Lucene search
K

764 matches found

The Hacker News
The Hacker News
added 2013/01/07 7:56 a.m.19 views

SkypeHide to Send secret messages into silence of Skype Calls

Polish Researchers have discovered a clever way to send secret messages during a phone call on Skype. We know that, by default skype calls use 256-bit advanced encryption, but researchers find that is not enough. So they find out this new way to communicate messages more secretly by using silence...

6.7AI score
Exploits0
ThreatPost
ThreatPost
added 2012/07/11 2:50 p.m.12 views

Social Site Formspring Says 420k User Password Hashes Posted Online

Hackers broke into a development server at Formspring, a social Q&A site, and made off with the password hashes for 420,000 users and later posted them online. The company has reset all of the users’ passwords and said it also has changed the way that it handles passwords. Formspring officials sa...

1.3AI score
Exploits0References4
OpenVAS
OpenVAS
added 2012/02/13 12:0 a.m.54 views

Ubuntu Update for openssl USN-1357-1

Ubuntu Update for Linux kernel vulnerabilities USN-1357-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13571.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for openssl USN-1357-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

9.3CVSS0.3AI score0.17687EPSS
Exploits1References2
CVE
CVE
added 2012/01/27 12:0 a.m.89 views

CVE-2011-4354

OpenSSL vulnerability CVE-2011-4354 affects OpenSSL before 0.9.8h on 32-bit platforms, in the ECDH/ECDHE handshake with P-256 and P-384 curves, due to an incorrect modular reduction algorithm in bn_nist.c. This design flaw allows remote attackers to obtain the TLS server private key after multipl...

5.8CVSS6.3AI score0.04044EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2012/01/27 12:0 a.m.42 views

CVE-2011-4354

crypto/bn/bnnist.c in OpenSSL before 0.9.8h on 32-bit platforms, as used in stunnel and other products, in certain circumstances involving ECDH or ECDHE cipher suites, uses an incorrect modular reduction algorithm in its implementation of the P-256 and P-384 NIST elliptic curves, which allows...

5.8CVSS6.2AI score0.04044EPSS
Exploits0
Packet Storm
Packet Storm
added 2011/10/24 12:0 a.m.37 views

Cytel Studio 9.0 (CY3 File) Stack Buffer Overflow

$Id: cytelstudiocy3.rb 14041 2011-10-24 01:39:11Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2011/03/06 12:0 a.m.34 views

Novell iPrint Client ActiveX Control <= 5.52 Buffer Overflow

$Id: novelliprintgetdriversettings2.rb 11886 2011-03-06 20:27:06Z bannedit $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

9.3CVSS0.5AI score0.32951EPSS
Exploits11
0day.today
0day.today
added 2011/01/23 12:0 a.m.20 views

Novell iPrint <= 5.52 ActiveX GetDriverSettings() Exploit (ZDI-10-256)

Exploit for windows platform in category remote exploits // Calc.exe shellcode = unescape'%uc931%ue983%ud9de%ud9ee%u2474%u5bf4%u7381%u3d13%u5e46%u8395'+ '%ufceb%uf4e2%uaec1%u951a%u463d%ud0d5%ucd01%u9022%u4745%u1eb1'+ '%u5e72%ucad5%u471d%udcb5%u72b6%u94d5%u77d3%u0c9e%uc291%ue19e'+...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2011/01/19 12:0 a.m.39 views

Novell iPrint 5.52 ActiveX GetDriverSettings() Exploit

// Calc.exe shellcode = unescape'%uc931%ue983%ud9de%ud9ee%u2474%u5bf4%u7381%u3d13%u5e46%u8395'+ '%ufceb%uf4e2%uaec1%u951a%u463d%ud0d5%ucd01%u9022%u4745%u1eb1'+ '%u5e72%ucad5%u471d%udcb5%u72b6%u94d5%u77d3%u0c9e%uc291%ue19e'+ '%u873a%u9894%u843c%u61b5%u1206%u917a%ua348%ucad5%u4719%uf3b5'+...

9.3CVSS0.4AI score0.32951EPSS
Exploits11
Exploit DB
Exploit DB
added 2011/01/19 12:0 a.m.31 views

Novell iPrint 5.52 - ActiveX &#039;GetDriverSettings()&#039; Command Execution

// Calc.exe shellcode = unescape'%uc931%ue983%ud9de%ud9ee%u2474%u5bf4%u7381%u3d13%u5e46%u8395'+ '%ufceb%uf4e2%uaec1%u951a%u463d%ud0d5%ucd01%u9022%u4745%u1eb1'+ '%u5e72%ucad5%u471d%udcb5%u72b6%u94d5%u77d3%u0c9e%uc291%ue19e'+ '%u873a%u9894%u843c%u61b5%u1206%u917a%ua348%ucad5%u4719%uf3b5'+...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2010/12/20 12:0 a.m.32 views

WP-Forum Cross Site Scripting / SQL Injection

Multiple Vulnerabilities in WP Forum WordPress Plugin 1. Advisory Information Title: Multiple Vulnerabilities in WP-Forum Advisory URL: http://www.charleshooper.net/advisories/ Date Published: 12/17/2010 Vendors Contacted: WordPress. Maintainer of plugin is unreachable. 2. Summary WP Forum is a...

Exploits0
CERT
CERT
added 2010/08/02 12:0 a.m.52 views

Wind River Systems VxWorks weak default hashing algorithm in standard authentication API (loginLib)

Overview The hashing algorithm that is used in the standard authentication API for VxWorks is susceptible to collisions. An attacker can brute force a password by guessing a string that produces the same hash as a legitimate password. Description An attacker with a known username and access to a...

7.8CVSS6.7AI score0.01716EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2010/07/01 12:0 a.m.14 views

Fedora 12 : maniadrive-1.2-21.fc12 / php-5.3.2-1.fc12 (2010-4212)

This is a maintenance release in the 5.3 series, which includes a large number of bug fixes. Security Enhancements and Fixes in PHP 5.3.2: - Improved LCG entropy. Rasmus, Samy Kamkar - Fixed safemode validation inside tempnam when the directory path does not end with a /. Martin Jansen - Fixed a...

5.6AI score
Exploits0References4
exploitpack
exploitpack
added 2010/06/09 12:0 a.m.55 views

Adobe Flash Reader - Live Malware

Adobe Flash Reader - Live Malware Exploit-DB Note - Live POC originally found at http://qoop.org/security/poc/cve-2010-1297/ File is malicious! Taken from the wild! Beware! To decrypt the file: openssl aes-256-cbc -d -a -in adobe-0day-2010-1297.tar.enc -out adobe-0day-2010-1297.tar Password is...

9.3CVSS0.2AI score0.82365EPSS
Exploits22
ThreatPost
ThreatPost
added 2010/03/02 8:7 p.m.9 views

RSA 2010: Experts Expect Several Ciphers to Be Cracked Soon

Cryptographers are expecting several of the major cryptographic systems in use today to be broken in the near future. In the Cryptographers Panel session at the RSA Conference Tuesday, Adi Shamir said that he is working with a team of researchers who have put together a paper that describes an...

0.6AI score
Exploits0References3
NVD
NVD
added 2010/01/07 7:30 p.m.19 views

CVE-2010-0228

Verbatim Corporate Secure and Corporate Secure FIPS Edition USB flash drives use a fixed 256-bit key for obtaining access to the cleartext drive contents, which makes it easier for physically proximate attackers to read or modify data by determining and providing this key...

4.6CVSS6.4AI score0.00322EPSS
Exploits0References5
Prion
Prion
added 2010/01/07 7:30 p.m.15 views

Design/Logic Flaw

Verbatim Corporate Secure and Corporate Secure FIPS Edition USB flash drives use a fixed 256-bit key for obtaining access to the cleartext drive contents, which makes it easier for physically proximate attackers to read or modify data by determining and providing this key...

4.6CVSS6.9AI score0.00322EPSS
Exploits0References5
Prion
Prion
added 2010/01/07 7:30 p.m.9 views

Design/Logic Flaw

SanDisk Cruzer Enterprise USB flash drives use a fixed 256-bit key for obtaining access to the cleartext drive contents, which makes it easier for physically proximate attackers to read or modify data by determining and providing this key...

4.6CVSS6.9AI score0.0028EPSS
Exploits0References9
Cvelist
Cvelist
added 2010/01/07 7:0 p.m.26 views

CVE-2010-0222

Kingston DataTraveler BlackBox DTBB, DataTraveler Secure Privacy Edition DTSP, and DataTraveler Elite Privacy Edition DTEP USB flash drives use a fixed 256-bit key for obtaining access to the cleartext drive contents, which makes it easier for physically proximate attackers to read or modify data...

6.4AI score0.00362EPSS
Exploits0References9
Cvelist
Cvelist
added 2010/01/07 7:0 p.m.22 views

CVE-2010-0225

SanDisk Cruzer Enterprise USB flash drives use a fixed 256-bit key for obtaining access to the cleartext drive contents, which makes it easier for physically proximate attackers to read or modify data by determining and providing this key...

6.4AI score0.0028EPSS
Exploits0References9
Rows per page
Query Builder