CVE-2014-9952

CVE-2014-9952 concerns the Android Secure File System in CAF builds using the Linux kernel, described as a capture‑replay vulnerability. Publicly provided details in the sources indicate the issue affects the Secure File System component and could impact confidentiality, integrity, and availabili...

Bridging the Skills Gap with Trend Micro’s Capture the Flag (CTF) Competition

We all know the IT security industry is suffering from chronic skills gaps and shortages around the world. In the US things are no different, with an estimated talent shortfall of around 40,000 jobs for information security analyst roles alone. While various initiatives have been proposed, few ha...

Distributed, Search Optimized Full Packet Capture System: PCAPDB

Distributed, Search Optimized Full Packet Capture System PcapDB is a distributed, search-optimized open source packet capture system. It was designed to replace expensive, commercial appliances with off-the-shelf hardware and a free, easy to manage software system. Captured packets are reorganize...

WMI Command Shell Wrapper: WMIcmd

WMI Command Shell Wrapper When doing low impact investigations and other similar activities you may want to minimize what is written to disk / obvious. This tool allows us to execute commands via WMI and get information not otherwise available via this channel. Purpose A small utility which only...

CVE-2017-8309

Memory leak in the audio/audio.c in QEMU aka Quick Emulator allows remote attackers to cause a denial of service memory consumption by repeatedly starting and stopping audio capture...

CVE-2017-8309

Memory leak in the audio/audio.c in QEMU aka Quick Emulator allows remote attackers to cause a denial of service memory consumption by repeatedly starting and stopping audio capture...

DEBIAN-CVE-2017-8309

Memory leak in the audio/audio.c in QEMU aka Quick Emulator allows remote attackers to cause a denial of service memory consumption by repeatedly starting and stopping audio capture...

Memory corruption

Memory leak in the audio/audio.c in QEMU aka Quick Emulator allows remote attackers to cause a denial of service memory consumption by repeatedly starting and stopping audio capture...

CVE-2017-8309

Memory leak in the audio/audio.c in QEMU aka Quick Emulator allows remote attackers to cause a denial of service memory consumption by repeatedly starting and stopping audio capture...

CVE-2017-8309

Memory leak in the audio/audio.c in QEMU aka Quick Emulator allows remote attackers to cause a denial of service memory consumption by repeatedly starting and stopping audio capture...

Google Android kernel UVC driver information disclosure vulnerability

Androidon Nexus5X, etc. are the United States Google Google and the Open Handheld Alliance OHA jointly developed a set of running in the Nexus5X smartphone and Linux-based open source operating system. kernel UVC Driver one of the kernel USB Video Capture Driver. An information disclosure...

Packet Capture - Customized SSL, Insecure KeyStore vulnerabilities

HackApp vulnerability scanner discovered that application Packet Capture published at the 'play' market has multiple vulnerabilities...

SUSE SLES11 Security Update : wireshark (SUSE-SU-2017:1174-1)

Wireshark was updated to version 2.0.12, which brings several new features, enhancements and bug fixes. These security issues were fixed : - CVE-2017-7700: In Wireshark the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in...

Stealthy Konni RAT Targeting North Korea Since 2014

Two recent espionage campaigns against political and strategic targets in North Korea has been linked to malware that has stayed hidden for the better part of three years. Cisco’s research arm Talos published a report yesterday on the malware it calls Konni. Two attacks in April used phishing...

UBUNTU-CVE-2017-8309

Memory leak in the audio/audio.c in QEMU aka Quick Emulator allows remote attackers to cause a denial of service memory consumption by repeatedly starting and stopping audio capture...

CVE-2017-8309

Memory leak in the audio/audio.c in QEMU aka Quick Emulator allows remote attackers to cause a denial of service memory consumption by repeatedly starting and stopping audio capture...

openSUSE Security Update : wireshark (openSUSE-2017-503)

This update to Wireshark 2.2.6 fixes minor vulnerabilities that could be used to trigger a dissector crash or infinite loops by sending specially crafted packages over the network or into a capture file : - CVE-2017-7700: NetScaler file parser infinite loop boo1033936 - CVE-2017-7701: BGP dissect...

Wireshark Multiple DoS Vulnerabilities-01 (Apr 2017) - Windows

Wireshark is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

ShadowBrokers' Windows Zero-Days Already Patched

Hours after what was thought to be a damaging release of NSA hacking tools for Windows systems, Microsoft quelled some anxiety with a late-night statement on Friday that most of the vulnerabilities disclosed by the ShadowBrokers had already been patched. The biggest surprise was that the most...

CVE-2016-7957

In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a seven-byte memcmp for potentially shorter strings...