Found 11 bookmarks
Custom sorting
“Dirty stream” attack: Discovering and mitigating a common vulnerability pattern in Android apps
“Dirty stream” attack: Discovering and mitigating a common vulnerability pattern in Android apps
Microsoft discovered a vulnerability pattern in multiple popular Android applications that could enable a malicious application to overwrite files in the vulnerable application’s internal data storage directory, which could lead to arbitrary code execution and token theft, among other impacts. We have shared our findings with Google’s Android Application Security Research team, as well as the developers of apps found vulnerable to this issue. We anticipate that the vulnerability pattern could be found in other applications. We’re sharing this research more broadly so developers and publishers can check their apps for similar issues, fix as appropriate, and prevent them from being introduced into new apps or releases.
#microsoft#EN#2024#Android#vulnerable#application#share#Dirty-stream
·microsoft.com·
“Dirty stream” attack: Discovering and mitigating a common vulnerability pattern in Android apps
One in four apps remain exposed to Log4Shell
One in four apps remain exposed to Log4Shell
Two years after the Log4Shell vulnerability in the open source Java-based Log4j logging utility was disclosed, circa one in four applications are dependent on outdated libraries, leaving them open to exploitation. Research from security shop Veracode revealed that the vast majority of vulnerable apps may never have updated the Log4j library after it was implemented by developers as 32 percent were running pre-2015 EOL versions.
#theregister#EN#2023#Log4Shell#Log4j#Veracode#outdated#vulnerable
·theregister.com·
One in four apps remain exposed to Log4Shell
Pulse Connect Secure: A View from the Internet
Pulse Connect Secure: A View from the Internet
Pulse Connect Secure is a low-cost and widely-deployed SSL VPN solution for remote and mobile users. Over the years, researchers have found several significant vulnerabilities in the server software, some even resulting in the active exploitation of critical infrastructure by malicious threat actors. In April of 2021, CISA released a report detailing some of these activities, which included exploiting several unknown (at the time) vulnerabilities and resulted in swift action from Ivanti, the Pulse Connect Secure software developer.
#censys#EN#2022#PulseConnectSecure#VPN#vulnerable#CVE-2021-22893
·censys.io·
Pulse Connect Secure: A View from the Internet
Over 18.8 million IPs vulnerable to Middlebox TCP reflection DDoS attacks
Over 18.8 million IPs vulnerable to Middlebox TCP reflection DDoS attacks
We recently began scanning for middlebox devices that are vulnerable to Middlebox TCP reflection, which can be abused for DDoS amplification attacks.  Our results are now shared daily, filtered for your network or constituency in the new Vulnerable DDoS Middlebox report. We uncover over 18,800,000 IPv4 addresses responding to our Middlebox probes. In some cases the amplification rates can exceed 10,000!
#shadowserver#2022#EN#DDoS#Vulnerable#Middlebox#attacks#internet#monitoring
·shadowserver.org·
Over 18.8 million IPs vulnerable to Middlebox TCP reflection DDoS attacks
Pulse Connect Secure: A View from the Internet
Pulse Connect Secure: A View from the Internet
Pulse Connect Secure is a low-cost and widely-deployed SSL VPN solution for remote and mobile users. Over the years, researchers have found several significant vulnerabilities in the server software, some even resulting in the active exploitation of critical infrastructure by malicious threat actors. In April of 2021, CISA released a report detailing some of these activities, which included exploiting several unknown (at the time) vulnerabilities and resulted in swift action from Ivanti, the Pulse Connect Secure software developer.
#censys#EN#2022#PulseConnectSecure#VPN#vulnerable#CVE-2021-22893
·censys.io·
Pulse Connect Secure: A View from the Internet
Over 18.8 million IPs vulnerable to Middlebox TCP reflection DDoS attacks
Over 18.8 million IPs vulnerable to Middlebox TCP reflection DDoS attacks
We recently began scanning for middlebox devices that are vulnerable to Middlebox TCP reflection, which can be abused for DDoS amplification attacks.  Our results are now shared daily, filtered for your network or constituency in the new Vulnerable DDoS Middlebox report. We uncover over 18,800,000 IPv4 addresses responding to our Middlebox probes. In some cases the amplification rates can exceed 10,000!
#shadowserver#2022#EN#DDoS#Vulnerable#Middlebox#attacks#internet#monitoring
·shadowserver.org·
Over 18.8 million IPs vulnerable to Middlebox TCP reflection DDoS attacks
Over 18.8 million IPs vulnerable to Middlebox TCP reflection DDoS attacks
Over 18.8 million IPs vulnerable to Middlebox TCP reflection DDoS attacks
We recently began scanning for middlebox devices that are vulnerable to Middlebox TCP reflection, which can be abused for DDoS amplification attacks.  Our results are now shared daily, filtered for your network or constituency in the new Vulnerable DDoS Middlebox report. We uncover over 18,800,000 IPv4 addresses responding to our Middlebox probes. In some cases the amplification rates can exceed 10,000!
#shadowserver#2022#EN#DDoS#Vulnerable#Middlebox#attacks#internet#monitoring
·shadowserver.org·
Over 18.8 million IPs vulnerable to Middlebox TCP reflection DDoS attacks