Lucene search
K

9525 matches found

Fedora
Fedora
added 2012/08/31 1:3 a.m.24 views

[SECURITY] Fedora 17 Update: zabbix-1.8.15-1.fc17

ZABBIX is software that monitors numerous parameters of a network and the health and integrity of servers. ZABBIX uses a flexible notification mechanism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. ZABBIX offers...

7.5CVSS1.8AI score0.0358EPSS
Exploits2
Fedora
Fedora
added 2012/08/31 12:58 a.m.58 views

[SECURITY] Fedora 16 Update: zabbix-1.8.15-1.fc16

ZABBIX is software that monitors numerous parameters of a network and the health and integrity of servers. ZABBIX uses a flexible notification mechanism that allows users to configure e-mail based alerts for virtually any event. This allows a fast reaction to server problems. ZABBIX offers...

7.5CVSS1.8AI score0.0358EPSS
Exploits2
ThreatPost
ThreatPost
added 2012/08/30 6:12 p.m.50 views

Oracle Releases Fix For Java CVE-2012-4681 Flaw

Oracle on Thursday released a new version of Java that included a fix for the CVE-2012-4681 vulnerability that has been used in limited targeted attacks in the last couple of weeks. The release of Java 7 update 7 comes about four days after the Java flaw was publicly disclosed, but several months...

10CVSS1.6AI score0.98536EPSS
Exploits10References4
The Hacker News
The Hacker News
added 2012/08/23 6:7 p.m.6 views

Power Plants Are Vulnerable To Hackers with Siemens flaw

The U.S. Department of Homeland Security has issued an alert warning that hackers could exploit code in Siemens-owned technology to attack power plants and other national critical infrastructure. Justin W. Clarke, an expert in securing industrial control systems, disclosed at a conference in Los...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2012/08/15 5:52 p.m.16 views

ICS-CERT Warns of Serious Flaws in Tridium Niagara Software

The DHS and ICS-CERT are warning users of some popular Tridium Niagara AX industrial control system software about a series of major vulnerabilities in the applications that are remotely exploitable and could be used to take over vulnerable systems. The bugs, discovered by researchers Billy Rios...

0.6AI score
Exploits0References4
ThreatPost
ThreatPost
added 2012/08/10 3:3 p.m.10 views

Infographic: Stuxnet's Cyberwar Vines Untangled

Keeping track of the relationships between various malware families can be hard, especially when you’re talking about espionage tools such as Stuxnet and Gauss. Veracode has put together an infographic as a general recap of the life and times of Stuxnet, the much-discussed cyber worm that first...

0.3AI score
Exploits0References5
OSV
OSV
added 2012/08/07 8:55 p.m.1 views

DEBIAN-CVE-2012-3449

Open vSwitch 1.4.2 uses world writable permissions for 1 /var/lib/openvswitch/pki/controllerca/incoming/ and 2 /var/lib/openvswitch/pki/switchca/incoming/, which allows local users to delete and overwrite arbitrary files...

3.6CVSS6.8AI score0.00348EPSS
Exploits0References1
Veeam
Veeam
added 2012/08/01 12:0 a.m.21 views

Veeam ONE Monitor performance data collection times out

Challenge You are facing the following configuration issue: Veeam ONE Monitor performance graphs show the No Data Available message. Cause VeeamDCS.log file contains the following errors: ​Collecting thread has failed to initialize The operation has timed out and will be stopped Collecting thread...

6.8AI score
Exploits0Affected Software1
ThreatPost
ThreatPost
added 2012/07/20 1:54 p.m.7 views

Termineter Security Framework for Smart Meters Released

It’s that most wonderful time of the year again: tool release season. With Black Hat, DEF CON and BSides Las Vegas all looming, researchers are beginning to publish the tools that they’ll be discussing during their talks at the various conferences next week. Among the more interesting releases so...

7.4AI score
Exploits0References5
ThreatPost
ThreatPost
added 2012/07/17 6:45 p.m.15 views

Religious 'Madi' Spyware Spies on Critical Infrastructure in Middle East

A new variety of spyware has been targeting users in Iran, Israel and the Middle East for the last eight months according to joint research from Israeli security software firm Seculert and Kaspersky Lab. The new malware is using a variety of odd techniques and misdirection to entice users to...

7.4AI score
Exploits0References6
ThreatPost
ThreatPost
added 2012/06/29 6:1 p.m.6 views

U.S. Congress Hears Of Growing Cyber Espionage Threat To U.S.

Testimony before the U.S. House of Representatives’ Homeland Security Committee painted a grim picture about the problem of cyber espionage against U.S. companies and interests. Government and law enforcement experts testifying before the U.S. House of Representatives’ Homeland Security Committee...

7AI score
Exploits0
0day.today
0day.today
added 2012/06/21 12:0 a.m.28 views

Infrastructure Resources LLC - SQL Injection Vulnerability

Exploit for php platform in category web applications 1=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 0...

7.1AI score
Exploits0
0day.today
0day.today
added 2012/06/10 12:0 a.m.66 views

Tom Sawyer Software GET Extension Factory Remote Code Execution

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

7.1AI score0.41956EPSS
Exploits9
Metasploit
Metasploit
added 2012/06/08 4:10 p.m.37 views

Tom Sawyer Software GET Extension Factory Remote Code Execution

This module exploits a remote code execution vulnerability in the tsgetx71ex553.dll ActiveX control installed with Tom Sawyer GET Extension Factory due to an incorrect initialization under Internet Explorer. While the Tom Sawyer GET Extension Factory is installed with some versions of VMware...

9.3CVSS10AI score0.41956EPSS
Exploits9
ThreatPost
ThreatPost
added 2012/05/31 4:3 p.m.15 views

DHS Says No Evidence That Flame Targets Industrial Systems, But Urges Caution

In and advisory, the Department of Homeland Security’s Industrial control System ICS CERT said that it doesn’t believe the Flame malware targets industrial control systems ICS or SCADA systems, but the group advised critical infrastructure owners to be on alert. The advisory, issued Wednesday,...

0.8AI score
Exploits0
ThreatPost
ThreatPost
added 2012/05/30 6:28 p.m.6 views

Moxie Marlinspike on TACK, Convergence and Trust Agility

Dennis Fisher talks with Moxie Marlinspike about his new IETF proposal, TACK, which lays out a way for sites to assert the authenticity of their public keys. They also discuss the Convergence system for replacing the CA infrastructure and the ways in which browser vendors can help enable better...

1.3AI score
Exploits0References3
ThreatPost
ThreatPost
added 2012/05/24 2:46 p.m.8 views

DNSChanger Lingers: 330k Systems Still Infected, 77,000 In The U.S.

The FBI said that there are still more than 330,000 computers believed to be infected with the DNSChanger malware, with just weeks to go before a court order to cut off their ability to communicate with the rest of the Internet. Fully 77,000 are located in the U.S., according to data provided to...

7.1AI score
Exploits0References10
ThreatPost
ThreatPost
added 2012/05/24 2:8 a.m.16 views

Researchers Unveil New Way to Trust Certificates

Two independent researchers are proposing an extension for TLS to provide greater trust in certificate authorities, which have become a weak link in the entire public key infrastructure after some big breaches involving fraudulent SSL certificates. TACK, short for Trust Assertions for Certificate...

0.9AI score
Exploits0References1
The Hacker News
The Hacker News
added 2012/05/12 3:8 p.m.9 views

Pentagon boosts contractor cybersecurity program

Pentagon boosts contractor cybersecurity program The US Defense Department invited all of its eligible contractors on Friday to join a previously restricted information-sharing pact aimed at guarding sensitive Pentagon program data stored on private computer networks. The Pentagon predicts that a...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2012/05/11 7:13 p.m.8 views

Anonymous: We Are Not Terrorists but Fearless Freedom Fighters

Anonymous: We Are Not Terrorists but Fearless Freedom Fighters Black Ops 2 trailer that was released recently, portrays the Anonymous organization as the enemy of the United States, which has pissed them off greatly. Anonymous has responded to Activision's marketing campaign for Call of Duty: Bla...

6.8AI score
Exploits0
Rows per page
Query Builder