Tenable

MARCH 10, 2020

Critical unpatched “wormable” remote code execution (RCE) vulnerability in Microsoft Server Message Block 3.1.1 Successful exploitation of the vulnerability would grant the attacker arbitrary code execution in both SMB Server and SMB Client. The following versions of Microsoft Windows and Windows Server are affected.

Software Review 130

Software Review SMB Windows LAN 130

Tenable

OCTOBER 10, 2023

Successful exploitation could lead to the disclosure of New Technology LAN Manager (NTLM) hashes. Researcher Florian Hauser of Code White GmbH published a two-part blog series in September 2022 investigating Skype for Business 2019. However, this vulnerability is noted to have been publicly disclosed previously. and rated critical.

Windows 115

Windows Software Review Azure Systems Review 115

Tenable

JANUARY 10, 2023

Visual Studio Code. Windows ALPC. Windows Ancillary Function Driver for WinSock. Windows Authentication Methods. Windows Backup Engine. Windows Bind Filter Driver. Windows BitLocker. Windows Boot Manager. Windows Credential Manager. Windows Cryptographic Services. Windows iSCSI.

Windows 99

Windows Software Review Operating System LAN 99

Tenable

AUGUST 8, 2023

Critical CVE-2023-35385, CVE-2023-36910 and CVE-2023-36911 | Microsoft Message Queuing Remote Code Execution Vulnerability CVE-2023-35385 , CVE-2023-36910 and CVE-2023-36911 are RCE vulnerabilities in the Microsoft Message Queuing (MSMQ) component of Windows operating systems that were each given a CVSSv3 score of 9.8

Windows 98

Windows Software Review .Net Azure 98

Tenable

JUNE 8, 2020

The vulnerability exists due to the ability to control the Callback header value in the UPnP SUBSCRIBE function. Windows 10. Proof of Concept Code released on GitHub. As a result, Çadirci says this particular vulnerability potentially affects “billions of devices.”. Source: CallStranger Technical Report. Operating Systems.

LAN 110

LAN Media IoT Systems Review 110

Netflix Tech

AUGUST 30, 2021

By Benson Ma , Alok Ahuja Introduction At Netflix, hundreds of different device types, from streaming sticks to smart TVs, are tested every day through automation to ensure that new software releases continue to deliver the quality of the Netflix experience that our customers enjoy. In this blog post, we will focus on the latter feature set.

Software Review 85

Software Review Systems Review Windows Testing 85

Tenable

AUGUST 11, 2021

In a year of headline-making vulnerabilities and incidents, Zerologon (CVE-2020-1472) stands out due to its widespread adoption by threat actors and its checkered disclosure timeline. CVE-2020-1350: Wormable Remote Code Execution Vulnerability in Windows DNS Server Disclosed (SIGRed). September 1. Secura Whitepaper.

Software Review 101

Software Review LAN Government Windows 101