Google Chrome OS 26.0.1410.57之前版本多个安全漏洞

BUGTRAQ ID: 59063 CVECAN ID: CVE-2013-2832,CVE-2013-2833,CVE-2013-2834,CVE-2013-2835 Google Chrome OS是一款基于Linux的开源操作系统。 Google Chrome OS 26.0.1410.57之前版本存在多个安全漏洞:1.03D插件的缓冲区内存在未初始化的内存数据；2.03D插件内存在释放后重用漏洞；3.03D及Google Talk插件被来源锁定绕过。 0 Google Chrome = 26.0.1410.57 厂商补丁： Google ------...

Serious Vulnerabilities Found in Popular Home Wireless Routers

Hackers love to attack Java. Why? Well, not only because it is full of holes, but because it’s everywhere, embedded on endpoints, Web browsers, mobile devices and more. The same goes for attacking wireless routers; they’re buggy and they’re everywhere. A handful of vulnerabilities were identified...

Samsung's new OS Tizen 2.0 source code released

The Tizen 2.0 source code and SDK has officially been released. Tizen is a Linux-based open-source software platform backed by Intel and Samsung Electronics, that is designed for smartphones, tablets, smart TVs and in-car systems and it's designed to run apps written using web technologies...

Samsung's new OS Tizen 2.0 source code released

The Tizen 2.0 source code and SDK has officially been released. Tizen is a Linux-based open-source software platform backed by Intel and Samsung Electronics, that is designed for smartphones, tablets, smart TVs and in-car systems and it’s designed to run apps written using web technologies...

RHEL 5 : Red Hat Network Satellite Server (RHSA-2011:0300)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0300 advisory. Red Hat Network Satellite Server RHN Satellite Server is a system management tool for Linux-based infrastructures. It allows for the...

Canonical announces Ubuntu for smartphones

Soon, you would have the ability to carry a proper desktop operating system on your mobile phone. The firm behind the Ubuntu operating system, Canonical has announced a version of its software for smartphones. Instead of Android, now users will be able to run a very different Linux-based OS , the...

FixMeStick PRO : Best remote malware remediation product

This week Corey and Marty over at FixMeStick shared the specs of their recently released FixMeStick PRO with me. This Pro is the best remote malware remediation product we've seen. It retails for $299.99 per year, or $209.99 for the first 50 'The Hacker News' readers use coupon code 'THNFIX' for...

The FixMeStick : My Parents Need This

The founders over at FixMeStick sent us a pair of their latest devices to check out. The FixMeStick is, in short, a malware removal device for dummies. The FixMeStick is a bootable USB device running Lubuntu and integrates three separate anti-virus scanners from Kaspersky Labs, Sophos, and GFI...

Cisco Unity Connection 7.1远程权限提升漏洞

BUGTRAQ ID: 52216 CVE ID: CVE-2012-0366 Cisco Unity Connection是运行在Linux-based Cisco Unified Communications操作系统上的功能强大的语音消息通讯平台。 Cisco Unity Connection在验证"Help Desk Administrator"和分配权限时在实现上存在安全漏洞，攻击者可利用此漏洞获取完全控制权限 0 Cisco Unity Connection 7.1 厂商补丁： Cisco -----...

Plone / Zope Remote Command Execution

Exploit Title: Plone - Remote Command Execution Date: 12/21/2011 Author: Nick Miles www.npenetrable.com Tested on: 12/21/2011 CVE : CVE-2011-3587 Versions Affected without hotfix: Plone 4.0 through 4.0.9; Plone 4.1; Plone 4.2 a1 and a2; Zope 2.12.x and Zope 2.13.x. Versions Not Affected: Versions...

linux/x86 execve("/usr/bin/ftp", "sdf.lonestar.org", NULL) 73 bytes

/ 73 bytes sysexecve"/usr/bin/ftp", "sdf.lonestar.org", NULL polymorphic shellcode Tested On : Debian Squeeze 6.02 Linux x86-based OS Programmer : Paulus Gandung Prakosa 0x1337day Thanks to : mywisdom, chaer.newbie, wenkhairu, ketek, gunslinger, nofiafitri, xtr0nic, t3k0, tabun, petimati, and all...

BackTrack 5 R1 Released - Penetration Testing Distribution

BackTrack 5 R1 Released - Penetration Testing Distribution BackTrack is a Linux-based penetration testing arsenal that aids security professionals in the ability to perform assessments in a purely native environment dedicated to hacking. Regardless if you're making BackTrack your primary operatin...

MODACOM URoad-5000 1450 - Remote Command Execution / Backdoor Access

================================================ == Alex Stanev Security Advisory 4 @31.05.2011 == == http://sec.stanev.org == ================================================ PRODUCT URoad-5000 VENDOR MODACOM http://www.modacom.co.kr VERSIONS AFFECTED v1450 CLASS Remote command execution/Backdoo...

BackTrack 4 R2 : New release download now !

After being in production for almost 3 months, BackTrack has been updated – yet again! It has been aptly code named – "Nemesis". "BackTrack is a Linux-based penetration testing arsenal that aids security professionals in the ability to perform assessments in a purely native environment dedicated ...

Microsoft Targets Android with Patent Infringement Allegations

The mobile phone wars became more interesting late on Tuesday when Microsoft publicly claimed for the first time that Google's Android operating system infringes on its intellectual property. According to sources close to the company, Microsoft believes that Android infringes on its patented...

Cisco WRV210 null pointer dereference

Exploit for windows platform in category dos / poc ===================================== Cisco WRV210 null pointer dereference ===================================== / 2010-09-24 by Paolo j5r9pn3lka yahoo dot com Product: Cisco WRV210 Wireless-G VPN Router - RangeBooster Type: denial of service...

CVE-2009-4511: TANDBERG VCS Arbitrary File Retrieval

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Virtual Security Research, LLC. http://www.vsecurity.com/ Security Advisory - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Advisory Name: TANDBERG Video Communication Server Arbitrary File Retrieval Release Date:...

CVE-2009-4510: TANDBERG VCS Static SSH Host Keys

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Virtual Security Research, LLC. http://www.vsecurity.com/ Security Advisory - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Advisory Name: TANDBERG Video Communication Server Static SSH Host Keys Release Date:...

eScan MWAdmin Interface Detection

MWAdmin, a web interface included with multiple Linux-based eScan products, was detected on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid45344; scriptversion"1.9"; scriptcvsdate"Date: 2019/11/25"; scriptnameenglish:"eScan MWAdmin Interface...

Adobe Acrobat and Reader PDF File Handling JBIG2 Image Remote Code Execution Vulnerability

Description Adobe Acrobat and Reader are prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the application or crash the application, denying service to legitimate users. The issue affects Reader and...