Oracle: Security Advisory (ELSA-2013-0516)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle: Security Advisory (ELSA-2013-1540)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle: Security Advisory (ELSA-2013-0515)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 23 Update: php-ZendFramework2-2.4.8-1.fc23

Zend Framework 2 is an open source framework for developing web applications and services using PHP 5.3+. Zend Framework 2 uses 100% object-oriented code and utilizes most of the new features of PHP 5.3, namely namespaces, late static binding, lambda functions and closures. Zend Framework 2 evolv...

evolution.berkeley.edu XSS vulnerability

Vulnerable URL: http://www.evolution.berkeley.edu/evolibrary/search/lessonsummary.php?source=ENSI%3Cscript%3Ealert%28/xssposed/%29%3C/script%3E=aid=a=aid=62 Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 17:32 GMT Vulnerability type:| XSS...

ATM (Cash Machine) - Default Password Setup Vulnerability

Document Title: =============== ATM Cash Machine - Default Password Setup Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1596 Video: https://www.youtube.com/watch?v=v9pSMz96FlU Release Date: ============= 2015-09-11 Vulnerability Laboratory ID VL-ID:...

Ferrari Online Service - (PHP) Remote Commend Injection

Document Title: =============== Ferrari Online Service - PHP Remote Commend Injection References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1561 View Video: https://www.youtube.com/watch?v=0m-gYRoBpoI Release Date: ============= 2015-08-07 Vulnerability Laboratory ID VL-ID:...

Criminals Minds - S10 E3 HackInTheBox & Benjamin Mejri

Document Title: =============== Criminals Minds - S10 E3 HackInTheBox & Benjamin Mejri References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1530 View Video: https://www.youtube.com/watch?v=Ny-z5Kp6NFI Release Date: ============= 2015-06-12 Vulnerability Laboratory ID VL-ID:...

[SECURITY] Fedora 22 Update: php-ZendFramework2-2.3.8-1.fc22

Zend Framework 2 is an open source framework for developing web applications and services using PHP 5.3+. Zend Framework 2 uses 100% object-oriented code and utilizes most of the new features of PHP 5.3, namely namespaces, late static binding, lambda functions and closures. Zend Framework 2 evolv...

Facebook #26 - Bypass & Exception Redirect Vulnerability

Document Title: =============== Facebook 26 - Bypass & Exception Redirect Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1484 Video View: https://www.youtube.com/watch?v=I65zFWF-pMg Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1483 Release...

Sheep Marketplace Owner Arrested While Trying to Buy Luxury Home

Thomas Jiřikovský, an alleged Owner of one of the most popular Darknet website ‘Sheep Marketplace,’ has been arrested after laundering around $40 Million, making it one of the biggest exit scams in Darknet history. After the arrest of Silk Road owner 'Ross Ulbricht' in 2013 -- Sheep Marketplace...

Deep Web Drug Market Disappeared suddenly Overnight, $12 Million in Bitcoin Missing

Evolution -- The largest Deep Web drugs marketplace, disappeared suddenly overnight from the Internet. But unlike Silk Road, there is no indication that the law enforcement took down the Evolution marketplace. The Darknet’s most popular markets for drugs and bespoke carjacking services is...

Christofer Hoff on Mixed Martial Arts, Active Defense, and Security

CANCUN–In his keynote talk at the Kaspersky Security Analyst Summit Monday Christofer Hoff, the vice president and CTO of the security business at Juniper Networks stressed that in security and martial arts alike, it’s hard to be a skilled defender if you don’t understand how your adversaries pul...

Evolution and Adaptation in the Security Jungle

CANCUN—One of the more difficult aspects of defending a network or system is trying to keep up with the new tactics and techniques that attackers use. They modify their techniques constantly, and security teams must do they same or they won’t survive. Evolve or die has become the rule. Of course,...

SuSE 11.3 Security Update : evolution-data-server (SAT Patch Number 9969)

evolution-data-server has been updated to disable support for SSLv3. This security issues has been fixed : - SSLv3 POODLE attack CVE-2014-3566 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information...

Matsnu Botnet DGA Builds Domains From List of Nouns, Verbs

Domain generation algorithms have been botmasters’ favorite tool for keeping malware up and running—and for frustrating security researchers and detection technologies. Like malware, DGAs evolve, thus complicating an already tricky cat-and-mouse game between criminals and white hats. The latest i...

CentOS 6 : cheese / control-center / ekiga / evolution / evolution-data-server / etcgnome-panel / etc (CESA-2013:1540)

Updated evolution packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which...

[SECURITY] Fedora 19 Update: php-ZendFramework2-2.2.8-2.fc19

Zend Framework 2 is an open source framework for developing web applications and services using PHP 5.3+. Zend Framework 2 uses 100% object-oriented code and utilizes most of the new features of PHP 5.3, namely namespaces, late static binding, lambda functions and closures. Zend Framework 2 evolv...

Microsoft Pillar - Client Side SWF Cross Site Vulnerability

Document Title: =============== Microsoft Pillar - Client Side SWF Cross Site Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1328 https://www.youtube.com/watch?v=jVMHhCxM2pY Release Date: ============= 2014-09-29 Vulnerability Laboratory ID VL-ID:...

Design/Logic Flaw

The Snake Evolution aka com.btwgames.snake application 1.3.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...