/* * These styles apply ONLY to the header and footer assets. */ * { padding: 0; margin: 0; box-sizing: border-box; } .super-nav { display: flex; justify-content: flex-end; align-items: center; margin: 0 auto; max-width: 1264px; padding-left: 40px; padding-right: 40px; height: 40px; text-align: right; } .super-nav a { color: #34427c; margin-right: 20px; padding: 10px; text-decoration: none; } .super-nav a:hover, .super-nav a:focus { background-color: #f7f9fa; } .footer { background: #f5f5f6; color: #555a62; font-size: 14px; line-height: 1.5; padding: 0; } .footer-image { background-image: url("/themes/kaseya/assets/images/footerImage.png"); height: 500px; background-repeat: no-repeat; background-size: cover; margin-top: -100px; } .footer-wrap { padding-left: 18px; padding-right: 18px; max-width: 1236px; margin: 0 auto; } .footer-main-content { background-color: #000; padding: 100px 0; } .footer .footer-col-title { color: #ffffff; font-weight: 700; font-size: 13px; padding-bottom: 10px; text-transform: uppercase; } .footer .footer-link { color: #9b9ca0; text-decoration: none; } .footer .footer-link:hover, .footer .footer-link:focus, .footer .footer-link:active { text-decoration: underline; } .footer-main-content .footer-link { padding-top: 10px; } .footer-row { display: flex; flex-wrap: wrap; justify-content: space-between; align-items: center; margin: -3px; } .footer-main-content-row { align-items: flex-start; } .footer-bottom-content { padding: 10px; align-items: center; } .footer-col { padding: 0 3px; display: flex; flex-direction: column; } .footer-col-copyRight { justify-content: flex-start; color: #9b9ca0; flex: 1; display: flex; } .footer-last-col { flex-direction: row; } .footer-last-col .footer-link { padding-right: 10px; text-transform: uppercase; } @media screen and (max-width: 768px) { .super-nav { padding-right: 0; } .footer-image { height: 250px; } .footer-main-content { padding: 40px 0; } .footer .footer-col-title { padding-top: 10px; } .footer-row:not(.footer-main-content-row) { display: block; } .footer-col:not(.footer-main-content-col) { width: 100%; text-align: center; padding: 10px 0; } .footer-main-content-col { width: 50%; } .footer-last-col { flex-direction: column; } .footer-last-col .footer-link { padding-bottom: 10px; } } /*# sourceMappingURL=styles.css.map */ Ask the Community Groups

Backup General

General

CVE-2011-4317 httpd: uri scheme bypass of the reverse proxy vulnerability
CVE ID CVE-2011-4317 DESCRIPTION The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse…
CVE-2012-0053 httpd: cookie exposure due to error responses
CVE ID CVE-2012-0053 DESCRIPTION protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed…
Security: Common false positive scan results
SUMMARY Below are some common false positive results from security scans. DESCRIPTION Unitrends vulnerability responses for some common false positive scan resultsShort DescriptionSeverityCVEFamilyUnitrends RiskMicrosoft Windows SMB Guest Account Local User AccessMediumCVE-1999-0505Windowsnone *1SMB Signing…
CVE-2016-10012 openssh: Bounds check evaded in shared memory manager with pre-authentication compression support
CVE ID CVE-2016-10012 DESCRIPTION It was found that the boundary checks in the code implementing support for pre-authentication compression could have been optimized out by certain compilers. An attacker able to compromise the privilege-separated process could possibly use this flaw for further attacks against the…
CVE-2017-12479: Unitrends LOGDIR privilege escalation RCE
CVE ID CVE-2017-12479 DESCRIPTION It was discovered that an issue in the Unitrends session logic allowed using the LOGDIR environment variable during a web session to elevate an existing low privilege user to root privileges. A remote attacker with existing low-privilege credentials could then execute arbitrary commands…
Boomerang FAQ
SUMMARY Frequently Asked Questions for Unitrends Boomerang DESCRIPTION Unitrends Boomerang is available as a virtual appliance that lets you easily replicate your VMware VMs to low cost AWS S3 or Azure Blob storage, without costing you a cent for cloud compute. When needed, Boomerang will automate the conversion and…
CVE-2007-2243: OpenSSH S/KEY Authentication Enumeration
SUMMARY Not vulnerable. CVE ID CVE-2007-2243 DESCRIPTION OpenSSH S/KEY Authentication Enumeration OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabled, allows remote attackers to determine the existence of user accounts by attempting to authenticate via S/KEY, which displays a different response if the…
CVE-2017-1000368 sudo: Privilege escalation via improper get_process_ttyname parsing
CVE ID CVE-2017-1000368 DESCRIPTION It was found that the original fix for CVE-2017-1000367 was incomplete. A flaw was found in the way sudo parsed tty information from the process status file in the proc filesystem. A local user with privileges to execute commands via sudo could use this flaw to escalate their privileges…
CVE-2018-3620 kernel: L1 Terminal Fault: OS/SMM
CVE ID CVE-2018-3620 DESCRIPTION Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis. 7.1 High…
CVE-2017-1000365: kernel: stack limit bypass
CVE ID CVE-2017-1000365 DESCRIPTION The Linux Kernel imposes a size restriction on the arguments and environmental strings passed through RLIMIT_STACK/RLIM_INFINITY (1/4 of the size), but does not take the argument and environment pointers into account, which allows attackers to bypass this limitation. This affects Linux…