Adobe Flash - SimpleButton Creation Type Confusion

Source: https://code.google.com/p/google-security-research/issues/detail?id=640 There is a type confusion vulnerability in the SimpleButton constructor. Flash stores an empty button to use to create buttons for optimization reasons. If this object is created using a SWF tag before it is created i...

MGASA-2016-0072 Updated libgcrypt packages fix security vulnerabilities

Updated libgcrypt packages fix security vulnerability: Daniel Genkin, Lev Pachmanov, Itamar Pipman and Eran Tromer discovered that the ECDH secret decryption keys in applications using the libgcrypt20 library could be leaked via a side-channel attack CVE-2015-7511. The libgcrypt package was also...

CIFS/SMB optimization displays “Secure Dialect Negotiation not support for unsigned connections

QUESTION: CIFS/SMB optimization displays “Secure Dialect Negotiation not support for unsigned connections ANSWER: This is known limitation. We do not support unsigned SMB2 connection with windows 10 as it uses secure dialect negotiation. However performance should be better compare to w/o CB as w...

Code injection

cifs-ao in the CIFS optimization functionality on Cisco Wide Area Application Service WAAS and Virtual WAAS vWAAS devices 5.x before 5.3.5d and 5.4 and 5.5 before 5.5.3 allows remote attackers to cause a denial of service resource consumption and device reload via crafted network traffic, aka Bug...

CVE-2015-6421

Cisco WAAS/vWAAS CIFS optimization (cifs-ao) is affected. A DoS is possible from crafted CIFS traffic due to insufficient flow handling, causing resource exhaustion and device reload. Affected versions are 5.x prior to 5.3.5d (and 5.4) and 5.5 prior to 5.5.3. Exploitation is described as remote a...

Cisco Wide Area Application Service CIFS Denial of Service Vulnerability

A vulnerability in the Common Internet File System CIFS optimization feature of the Cisco Wide Area Application Service WAAS device could allow an unauthenticated, remote attacker to perform a resource consumption attack which, could result in a complete denial of service DoS condition. The...

Network Security Policy Compiler: Netspoc

Netspoc is free software to manage all the packet filter devices inside your network topology. Filter rules for each device are generated from one central ruleset, using a description of your network topology. Netspoc generates ACLs and static routes for a given network policy, consisting of a se...

F5 Networks BIG-IP : QEMU vulnerability (SOL51841514)

hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WINREADNATIVEMAX command to an empty drive, which triggers a...

[SECURITY] Fedora 22 Update: COPASI-4.16-0.19.20150817git3bc4e9.fc22

COPASI is a software application for simulation and analysis of biochemical networks and their dynamics. COPASI is a stand-alone program that supports models in the SBML standard and can simulate their behavior using ODEs or Gillespie's stochastic simulation algorithm; arbitrary discrete events c...

[SECURITY] Fedora 23 Update: COPASI-4.16-0.19.20150817git3bc4e9.fc23

COPASI is a software application for simulation and analysis of biochemical networks and their dynamics. COPASI is a stand-alone program that supports models in the SBML standard and can simulate their behavior using ODEs or Gillespie's stochastic simulation algorithm; arbitrary discrete events c...

Unable to exclude files from snapshot: Shadow Copy Optimization Writer timed out

Challenge A Veeam Agent for Microsoft Windows backup job configured to operate in file-level backup mode with an entire volume selected and individual folders excluded, may fail with the error shown below. Unable to exclude files from snapshot: Shadow Copy Optimization Writer timed out. Cause The...

Pemcracker - Tool To Crack Encrypted PEM Files

This tool is inspired by pemcrack by Robert Graham. The purpose is to attempt to recover the password for encrypted PEM files while utilizing all the CPU cores. It still uses high level OpenSSL calls in order to guess the password. As an optimization, instead of continually checking against the P...

CVE-2011-2702

Integer signedness error in Glibc before 2.13 and eglibc before 2.13, when using Supplemental Streaming SIMD Extensions 3 SSSE3 optimization, allows context-dependent attackers to execute arbitrary code via a negative length parameter to 1 memcpy-ssse3-rep.S, 2 memcpy-ssse3.S, or 3 memset-sse2.S ...

Gping - Ping, But With A Graph

Ping, but with a graph Install and run Created/tested with Python 3.4, should run on 2.7 will require the statistics module though. pip3 install pinggraph Tested on Windows and Ubuntu, should run on OS X as well. After installation just run: gping yourhost If you don't give a host then it pings...

Auto Client Reconnect Fix on XenDesktop Deployments with CloudBridge for Traffic Optimization

This fix applies only to XenDesktop deployments that utilize CloudBridge for traffic optimization. This fix enables the Auto Client Reconnect functionality of XenDesktop for deployments that utilize CloudBridge for traffic optimization. With this fix Auto Client Reconnect is used for session...

Vulnerability management the flow of electrons-vulnerability warning-the black bar safety net

0x01 is written on the front This article is mainly to share and record some of their own growth, such as a poorly written local, but also hope to Treatise on. In the most early for vulnerability management in this thing, individuals feel more nausea. Especially all kinds of mail sent to sent to,...

wolfssl -- leakage of private key information

Florian Weimer of Redhat discovered that an optimization in RSA signature validation can result in disclosure of the server's private key under certain fault conditions...

CVE-2015-2479

The RyuJIT compiler in Microsoft .NET Framework 4.6 contains an optimization bug that can produce incorrect code, enabling remote code execution via crafted .NET applications. Affected software: .NET Framework 4.6 with RyuJIT. Root cause: faulty optimization/code generation during JIT optimizatio...

DEBIAN-CVE-2013-7443

Buffer overflow in the skip-scan optimization in SQLite 3.8.2 allows remote attackers to cause a denial of service crash via crafted SQL statements...

Microsoft .NET Framework Privilege Elevation Vulnerability (3086251)

This host is missing an important security update according to Microsoft Bulletin MS15-092. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...