application. ManageEngine was prompt in responding to the identified flaws and providing fixes for these security issues.A patched version of ADSelfService Plus can be downloaded from the ManageEngine site at: https://www.manageengine.com/products/self-service-password/download.htmlClients who currently...
Vulnerability Management
Vulnerability Research

ManageEngine Disclosure #2

Tue, 03/20/2018
We disclosed multiple additional vulnerabilities identified on various ManageEngine applications. We commend ManageEngine for their prompt response to the identified flaws and their engineering team’s work with VRT to provide fixes for these cyber security issues.ManageEngine has provided patches for each of the vulnerabilities identified on the applications. The patched applications can be...
Vulnerability Management
Vulnerability Research

ManageEngine

Wed, 01/31/2018
Update March 21, 2018: Added additional vulnerabilities disclosed to ManageEngine that were excluded from the original blog post affecting several additional ManageEngine applications.Multiple vulnerabilities have been identified on various ManageEngine applications discovered by our Vulnerability Research Team (VRT). We commend ManageEngine for their prompt response to the identified flaws and...
Vulnerability Management
Vulnerability Research

Avamar Zero-Day

Thu, 01/04/2018
Today Digital Defense is disclosing three vulnerabilities identified on Dell EMC Data Protection Suite Family products discovered by the Digital Defense Vulnerability Research Team (VRT). VRT would like to commend Dell EMC for their prompt handling and diligent attention to the issues and their work with Digital Defense engineering staff to understand, resolve and verify the fixes for these...
Vulnerability Management