Twitter
LinkedIn
RSS

Posts Tagged ‘vulnerability’


IOActive: firmware analysis of #Inmarsat and #Iridium #SATCOM terminals shows their security is dismal and abysmal

IOActive: firmware analysis of #Inmarsat and #Iridium #SATCOM terminals shows their security is dismal and abysmal — 13 retweets 5 favorites

Read More...

Adobe Releases Security Update for Reader Mobile

Original release date: April 17, 2014 Adobe has released a security update to address a vulnerability in Adobe Reader Mobile 11.1.3 and earlier versions for Android.

Read More...

Protecting Against Heartbleed Vulnerability

The heartbleed vulnerability is a programming error found in the popular OpenSSL library that if exploited will allow an attacker to steal pieces of information from the memory of a server….

Read More...

Hack Miami 2014 CFP: May 9 – 11 including Dave Monnier of Team Cymru on the #SOHOPharming #malware #infosec attacks

Hack Miami 2014 CFP: May 9 – 11 including Dave Monnier of Team Cymru on the #SOHOPharming #malware #infosec attacks — 5 retweets 0 favorites

Read More...

whitepaper: PE Injection Explained using documented features and C++, no assembly knowledge required

whitepaper: PE Injection Explained using documented features and C++, no assembly knowledge required — 4 retweets 8 favorites

Read More...

Oracle Releases April 2014 Security Advisory

Original release date: April 16, 2014 Oracle has released its Critical Patch Update for April 2014 to address 104 vulnerabilities across multiple products. This update contains the following security fixes:    2 for Oracle Database Server 20 for Oracle Fusion Middleware   3 for Oracle Hyperion 10 for Oracle Supply Chain Products Suite   8 for Oracle PeopleSoft Products   1 for Oracle Siebel CRM   1 for Oracle iLearning 37 for Oracle Java SE   3 for Oracle and Sun Systems Products Suite   5 for Oracle Virtualization 14 for Oracle MySQL   US-CERT encourages users and administrators to review the April 2014 Critical Patch Update and follow best practice security policies to determine which updates should be applied. This product is provided subject to this Notification and this Privacy & Use policy.

Read More...

55,000 Social Security Numbers exposed in VFW DOT org security breach via Feb IE code from .cn

55,000 Social Security Numbers exposed in VFW DOT org security breach via Feb IE code from .cn — 4 retweets 0 favorites

Read More...

Sysdig: System Exploration, Troubleshooting Tool using linux kernel facility called tracepoints meaning less overhead

Sysdig: System Exploration, Troubleshooting Tool using linux kernel facility called tracepoints meaning less overhead — 6 retweets 3 favorites

Read More...

VU#215284: Artiva Agency Single Sign-On (SSO) feature vulnerability

Vulnerability Note VU#215284 Artiva Agency Single Sign-On (SSO) feature vulnerability Original Release date: 14 Apr 2014 | Last revised: 14 Apr 2014 Overview Artiva Agency Single Sign-On (SSO) feature checks only the local Windows login name which could allow an attacker to impersonate another Artiva Agency user. Description Artiva Agency Single Sign-On (SSO) feature when configured with the domain name option allows the currently logged on Windows user to automatically be logged into the Artiva Agency application using the same username without any additional authentication.

Read More...

SB14-104: Vulnerability Summary for the Week of April 7, 2014

Original release date: April 14, 2014 The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) / United States Computer Emergency Readiness Team (US-CERT).

Read More...