Security
Headlines
HeadlinesLatestCVEs

Tag

#dos

Trojan.Win32.Pasta.mca Insecure Permissions

Trojan.Win32.Pasta.mca malware suffers from an insecure permissions vulnerability.

Packet Storm
Open in Source
#vulnerability#linux#red_hat#red_hat#vulnerability#red_hat#vulnerability#vulnerability#red_hat#vulnerability#vulnerability#red_hat#vulnerability#red_hat#vulnerability#dos#red_hat#vulnerability#red_hat#vulnerability
Ransomware cybercriminals linked to Norsk Hydro attack fall prey to Europol swoop

Two-year investigation results in raids targeting ‘high-value’ suspects and seizure of cash and computers

CVE-2021-29213: Document Display | HPE Support Center

A potential local bypass of security restrictions vulnerability has been identified in HPE ProLiant DL20 Gen10, HPE ProLiant ML30 Gen10, and HPE ProLiant MicroServer Gen10 Plus server's system ROMs prior to version 2.52. The vulnerability could be locally exploited to cause disclosure of sensitive information, denial of service (DoS), and/or compromise system integrity.

CVE-2021-27005: CVE-2021-27005 Denial of Service Vulnerability in Clustered Data ONTAP | NetApp Product Security

Clustered Data ONTAP versions 9.6 and higher prior to 9.6P16, 9.7P16, 9.8P7 and 9.9.1P3 are susceptible to a vulnerability which could allow a remote attacker to cause a crash of the httpd server.

CVE-2021-3705: HP LaserJet Pro Printer - Potential vulnerabilities to unauthorized configuration and denial of service | HP® Customer Support

Potential security vulnerabilities have been discovered on a certain HP LaserJet Pro printer that may allow an unauthorized user to reconfigure, reset the device.

CVE-2021-3704: HP LaserJet Pro Printer - Potential vulnerabilities to unauthorized configuration and denial of service | HP® Customer Support

Potential security vulnerabilities have been discovered on a certain HP LaserJet Pro printer that may allow a Denial of Service on the device.

CVE-2021-20838: JVN#33453839: Multiple improper restriction of XML external entity reference (XXE) vulnerabilities in Office Server Document Converter

Office Server Document Converter V7.2MR4 and earlier and V7.1MR7 and earlier allows a remote unauthenticated attacker to conduct an XML External Entity (XXE) attack to cause a denial of service (DoS) condition by processing a specially crafted XML document.

CVE-2021-20839: JVN#33453839: Multiple improper restriction of XML external entity reference (XXE) vulnerabilities in Office Server Document Converter

Office Server Document Converter V7.2MR4 and earlier and V7.1MR7 and earlier allows a remote unauthenticated attacker to conduct an XML External Entity (XXE) attack to cause a denial of service (DoS) condition to the other servers by processing a specially crafted XML document.

CVE-2020-26705: XML External Entity Injection (XXE) · Issue #1 · darkfoxprime/python-easy_xml

The parseXML function in Easy-XML 0.5.0 was discovered to have a XML External Entity (XXE) vulnerability which allows for an attacker to expose sensitive data or perform a denial of service (DOS) via a crafted external entity entered into the XML content as input.

CVE-2020-26705: XML External Entity Injection (XXE) · Issue #1 · darkfoxprime/python-easy_xml

The parseXML function in Easy-XML 0.5.0 was discovered to have a XML External Entity (XXE) vulnerability which allows for an attacker to expose sensitive data or perform a denial of service (DOS) via a crafted external entity entered into the XML content as input.