BullGuard Premium Protection version 15.0.297 suffers from an authentication bypass vulnerability.
e518b0247ad14e6664301878be74b7d5aa34d98c7e9b836f279738abe34a4d3bBullGuard Internet Security version 15.0.297 suffers from an authentication bypass vulnerability.
624206bd9c6a51e8ad271d67e4899a42171ca6df98a67470b32466dea534dd22The client management solution FrontRange Desktop and Server Management (DSM) stores and uses sensitive user credentials for required user accounts in an insecure manner which enables an attacker or malware with file system access to a managed client, for example with the privileges of a limited Windows domain user account, to recover the cleartext passwords. The recovered passwords can be used for privilege escalation attacks and for gaining unauthorized access to other client and/or server systems within the corporate network as at least one FrontRange DSM user account needs local administrative privileges on managed systems. Versions 7.2.1.2020 and 7.2.2.2331 are affected.
6dceda4b06fd7f28ead2853794061c22f60742ebcc1960711543fd9e45abc6aaPanda Gold Protection 2015 version 15.1.0 suffers from an authentication bypass vulnerability.
8279b24bbe87319af019d92f5fa713ba33bc5b2f819599f5d4bde53a1a8c3d70Panda Global Protection 2015 version 15.1.0 suffers from an authentication bypass vulnerability.
b0ce784ce3941c3e2211727da49529f55f628d6bc53a8a07e077f4926fefc997Panda Antivirus Pro 2015 version 15.1.0 suffers from an authentication bypass vulnerability.
78e5eb24225a62312d8ad8f761249bc6322d0fa2d403267061a8cea8d3736af3Panda Internet Security 2015 version 15.0.1 suffers from an authentication bypass vulnerability.
07f2adae46a6c1ae746b474e2de638331124c2f7f405eef6cd9b27bda87dcdffFancyFon FAMOC version 3.16.5 suffers from multiple cross site scripting vulnerabilities.
efa9652e44569c33fc4fee812a69f383c8001fe4f217c3d71994dbc05b3b72c3FancyFon FAMOC version 3.16.5 suffers from a remote SQL injection vulnerability.
3a671192f0facf33bd6129a2886a8ff9396192343746c6b576a400840ee63a00FancyFon FAMOC version 3.16.5 suffers from a session fixation vulnerability.
d9ed306cd69939777d43977859a23d2b0d269c3652c90899c8652bcdeb2459ceFancyFon FAMOC version 3.16.5 fails to mint one-way hashes without use of a salt.
b1d0a56de5c177ff2044a5a97d03ce257e2444febf937112e175e2fe8e4765a8The software encryption tool McAfee Endpoint Encryption for Removable Media (EERM) which is part of the data protection software McAfee Endpoint Encryption for Files and Folders (EEFF) uses a static and thus predictable salt for generating password hashes using the password-based key derivation function 2 (PBKDF2). Due to the use of a predictable, hard-coded salt, it is possible for an attacker to precompute password candidates and thus to perform more efficient dictionary attacks against the password-based authentication with the use of rainbow tables (time-memory trade-off).
8261951c34c305270d9eea3e7893a1426d99695fcb894956108ffdb81005bff3This whitepaper provides an analysis of why malware is so successful. For many years, different types of malware rank among the biggest IT security threats both in the business and the private domain. In order to protect one self from the dangers of malware, numerous software manufacturers offer IT security products like antivirus and endpoint protection software. But these products alone offer no sufficient protection from malware that knows some tricks, as the results of the author's recent research with the topic antivirus evasion show.
dec9eff1124fd9cbaf98f478be5bc00a12adec280ae5425357c695fc475ac738
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed