368 matches found
[Wi-Fi Password Key Generator] Wireless WEP/WPA/WPA2 Security Key Maker Tool
WiFi Password Key Generator is the free desktop tool to quickly create secure Wireless WEP/WPA/WPA2 keys. Most devices Modems/Routers require you to enter WEP/WPA keys during Wireless security configuration. Unlike regular passwords, these keys have strict length requirements based on type of...
Google Strengthening Keys on SSL Certificates to 2048 Bits
As attacks against cryptographic systems and the SSL infrastructure have advanced in recent years, experts have begun to fret about the future utility of the system. Companies that rely on the security of the SSL technology are beginning to take steps to address the issue, with the latest being...
[Xortool] A tool to analyze multi-byte xor cipher
A tool to do some xor analysis: guess the key length based on count of equal chars guess the key base on knowledge of most frequent char Usage ! python3 is not supported, use python 2.x xortool -h|--help OPTIONS Options: -l,--key-length length of the key integer -c,--char most possible char one...
CentOS Update for mysql CESA-2013:0180 centos5
Check for the Version of mysql OpenVAS Vulnerability Test CentOS Update for mysql CESA-2013:0180 centos5 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Scientific Linux Security Update : mysql on SL5.x i386/x86_64 (20130122)
A stack-based buffer overflow flaw was found in the user permission checking code in MySQL. An authenticated database user could use this flaw to crash the mysqld daemon or, potentially, execute arbitrary code with the privileges of the user running the mysqld daemon. CVE-2012-5611 A flaw was fou...
mysql: crash caused by wrong calculation of key length for sort order index
MySQL 5.1.x before 5.1.63 and 5.5.x before 5.5.24 allows remote authenticated users to cause a denial of service mysqld crash via vectors related to incorrect calculation and a sort order index...
Important: Red Hat Security Advisory: mysql security update
Updated mysql packages that fix two security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
RHEL 6 : mysql (RHSA-2012:1462)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:1462 advisory. - mysql: unspecified vulnerability related to GIS extension DoS CPU Jul 2012 CVE-2012-0540 - mysql: unspecified DoS vulnerability related to...
mysql: crash caused by wrong calculation of key length for sort order index
MySQL 5.1.x before 5.1.63 and 5.5.x before 5.5.24 allows remote authenticated users to cause a denial of service mysqld crash via vectors related to incorrect calculation and a sort order index...
Microsoft Recommends Workarounds to Mitigate Latest IE Zero-Day; Patch Still to Come
Microsoft issued a security advisory Monday night and recommended several workarounds to mitigate a zero-day vulnerability in Internet Explorer reported over the weekend that is being exploited in the wild. Microsoft said it is still investigating the vulnerability, and may issue an out-of-band...
Microsoft Ships Two Bulletins in September Security Update
The Microsoft security team shipped just two bulletins – resolving as many holes – in the September, 2012 edition of Patch Tuesday. The patches will supply fixes for two ‘important’ rated bugs, one in Microsoft Developer Tools and the other in Micrososft Server Software. If unpatched, both could...
Two Microsoft Security Updates Await In Advance of Certificate Key Length Changes
Microsoft is promising a light load of security updates for next Tuesday’s monthly patch release in an attempt to give Windows administrators and security teams time to prepare for an October change to certificate key length requirements. Angela Gunn of Microsoft’s Security Response Team announce...
Microsoft Windows Minimum Certificate Key Length Spoofing Vulnerability (2661254)
Microsoft Windows operating system is prone to digital certificate key length spoofing vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
MySQL Server 5.1 < 5.1.63 Multiple Vulnerabilities
Binary data 801134.prm...
Microsoft Releases Automatic Updater for Certificate Revocation Lists, Plans to Invalidate Short RSA Keys
As part of its response to the Flame malware and its usage of a forged Microsoft certificate to sign malicious files, Microsoft has changed the way that Windows handles certificates, releasing an automatic updater function that will recognize and flag untrusted certificates. The new functionality...
MySQL 5.1 < 5.1.63 Multiple Vulnerabilities
The version of MySQL 5.1 installed on the remote host is earlier than 5.1.63 and is, therefore, affected by multiple vulnerabilities : - Several errors exist related to 'GIS Extension' and 'Server Optimizer' components that can allow denial of service attacks. CVE-2012-0540, CVE-2012-1689,...
MySQL 5.5 < 5.5.24 Security Bypass Vulnerability
The version of MySQL 5.5 installed on the remote host is earlier than 5.5.24 and is, therefore, affected by the following vulnerabilities : - Several errors exist related to 'GIS Extension', 'Server', 'InnoDB' and 'Server Optimizer' components that can allow denial of service attacks...
CVE-2012-0655
libsecurity in Apple Mac OS X before 10.7.4 does not properly restrict the length of RSA keys within X.509 certificates, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by conducting a spoofing or network-sniffing attack during communication with a site th...
openswan: IKE invalid key length allows remote unauthenticated user to crash openswan
Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service NULL pointer dereference and pluto IKE daemon crash via an ISAKMP message with an invalid KEYLENGTH attribute, which is not properly handled by the error handling function...
Icon Labs Iconfidant SSL Server Key Length Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Icon Labs Iconfidant SSL Server. Authentication is not required to exploit this vulnerability. The specific flaw exists in the functionality responsible for key exchange. If the sum of specific...