Welcome to Nettitude Labs - LRQA Nettitude Labs

QNAP Signage Station: Publish and Be Damned (Part 1)

tl;dr Nettitude researchers have discovered that QNAP Signage Station is vulnerable to CWE-434, Unrestricted Upload of File with Dangerous Type. This flaw can be leveraged by a low privileged remote user to gain interactive system [...]

By Mark Woods|February 26, 2016|

Exploiting a Kernel Paged Pool Buffer Overflow in Avast Virtualization Driver

CVE-2015-8620 We discovered this vulnerability in the Avast Virtualization driver (aswSnx.sys) that handles some of the ‘Sandbox’ and ‘DeepScreen’ functionality of all the Avast Windows products. We initially found this issue in versions 10.x (10.4.2233.1305) [...]

By Kyriakos Economou|February 17, 2016|

HMRC Phishing Scam

In the last few days, Nettitude’s threat intelligence platform has picked up a mass phishing campaign – involving the distribution over nearly two million individual emails – targeting HMRC customers. The attackers attempt to obtain [...]

By Tom Wilson|January 29, 2016|

McAfee File Lock Driver – Kernel Memory Leak

CVE: CVE-2015-8772 Vendor: McAfee - Intel Security Reported by: Kyriakos Economou Date of Release: 26/01/2016 Date of Fix: N/A Affected Products: Multiple Affected Version: McPvDrv.sys v4.6.111.0 Fixed Version: N/A Description: McAfee File Lock Driver does [...]

By Kyriakos Economou|January 26, 2016|

McAfee File Lock Driver – Kernel Stack Based BOF

CVE: CVE-2015-8773 Vendor: McAfee - Intel Security Reported by: Kyriakos Economou Date of Release: 26/01/2016 Date of Fix: N/A Affected Products: Multiple Affected Version: McPvDrv.sys v4.6.111.0 Fixed Version: N/A Description: McAfee File Lock Driver does [...]

By Kyriakos Economou|January 26, 2016|