11 matches found
Bash Botnet Exploit Found, Bash Patches Incomplete
The urgency to patch systems against the Bash zero-day vulnerability has been cranked to 10 after reports of an exploit in the wild have been made public by AusCERT, the Computer Emergency Response Team of Australia. This seems to reflect a similar finding posted by a researcher who goes by the...
Conficker Worm in Hiding at an Australian Supermarket Chain
The once-prolific Conficker worm has turned up in the most unlikely of places: Australian discount supermarket, Aldi. The worm was discovered pre-installed on a four-in-one external hard-drive, DVD, USB, and card reader combination device. According to a warning from the Australian Computer...
CitectSCADA/CitectFacilities ODBC - Remote Buffer Overflow (Metasploit)
$Id: citectscadaodbc.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
CitectSCADA/CitectFacilities ODBC Buffer Overflow
This module exploits a stack buffer overflow in CitectSCADA's ODBC daemon. This has only been tested against Citect v5, v6 and v7. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule...
Video: Do Mac OS X users need anti-virus?
ZDNet.com.au recently posed the question to security professionals at the AusCERT 2009 IT security conference on the Gold Coast...
citect_scada_odbc.rb.txt
$Id: citectscadaodbc.rb This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/projects/Framework/ msfcli...
Mozilla Firefox fails to properly sanitize user-supplied URIs via shell script
Overview A lack of input validation in a supplemental shell script included with some Mozilla browsers may allow a remote, unauthenticated attacker to execute arbitrary commands. Description The Linux versions of the Mozilla Firefox and Mozilla Suite web browsers include a wrapper shell script fo...
IEEE 802.11 wireless network protocol DSSS CCA algorithm vulnerable to denial of service
Overview The IEEE 802.11 wireless networking protocol contains a vulnerability that could allow a remote attacker to cause a denial of service to any wireless device within range. Description IEEE 802.11 wireless network protocols use a Clear Channel Assessment CCA algorithm to determine whether ...
SGI IRIX df buffer overflow in directory argument
Overview Description The df program is used to display statistics about the amount of used and free disc space on a set of mounted file systems. Alternately, it can be used to check on the amount of space available on unmounted block devices which may be specified by some path. Due to insufficien...
Washington University WU-FTPD 2.5.0 - 'message' Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/726/info There is a buffer overflow in wu-ftpd message file expansions which may be remotely exploitable. In situations where the message file can be written to in some way remotely by regular or anonymous users, this may result in a root compromise...
Washington University WU-FTPD 2.5.0 - message Remote Buffer Overflow
Washington University WU-FTPD 2.5.0 - message Remote Buffer Overflow // source: https://www.securityfocus.com/bid/726/info There is a buffer overflow in wu-ftpd message file expansions which may be remotely exploitable. In situations where the message file can be written to in some way remotely b...