Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Jacob Baines

Principal Research Engineer, Zero Day Research

Jacob Baines's picture

Jacob joined Tenable in 2015 as a reverse engineer for the Nessus plugins team where he analyzed remote code execution vulnerabilities and developed plugins. He was very involved in the team’s malware scanning and YARA implementations. Since joining Tenable, Jacob has 64 CVEs and 51 research advisories credited to his name. He is the founding member of the Zero Day Research team.

In his free time, Jacob enjoys running (slowly), reading, good beer, occasionally contributing to open source projects, and maintaining a regrettably large garden.

Research Advisory
Monday, June 11, 2018

Tenable discovered an unauthenticated stack buffer overflow in the Western Digital TV Media Player and Live Hub Media Center products. Tenable discovered this vulnerability while analyzing SEC Consult's Western Digital...

Research Advisory
Friday, May 4, 2018

Windows installations of OpenVPN are split into three parts: OpenVPN Service (openvpnserv.exe) Userland OpenVPN (openvpn.exe) User Interface The project is broken up in this way so that non-admin users can...

Research Advisory
Thursday, April 12, 2018

While following up on earlier research into Belkin's N750 F9K1103 v1 wireless router, Tenable found four new vulnerabilities. All the vulnerabilities are exploitable without authentication through the web interface. CVE-2018-1143:...

Blog Post
Thursday, April 12, 2018

Tenable Research recently audited an AXIS M3044-V network camera and learned that AXIS has introduced an application platform to their cameras. The camera even came with an app pre-installed: AXIS...

Blog Post
Wednesday, March 21, 2018

CTS-Labs published several AMD flaws over a week ago. For those of us who read vulnerability disclosures regularly, this particular disclosure was curious. Not only was the branded website bereft...

Blog Post
Thursday, March 15, 2018

Tenable Research just released an advisory for an information disclosure and denial-of-service vulnerability in Micro Focus Operations Orchestration software . This post provides further context around the discovered vulnerability. What...

Research Advisory
Monday, February 26, 2018

The default configuration of Operations Orchestration exposes the JMiniX JMX console to unauthenticated remote users. A malicious attacker can use this console to gather information: [email protected]:~$ curl -d "executed=true" -X...

Research Advisory
Monday, January 29, 2018

While researching a command injection vulnerability published on Exploit Database , Tenable found multiple remote vulnerabilities in NetGain Enterprise Manager . CVE-2017-16608: Incomplete Command Injection Patch NetGain tried to patch...

Research Advisory
Monday, January 29, 2018

After the publication of TRA-2017-18 , Tenable began to work on an exploit plugin. During research for the new plugin Tenable discovered that HPE's patch didn't fix all issues associated...

Research Advisory
Tuesday, November 21, 2017

While investigating Devil's Ivy , Tenable decided to set aside some time to fuzz gSOAP using american fuzzy lop . Tenable discovered that gSOAP is surprisingly resilient! But no one...

Pages

Try for Free Buy Now

Try Tenable.io

FREE FOR 30 DAYS

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Sign up now.

Buy Tenable.io

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

65 assets

Choose Your Subscription Option:

Buy Now
Try for Free Buy Now

Try Nessus Professional Free

FREE FOR 7 DAYS

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy Nessus Professional

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy a multi-year license and save. Add Advanced Support for access to phone, community and chat support 24 hours a day, 365 days a year. Full details here.

Try for Free Buy Now

Try Tenable.io Web Application Scanning

FREE FOR 30 DAYS

Enjoy full access to our latest web application scanning offering designed for modern applications as part of the Tenable.io platform. Safely scan your entire online portfolio for vulnerabilities with a high degree of accuracy without heavy manual effort or disruption to critical web applications. Sign up now.

Buy Tenable.io Web Application Scanning

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

5 FQDNs

$3,578

Buy Now

Try for Free Contact Sales

Try Tenable.io Container Security

FREE FOR 30 DAYS

Enjoy full access to the only container security offering integrated into a vulnerability management platform. Monitor container images for vulnerabilities, malware and policy violations. Integrate with continuous integration and continuous deployment (CI/CD) systems to support DevOps practices, strengthen security and support enterprise policy compliance.

Buy Tenable.io Container Security

Tenable.io Container Security seamlessly and securely enables DevOps processes by providing visibility into the security of container images – including vulnerabilities, malware and policy violations – through integration with the build process.

Get a Demo of Tenable.sc

Please fill out the form below with your contact information and a sales representative will contact you shortly to schedule a demo. You may also include a short comment (limited to 255 characters). Please note that fields with asterisks (*) are mandatory.

Try for Free Contact Sales

Try Tenable Lumin

FREE FOR 30 DAYS

Visualize and explore your Cyber Exposure, track risk reduction over time and benchmark against your peers with Tenable Lumin.

Buy Tenable Lumin

Contact a Sales Representative to see how Lumin can help you gain insight across your entire organization and manage cyber risk.

Request a demo of Tenable.ot

Get the Operational Technology Security You Need.
Reduce the Risk You Don’t.