MD2 algorithm used by security certificates is considered weak

Digital signatures made with the MD2 algorithm are used in some of the issuer certificates that Opera trusts. MD2 is now considered weak...

CVE-2009-2973

Removed by vendor...

eLinks SQL Injection / XSS / LFI

===================================================================== eLinks Vulnerabilities blind sql inj / xss / LFI by Inj3ct0r.com ===================================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ ...

WAP-Motor 18.0 File Inclusion

=============================================================== Wap-motor Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + support e-mail :...

Mandrake Security Advisory MDVSA-2009:197 (nss)

The remote host is missing an update to nss announced via advisory MDVSA-2009:197. OpenVAS Vulnerability Test $Id: mdksa2009197.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:197 nss Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

RedHat Security Advisory RHSA-2009:1207

The remote host is missing updates to Netscape Portable Runtime NSPR and Network Security Services NSS announced in advisory RHSA-2009:1207. These updated packages upgrade NSS from the previous version, 3.12.2, to a prerelease of version 3.12.4. The version of NSPR has also been upgraded from 4.7...

Maple Leaf bar management system provides a rights-vulnerability warning-the black bar safety net

Author: st0p Reproduced please specify http://www. st0p. org Just finished live, see BK instantblack momentgroup of the Link issues a 4 0 bits of the HASH to ask what is the encryption algorithm that looks a lot like MD5, he says there is source code?, is the maple bar message management system,...

Critical: Red Hat Security Advisory: nspr and nss security update

Updated nspr and nss packages that fix security issues are now available for Red Hat Enterprise Linux 5.2 Extended Update Support. This update has been rated as having critical security impact by the Red Hat Security Response Team. Netscape Portable Runtime NSPR provides platform independence for...

Mandriva Linux Security Advisory : nss (MDVSA-2009:197-3)

Security issues in nss prior to 3.12.3 could lead to a man-in-the-middle attack via a spoofed X.509 certificate CVE-2009-2408 and md2 algorithm flaws CVE-2009-2409, and also cause a denial-of-service and possible code execution via a long domain name in X.509 certificate CVE-2009-2404. This updat...

New Attack Against AES-256 a 'Huge Result'

A group of cryptographers has devised a new attack against AES, the de facto standard encryption algorithm, that enables them to recover an encryption key in far less time than had been possible before. The attack can recover an AES-256 key in a small enough amount of time to make the method...

Critical: Red Hat Security Advisory: nspr and nss security and bug fix update

Updated nspr and nss packages that fix security issues and bugs are now available for Red Hat Enterprise Linux 4.7 Extended Update Support. This update has been rated as having critical security impact by the Red Hat Security Response Team. Netscape Portable Runtime NSPR provides platform...

deprecate MD2 in SSL cert validation (Kaminsky)

The Network Security Services NSS library before 3.12.3, as used in Firefox; GnuTLS before 2.6.4 and 2.7.4; OpenSSL 0.9.8 through 0.9.8k; and other products support MD2 with X.509 certificates, which might allow remote attackers to spoof certificates by using MD2 design flaws to generate a hash...

Critical: Red Hat Security Advisory: nspr and nss security and bug fix update

Updated nspr and nss packages that fix security issues and a bug are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. Netscape Portable Runtime NSPR provides platform independence for non-GUI operati...

VMSA-2008-0017 : Updated ESX packages for libxml2, ucd-snmp, libtiff

a. Updated ESX Service Console package libxml2 A denial of service flaw was found in the way libxml2 processes certain content. If an application that is linked against libxml2 processes malformed XML content, the XML content might cause the application to stop responding. The Common...

openSUSE Security Update : ruby (ruby-1070)

This ruby update improves return value checks for openssl function OCSPbasicverify CVE-2009-0642 which allowed an attacker to use revoked certificates. The entropy of DNS identifiers was increased CVE-2008-3905 to avaid spoofing attacks. The code for parsing XML data was vulnerable to a denial of...

openSUSE Security Update : libxcrypt (libxcrypt-109)

libxcrypt accidentally used the DES-Algorithm if MD5 was selected as password hash algorithm CVE-2008-3188. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libxcrypt-109. The text description ...

New AES Attack, 200-Year-Old Cipher Key Big Week in Crypto

It’s been quite a week in the world of cryptography. For a field in which advancements are measured in the smallest of terms and major breakthroughs can take decades, the three big news stories involving cryptography in the last few days comprise an epochal event. Perhaps the most interesting of...

Pirelli Discus DRG A225 wifi router - WPA2PSK Default Algorithm

Pirelli Discus DRG A225 wifi router - WPA2PSK Default Algorithm !/usr/bin/python Pirelli Discus DRG A225 WiFi router Default WPA2-PSK algorithm vulnerability paper: http://milw0rm.com/papers/313 With this code we can predict the WPA2-PSK key... Hacked up by Muris Kurgas aka j0rgan j0rgan -@-...

Pirelli Discus DRG A225 wifi router WPA2PSK Default Algorithm Exploit

No description provided by source. !/usr/bin/python Pirelli Discus DRG A225 WiFi router Default WPA2-PSK algorithm vulnerability paper: http://milw0rm.com/papers/313 With this code we can predict the WPA2-PSK key... Hacked up by Muris Kurgas aka j0rgan j0rgan -@- remote-exploit.org...

Pirelli Discus DRG A225 wifi router - WPA2PSK Default Algorithm

!/usr/bin/python Pirelli Discus DRG A225 WiFi router Default WPA2-PSK algorithm vulnerability paper: http://milw0rm.com/papers/313 With this code we can predict the WPA2-PSK key... Hacked up by Muris Kurgas aka j0rgan j0rgan -@- remote-exploit.org http://www.remote-exploit.org Use for education o...