[SECURITY] Fedora 21 Update: wireshark-1.12.2-1.fc21

Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package...

Open Source OpenSOC Security Analytics Framework Released

Cisco announced today that it has made available through open source a framework that integrates data analytics tools into security operations. “The OpenSOC framework helps organizations make big data part of their technical security strategy by providing a platform for the application of anomaly...

Amazon Linux AMI : perl-Capture-Tiny (ALAS-2014-358)

"It was found 1 that the Capture::Tiny module, provided by the perl-Capture-Tiny package, used the File::temp::tmpnam module to generate temporary files : ./lib/Capture/Tiny.pm: $stash-flagfiles$which = scalar tmpnam C Tenable Network Security, Inc. The descriptive text and package checks in this...

PT-2014-5283 · Cisco · Cisco Asa

Name of the Vulnerable Software and Affected Versions: Cisco ASA Software versions 8.2 through 8.25.50 Cisco ASA Software versions 8.3 through 8.32.41 Cisco ASA Software versions 8.4 through 8.47.22 Cisco ASA Software versions 8.6 through 8.61.13 Cisco ASA Software versions 9.0 through 9.04.23...

CVE-2014-1875

The Capture::Tiny module before 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file...

DEBIAN-CVE-2014-1875

The Capture::Tiny module before 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file...

CVE-2014-1875

The Capture::Tiny module before 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file...

CVE-2014-1875

The Capture::Tiny module before 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file...

UBUNTU-CVE-2014-1875

The Capture::Tiny module before 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file...

CVE-2014-1875

The Capture::Tiny module before 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file...

CVE-2014-1875

The Capture::Tiny module before 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file...

CVE-2014-1875

CVE-2014-1875 affects the Perl Capture::Tiny module up to version 0.23 (pre-0.24). The root cause is a symlink-attack in the temporary file creation path using File::temp::tmpnam, allowing local users to write to arbitrary files. Remediation: upgrade to Capture-Tiny 0.24 or later (per the public ...

[SECURITY] Fedora 20 Update: ksnapshot-4.14.1-1.fc20

A screen capture utility...

Security Advisory-Screen Capture Vulnerability on Huawei Ascend P6 Mobile Phones

Apps on Huawei Ascend P6 mobile phones can capture screens without the root permission. As a result, user information can be leaked by malware on Ascend P6 mobile phones. Vulnerability ID： HWPSIRT-2014-0893. This Vulnerability has been assigned Common Vulnerabilities and Exposures CVE ID:...

openstack-horizon: persistent XSS in Horizon Host Aggregates interface

A persistent cross-site scripting XSS flaw was found in the horizon host aggregate interface. A user with sufficient privileges to add a host aggregate could potentially use this flaw to capture the credentials of another user...

[SECURITY] Fedora 20 Update: wireshark-1.10.9-1.fc20

Wireshark is a network traffic analyzer for Unix-ish operating systems. This package lays base for libpcap, a packet capture and filtering library, contains command-line utilities, contains plugins and documentation for wireshark. A graphical user interface is packaged separately to GTK+ package...

CVE-2014-3853

Pyplate 0.08 does not set the secure flag for the id cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session...

DEF CON SOHOpelessly Broken Wireless Router Hacking Contest

Home and small office wireless routers are feature-rich networking devices, providing consumers and mom-and-pop shops with much more than an Internet gateway. Some, for example, have a print server function, while others store personal files—and very few are secure out of the box. Hackers and...

Wireshark v1.10.8 - The world’s foremost network protocol analyzer

Wireshark is the world’s foremost network protocol analyzer. It lets you capture and interactively browse the traffic running on a computer network. It is the de facto and often de jure standard across many industries and educational institutions. Wireshark development thrives thanks to the...

Gene6 BPFTP FTP Server 2.0 User Credentials Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2534/info G6 FTP Server now known as BPFTP Server is an internet FTP server by Gene6 If a logged in FTP user connects to an external share and submits a malformed 'size' or 'mdtm' command, the user could force the FTP...