Lucene search
K

9527 matches found

securityvulns
securityvulns
added 2013/02/04 12:0 a.m.91 views

[USN-1709-1] OpenStack Nova vulnerability

========================================================================== Ubuntu Security Notice USN-1709-1 January 29, 2013 nova vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubun...

6.5CVSS0.5AI score0.02505EPSS
Exploits0
ThreatPost
ThreatPost
added 2013/01/31 3:56 p.m.10 views

More on Cybersecurity

For more information on targeted attacks, cyberwarfare and cyberespionage: Experts Say CEOs Need to Get Handle on Cyberespionage Problem Red October Attackers Shutting Down C&C Infrastructure Howard Schmidt Answered the Bell A Podcast with Howard Schmidt An Interview with Eugene Kaspersky...

2.7AI score
Exploits0References5
Fedora
Fedora
added 2013/01/30 12:31 a.m.36 views

[SECURITY] Fedora 16 Update: proftpd-1.3.4b-5.fc16

ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based...

9CVSS0.7AI score0.12804EPSS
Exploits4
Ubuntu
Ubuntu
added 2013/01/29 11:0 p.m.48 views

USN-1709-1: OpenStack Nova vulnerability

Phil Day discovered that nova-volume did not validate access to volumes. An authenticated attacker could exploit this to bypass intended access controls and boot from arbitrary volumes...

6.5CVSS5.5AI score0.02505EPSS
Exploits0
ThreatPost
ThreatPost
added 2013/01/28 3:37 p.m.9 views

Pentagon Plans Massive Increase in Cybersecurity Teams

As the Senate pushes for legislation to improve information-sharing on threats and attacks and President Barack Obama prepares to issue an executive order on cybersecurity, the Department of Defense is looking for a massive increase in the number of trained cybersecurity personnel helping to defe...

7.6AI score
Exploits0References7
Fedora
Fedora
added 2013/01/28 3:10 p.m.40 views

[SECURITY] Fedora 18 Update: zabbix-2.0.4-3.fc18

Zabbix is software that monitors numerous parameters of a network and the health and integrity of servers. Zabbix uses a flexible notification mechan ism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. Zabbix offers...

5CVSS9AI score0.02169EPSS
Exploits0
ThreatPost
ThreatPost
added 2013/01/25 3:51 p.m.9 views

DHS Secretary Warns of Potential Cyber Attacks

There is no shortage of problems for President Obama and the new Congress to tackle as they settle into their offices in Washington, D.C., this week, and one of the topics that’s at the top of that list is cybersecurity. Earlier this week a group of Democratic senators introduced a new...

0.1AI score
Exploits0References6
ThreatPost
ThreatPost
added 2013/01/24 7:36 p.m.15 views

Senate Introduces Cybersecurity Bill that Prioritizes Information Sharing

The United States Senate says it will prioritize the passage of a comprehensive cybersecurity bill designed to fortify the nation’s public and private IT systems in this session of Congress. Senators John D. Rockefeller IV D-WV, Chairman of the Senate Commerce, Science, and Transportation...

0.3AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2013/01/24 12:0 a.m.17 views

VMware Horizon View SEoL

According to its version, the installation of VMware Horizon View, formerly known as VMWare View Server, and VMware Virtual Desktop Infrastructure, on the remote host is no longer supported. Lack of support implies that no new security patches for the product will be released by the vendor. As a...

5.6AI score
Exploits0References1
ThreatPost
ThreatPost
added 2013/01/22 4:45 p.m.8 views

Avoid the Landmine That is Hacking Back

Rarely a day goes by without mention of a targeted attack against some government-related website, massive disruptions in online banking services, or critical vulnerabilities in specialized software running our power plants and water supplies. And all the while, IT and security organizations have...

0.1AI score
Exploits0References8
securityvulns
securityvulns
added 2013/01/21 12:0 a.m.41 views

Trimble Infrastructure GNSS crossite scripting

Web interface crossite scripting...

4.3CVSS1.3AI score0.01148EPSS
Exploits0References1
securityvulns
securityvulns
added 2013/01/21 12:0 a.m.92 views

Trimble® Infrastructure GNSS Series Receivers Cross Site Scripting (XSS) vulnerability

Trimble® Infrastructure GNSS Series Receivers Cross Site Scripting XSS vulnerability: - CVE: CVE-2012-5053 - Deloitte Argentina Advisory Code: DTTAR-20130001 - Vendor Status: CONFIRMED - Public Disclosure Date: January, 15th, 2013. - Vendors Affected: Trimble - http://www.trimble.com/ - Systems...

4.3CVSS0.1AI score0.01148EPSS
Exploits0
ThreatPost
ThreatPost
added 2013/01/18 7:21 p.m.8 views

Red October Attackers Shutting Down C&C Infrastructure

It appears that the attackers behind the Red October cyberespionage campaign are taking their ball and going home. Since the attack came to light on Monday, the attackers have begun shutting down their infrastructure and the hosting providers and registrars involved with some of the...

0.8AI score
Exploits0References4
ThreatPost
ThreatPost
added 2013/01/18 5:59 p.m.8 views

Researchers Deconstruct Pobelka Botnet

How many inconspicuous botnets are alive and siphoning banking credentials and real money from online accounts that get little to no attention? They feast on unwitting consumers using an array of available banking Trojans to steal legitimate log-in information and sell it to the highest bidder,...

0.8AI score
Exploits0References5
Veeam
Veeam
added 2013/01/18 12:0 a.m.9 views

Event ID 10378 in the Operations Manager Event Log on Collector

Challenge Operations Manager Event Log on the Collector server contains the following warning: ID 10378 Module was unable to convert WMI setting .\timestamp Event IDs 1103 and 4506 may also be observed. Cause The root cause is currently investigated by Microsoft. This article will be updated afte...

6.8AI score
Exploits0
Prion
Prion
added 2013/01/17 1:55 a.m.16 views

Design/Logic Flaw

Unspecified vulnerability in the Siebel CRM component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote authenticated users to affect availability via unknown vectors related to Siebel Core - Server Infrastructure...

4CVSS5.9AI score0.00995EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2013/01/17 1:30 a.m.18 views

CVE-2012-3168

Unspecified vulnerability in the Siebel CRM component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote authenticated users to affect availability via unknown vectors related to Siebel Core - Server Infrastructure...

5.5AI score0.00995EPSS
Exploits0References2
CVE
CVE
added 2013/01/17 1:30 a.m.50 views

CVE-2012-3168

CVE-2012-3168 affects Oracle Siebel CRM 8.1.1 and 8.2.2, specifically the Siebel Core - Server Infrastructure (with related components under Siebel CRM). The Nessus entry indicates an easily exploitable vulnerability allowing unauthenticated network attacks via HTTP that can result in a partial d...

4CVSS5.6AI score0.00995EPSS
Exploits0References2Affected Software1
ThreatPost
ThreatPost
added 2013/01/15 2:22 a.m.11 views

Malware Infects Two Power Plants Lacking Basic Security Controls

During the past three months, unnamed malware infected two power plants’ control systems using unprotected USB drives as an attack vector. At both companies, a lack of basic security controls made it much easier for the malicious code to reach critical networks. In one instance, according to a...

1.2AI score
Exploits0References1
ThreatPost
ThreatPost
added 2013/01/09 6:44 p.m.15 views

Shodan Search Engine Project Enumerates Internet-Facing Critical Infrastructure Devices

Never underestimate what you can do with a healthy list of advanced operator search terms and a beer budget. That’s mostly what comprises the arsenal of two critical infrastructure protection specialists who have spent close to nine months trying to paint a picture of the number of Internet-facin...

8.4AI score
Exploits0References4
Rows per page
Query Builder