Lucene search
K

490 matches found

ThreatPost
ThreatPost
added 2010/06/11 2:45 p.m.10 views

Automating Social Engineering in MiTM Attacks

French researchers have developed an automated social engineering tool that uses a man-in-the middle attack and strikes up online conversations with potential victims. Read the full article. Dark Reading...

4.3AI score
Exploits0References1
OpenVAS
OpenVAS
added 2010/05/07 12:0 a.m.15 views

Fedora Update for sahana FEDORA-2010-6379

Check for the Version of sahana OpenVAS Vulnerability Test Fedora Update for sahana FEDORA-2010-6379 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

6.4CVSS6.6AI score0.0152EPSS
Exploits0References2
Cvelist
Cvelist
added 2010/04/28 10:0 p.m.31 views

CVE-2010-1037

Cross-site request forgery CSRF vulnerability in HP System Insight Manager before 6.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

7AI score0.01574EPSS
Exploits0References4
ThreatPost
ThreatPost
added 2010/02/23 4:34 p.m.11 views

Card Skimming Hits Up to 180 Gas Pumps

Criminals hid bank card-skimming devices inside gas pumps — in at least one case, even completely replacing the front panel of a pump — in a recent wave of attacks that demonstrate a more sophisticated, insidious method of stealing money from unsuspecting victims filling up their gas tanks. Read...

1.2AI score
Exploits0References1
ThreatPost
ThreatPost
added 2010/01/20 4:45 p.m.9 views

The Unemployed Are Key to Online Job Scams

Even though online job scams have become more convincing as criminals have honed their skills, sometimes victims don’t fall for them – they jump into them. Read the full article. SFGate...

0.5AI score
Exploits0References2
seebug.org
seebug.org
added 2009/12/23 12:0 a.m.41 views

webMathematica XSS Vulnerability

No description provided by source. In some installations, the MSP script of webMathematica is vulnerable to reflected XSS. Just insert a backslash after the script name MSP, which is normally located under the "webMathematica" folder: http://www.example.com/webMathematica/MSP\scriptalert'a'/scrip...

7.1AI score
Exploits0
UbuntuCve
UbuntuCve
added 2009/12/16 1:30 a.m.26 views

CVE-2009-4297

Multiple cross-site request forgery CSRF vulnerabilities in Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors...

6.8CVSS5.9AI score0.01219EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2009/05/22 1:0 a.m.32 views

CVE-2009-1757

Cross-site request forgery CSRF vulnerability in Transmission 1.5 before 1.53 and 1.6 before 1.61 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

6.8CVSS6.9AI score0.00835EPSS
Exploits0
ThreatPost
ThreatPost
added 2009/04/28 5:17 p.m.12 views

Old phishing sites still sending spam, attracting victims

The cooperative effort of ISPs, security vendors, volunteer groups and other interested parties has helped develop a quick and efficient method for taking down phishing sites, usually within hours or days of their appearance. However, many phishing sites that have been up for a week or more still...

7.4AI score
Exploits0References6
securityvulns
securityvulns
added 2005/05/13 12:0 a.m.32 views

[DR018] Quartz Composer / QuickTime 7 information leakage

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The canonical URI of this advisory is http://remahl.se/david/vuln/ 018/. This advisory concerns an as-yet unpatched problem in QuickTime 7 on Mac OS X 10.4. The reason for disclosure before a vendor patch is that another person realized the potential...

6.6AI score
Exploits0
Rows per page
Query Builder