General

Articles

• How to disable SMB2 enforcement
• CVE-2016-10009 openssh: loading of untrusted PKCS#11 modules in ssh-agent
• CVE-2016-7406: Format string vulnerability in Dropbear SSH
• CVE-2017-1000366: glibc: manipulate heap/stack via LD_LIBRARY_PATH
• CVE-2017-3169 httpd: mod_ssl NULL pointer dereference
• CVE-2017-7541 kernel: Possible heap buffer overflow in brcmf_cfg80211_mgmt_tx
• CVE-2014-3008: snmpd.php remote execution
• CVE-2016-2107: OpenSSL oracle padding vulnerability
• CVE-2018-1111 dhcp: Command injection vulnerability in the DHCP client NetworkManager integration script
• CVE-2014-3139: snmpd.php bypass authentication
• CVE-2017-7280: Unitrends RCE in systems.php password
• CVE-2016-8858 openssh: Memory exhaustion due to unregistered KEXINIT handler
• CVE-2017-5753 kernel: speculative execution bounds-check bypass (meltdown/spectre)
• CVE-2018-10858 samba: insufficient input validation in libsmbclient
• CVE-2017-8291 ghostscript corruption of operand stack
• CVE-2016-2183: SWEET32 TLS/SSL Birthday attacks on 3DES ciphers
• CVE-2018-3615 kernel: L1 Terminal Fault: SGX
• CVE-2015-8325: openssh privilege escalation via LD_PRELOAD
• CVE-2017-7679 httpd: mod_mime buffer overread
• CVE-2018-5390 kernel: TCP segments with random offsets allow a remote denial of service (SegmentSmack)
• CVE-2017-12478: Unitrends api/storage authentication bypass RCE
• CVE-2011-3607 httpd: ap_pregsub Integer overflow to buffer overflow
• CVE-2017-3167 httpd: ap_get_basic_auth_pw() authentication bypass
• CVE-2018-5733 dhcp: Reference count overflow in dhcpd allows denial of service
• CVE-2011-5000 openssh: post-authentication resource exhaustion bug via GSSAPI
• CVE-2015-7560 samba: Incorrect ACL get/set allowed on symlink path
• CVE-2018-10872 kernel: error in exception handling leads to DoS
• CVE-2018-10933 libssh: Authentication Bypass due to improper message callbacks implementation
• Bloomberg: The Big Hack article
• CVE-2016-5696: kernel: challenge ACK counter disclosure