Tenable

SEPTEMBER 14, 2020

Security researchers reveal how the cryptographic authentication scheme in Netlogon can be exploited to take control of a Windows domain controller (DC). CVE-2020-1472 is a privilege escalation vulnerability due to the insecure usage of AES-CFB8 encryption for Netlogon sessions. Identifying affected systems. Background.

Windows 114

Windows LAN Backup Authentication 114

Tenable

OCTOBER 10, 2023

An unauthenticated, remote attacker could exploit this vulnerability using social engineering in order to convince a target to open a link or download a malicious file and run it on the vulnerable system. Alternatively, an attacker could execute a specially crafted application to exploit the flaw after gaining access to a vulnerable system.

Windows 114

Windows Software Review Azure Systems Review 114

Tenable

AUGUST 8, 2023

Critical CVE-2023-35385, CVE-2023-36910 and CVE-2023-36911 | Microsoft Message Queuing Remote Code Execution Vulnerability CVE-2023-35385 , CVE-2023-36910 and CVE-2023-36911 are RCE vulnerabilities in the Microsoft Message Queuing (MSMQ) component of Windows operating systems that were each given a CVSSv3 score of 9.8

Windows 98

Windows Software Review .Net Azure 98

Tenable

JANUARY 10, 2023

Windows ALPC. Windows Ancillary Function Driver for WinSock. Windows Authentication Methods. Windows Backup Engine. Windows Bind Filter Driver. Windows BitLocker. Windows Boot Manager. Windows Credential Manager. Windows Cryptographic Services. Windows DWM Core Library.

Windows 99

Windows Software Review Operating System LAN 99

Kaseya

JUNE 29, 2020

Continuous network monitoring is essential to make sure all your IT networks and systems maintain a high level of uptime. They allow IT teams to identify and troubleshoot issues and keep networks and systems up and running. Many organizations use WAN links to interconnect local area networks (LANs) at geographically dispersed sites.

Network 123

Network LAN WAN Systems Review 123

Tenable

MARCH 10, 2020

Based on an intrusion prevention system (IPS) rule released by FortiGuard Labs , the flaw appears to stem from a buffer overflow vulnerability, which occurs due to an error in the handling of compressed data packets. The following versions of Microsoft Windows and Windows Server are affected. Windows Server.

Software Review 129

Software Review SMB LAN Windows 129

Tenable

JUNE 8, 2020

The vulnerability exists due to the ability to control the Callback header value in the UPnP SUBSCRIBE function. Tenable product coverage for this vulnerability can be found in the “identifying affected systems” section below. Operating Systems. Windows 10. Identifying affected systems. Vendor/Model. Xbox One OS.

LAN 110

LAN Media IoT Systems Review 110