Flightgear 2.02.4 - Remote Format String

Flightgear 2.02.4 - Remote Format String / Exploit Title: Flightgear remote format string Date: 21/04/2013 Exploit Author: Kurono email: [email protected] Vendor Homepage: http://www.flightgear.org/ Software Link: http://www.flightgear.org/download/ Version: Tested on versions 2.0, 2.4...

mRemote 1.50 Update Spoofing Vulnerability

mRemote version 1.50 suffers from an update spoofing vulnerability. Update Spoofing Vulnerability in mRemote 1.50 =============================================================================== Author: Janek Vind "waraxe" Date: 29. March 2013 Location: Estonia, Tartu Web:...

mRemote 1.50 Update Spoofing

waraxe-2013-SA100 - Update Spoofing Vulnerability in mRemote 1.50 =============================================================================== Author: Janek Vind "waraxe" Date: 29. March 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-100.html Description of vulnerable softwar...

Russian underground vSkimmer Botnet targeting payment world

A new botnet emerged from underground and is menacing payment world, the cyber threat dubbed vSkimmer come from Russia according revelation of McAfee security firm. The security expert Chintan Shah wrote on a blog post that during monitoring of Russian underground forum found a discussion about a...

CentOS Update for cups CESA-2013:0580 centos5

Check for the Version of cups OpenVAS Vulnerability Test CentOS Update for cups CESA-2013:0580 centos5 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Deja Vu: Another Adobe Flash Player Security Update Released

What’s better than one Flash Player update a week? Why two, of course. Adobe released its regularly scheduled security updates today, including another set of fixes for its ubiquitous Flash Player, less than a week after an emergency patch took care of two zero-day vulnerabilities being exploited...

Mobile Malware Dubbed 'Bill Shocker' Targets Chinese Android Users

A new bit of malware is targeting popular apps on Android mobile devices to spew costly spam. Beijing- and Dallas-based NQ Mobile said at least 600,000 Chinese users have been hit with the malicious code named “Bill Shocker” a.expense.Extension.a because it runs up the bills of infected users whi...

Android MDK Trojan Found Lurking in 11K Apps, Using AES Encryption

Android.Troj.mdk, the Trojan botnet that last week was reported to have infected one million devices, mainly Chinese Android phones, is a new variant of a separate strain of malware, Backscript, researchers say. Both variants of malware use the same certificate to sign APKs, yet Troj.mdk MDK uses...

Japanese Police 'Collar' Cat Carrying Malware Code

A hacker, or possibly group, that’s issued terrorists threats using remotely controlled computers in Japan remains at large despite a rare 3 million yen bounty and continuous games with media and police. The latest antic to generate considerable attention this week was leading Japanese authoritie...

Adobe Patches Acrobat, Reader and Flash Flaws

Adobe has not only joined Microsoft on the Patch Tuesday parade, but it too has critical vulnerabilities being exploited in the wild while a security update is in the works. Two patches were released today for Acrobat/Reader and Flash Player, yet the company has said that fixes for three ColdFusi...

Samsung Smart TV Bug Allows Remote Access, Root Privileges

It turns out that some smart TVs are a little too smart for their own good–and the good of users. Some specific models of Samsung TVs that have Wi-Fi and other advanced capabilities have a flaw that enables an attacker to take a variety of actions on the TV, including accessing potentially...

Samsung smart TV vulnerability allow attacker to read storage remotely

ReVuln Ltd. , a small security company headed by Donato Ferrante and Luigi Auriemma, post a video that demonstrates that how attacks can gain root on the appliances. Samsung Smart TV contain a vulnerability which allows remote attackers to swipe data from attached storage devices. In this...

CVE-2012-4841

Unspecified vulnerability in Tivoli Endpoint Manager for Remote Control Broker 8.2 before 8.2.1-TIV-TEMRC821-IF0002 allows remote attackers to cause a denial of service resource consumption via unknown vectors...

Memory corruption

Unspecified vulnerability in Tivoli Endpoint Manager for Remote Control Broker 8.2 before 8.2.1-TIV-TEMRC821-IF0002 allows remote attackers to cause a denial of service resource consumption via unknown vectors...

CVE-2012-4841

Unspecified vulnerability in Tivoli Endpoint Manager for Remote Control Broker 8.2 before 8.2.1-TIV-TEMRC821-IF0002 allows remote attackers to cause a denial of service resource consumption via unknown vectors...

CVE-2012-4841

CVE-2012-4841 affects Tivoli Endpoint Manager for Remote Control Broker, versions 8.2 and earlier (up to 8.2.1- TIV-TEMRC821-IF0002). The vulnerability is described as unspecified and allows remote attackers to cause a denial of service through unknown vectors. Connected sources corroborate the t...

Java zero-day exploit sold in underground Market

Once again a zero day vulnerability exploit is sold by cyber criminals in the underground, once again a the flaw is related to Oracle's Java software that could allow to gain remote control over victim's machine. The news has been reported by KrebsOnSecurity blog that announced that the exploit...

Multiple Command Execution Vulnerabilities in Smartphone Pentest Framework (SPF)

High-Tech Bridge Security Research Lab discovered multiple command execution vulnerabilities in Smartphone Pentest Framework SPF web-based GUI, which could be exploited to get control over a pentester's machine remotely. Similar vulnerabilities were discovered...

MPC (Media Player Classic) WebServer Multiple Vulnerabilities

========================================================================================== MPC Media Player Classic WebServer Multiple Vulnerabilities ==========================================================================================...

Media Player Classic XSS / Denial Of Service

MPC Media Player Classic suffers from cross site scripting and denial of service vulnerabilities. ========================================================================================== MPC Media Player Classic WebServer Multiple Vulnerabilities...