Assignment2_2021 PDF

Preview

Summary

Assignment2...

Description

Student name:

Assignment #2: Reconnaissance and Security Vulnerabilities of Web Servers Netflix # of the vulnerabilit y 1

Code

2

CVE-2021-28133

Zoom allows attackers to get unauthorized access sometimes and read private information on a participant’s screen through 5.5.4. Yet the participant didn’t share that private part of their screen, on the other hand when the participant shares their screen other participants in the meeting can be able to see all contents on the screen that were supposed to be not shared at all .

3

CVE-2020-5540

4

CVE-2020-11443

There is a vulnerability that is related to Dynamic-link Library “DLL” , loading in a zoom sharing service can allow an attacker who had local access to machine on which the service of that machine was running with elevated privileges to change their privileges to elevated privileges through using malicious DLL. There is An exploitable path traversal vulnerability in the zoom client, version 4.6.10 processes message also animated GIFs , a particularly made chat messages can make an arbitrary file write which can possibly be used to achieve arbitrary code execution. The attacker needs to send a specifically designed message to the target or a group to exploit this vulnerability.

5

CVE-2020-11470

Zoom participant that are doing meetings through 4.6.8 MacOS has disable- library – validation entitlement that allows local process to get unnecessarily camera and microphone access by using the designed library and due to getting access to the client’s microphone and camera.

6

CVE-2016-10894

Xtrlock 2.10 does not bock multitouch events. An attacker can send input different programs like pan scrolling, gestures or regular mouse clicks and get unauthorized control t a locked

Description

CVE_2019-20465 There was an issue found on Sannce Smart HD Wi-Fi security camera Ean devices. Controlling the camera’s feature like pan , zooming and tilt functionality can be done using TELNET without using password

screen. 7

CVE-2019-13567

The zoom client before 4.4.53932 on macOS allows remote code execution. If the hidden web server is running , but the zoom client or participant is not configured or can’t be used , an attacker can casually execute a code with malicious designed UR.

8

CVE-2019-13450

Clients through 4.4.4 and central 7.0.136380.0312 on macOs, casually can make a zoom user to join a video call with open camera by forcing the user, without the user wanting to join the video call. This happens because any kind of web site can communicate with the zoom web server on localhost port 19421 or 19424.

9

CVE-2019-13449

In zoom users before 4.4.2 on macOS , attacker can make a denial of service , a sequence of invalid launch

10

CVE-2017-15049

11

CVE-2016-6607

Zoom launcher for zoom client with Linux before 2.0.115900 does not clean up the user’s input when handling a shell command, which can allow attackers to execute arbitrary code. XSS problems were found in phpMyAdmin, which affects zoom search specially the designed column contents can used to triggers an XXS attack. When MySQL server is working with a specially designed log bin directive, database tab and database search.

12

CVE-2015-2755

More than cross-site requested copying vulnerabilities in google map travel plugin before 4.0 for open source WordPress that allows attackers to take over the authentication of administrators....