Moderate: Red Hat Security Advisory: mariadb55-mariadb security update

Updated mariadb55-mariadb packages that fix several security issues are now available for Red Hat Software Collections 1. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

[Twitter Password Dump v2.0] Command-line Tool to Recover Twitter Password from Web Browsers

Twitter Password Dump is the command-line tool to instantly recover your lost Twitter password from all the popular web browsers. Currently it can recover your Twitter password from following applications, Firefox Internet Explorer v6.x - v10.x Google Chrome Chrome Canary/SXS CoolNovo Browser Ope...

Moderate: Red Hat Security Advisory: mysql55-mysql security update

Updated mysql55-mysql packages that fix several security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings...

Publish-It 3.6d - '.pui' Local Buffer Overflow (SEH)

!/usr/bin ruby env Exploit Title: Publish-It 3.6d - SEH Buffer Overflow Date: 8/2/2014 Exploit Author: Muhamad Fadzil Ramli Vendor HomePage: https://www.postersw.com Software Link: https://www.postersw.com/publish3.exe Version App: v3.6d Tested on: Windows 7 x86 - Version 6.1.7600 CVE:None Notes:...

Java-Bot, a Cross-platform malware launching DDoS attacks from infected computers

These days botnets are all over the news. In simple terms, a botnet is a group of computers networked together, running a piece of malicious software that allows them to be controlled by a remote attacker. A major target for most of the malware is still Windows, but the growing market of Mac OS X...

[BrowserHistorySpy v3.0] All-in-one Tool to View Web History of Firefox/Chrome/IE/Chrome SXS/CoolNovo/SeaMonkey Browsers

Browser History Spy is the all-in-one software to instantly recover or view the browsing history from popular web browsers. It helps in recovering or viewing web history of following browsers. Mozilla Firefox Internet Explorer Google Chrome Google Chrome Canary/SXS CoolNovo SeaMonkey Browser It...

Google Blocks Malicious File Downloads Automatically in Chome

Google has fixed five vulnerabilities in its Chrome browser and also has activated a feature that will block malicious file downloads automatically. The change is a major security upgrade for Chrome and will help prevent users from unwittingly downloading harmful files, an attack vector that...

[WebSploit Framework] Scan And Analysis Remote System From Vulnerability

WebSploit Is An Open Source Project For Scan And Analysis Remote System From Vulnerability. WebSploit Is An Open Source Project For : Social Engineering Works Scan,Crawler & Analysis Web Automatic Exploiter Support Network Attacks +Autopwn - Used From Metasploit For Scan and Exploit Target Servic...

UAEPD Shopping Script SQL Injection

uaepd script – Multiple Sql Injection Vulnerabilty ==================================================================== .:. Author : AtT4CKxT3rR0r1ST .:. Contact : [email protected] , [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script : http://www.uaepd.net/ .:. Dork :...

Threat Outbreak Alert: Fake Court Appearance Request Email Messages on December 30, 2013

Medium Alert ID: 32276 First Published: 2014 January 7 16:52 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a court notice for the recipient. The text in the email message attempts to convince the recipient to open the...

acroread: not supported anymore (important)

Adobe discontinued the Adobe Reader 9 for Linux in June 2013 and has not fixed and will not fix any further security issues in it. As there is no new version, it is officially out of support. The SUSE Security Team strongly recommends to not use it anymore. Installing this update will deinstall t...

SuSE 11.2 / 11.3 Security Update : acroread (SAT Patch Numbers 8688 / 8689)

Adobe has discontinued the support of Adobe Reader for Linux in June 2013. Newer security problems and bugs are no longer fixed. As the Adobe Reader is binary only software and we cannot provide a replacement, SUSE declares the acroread package of Adobe Reader as being out of support and...

[Twitter Password Dump] Command-line Tool to Recover Twitter Password from Web Browsers

Twitter Password Dump is the command-line tool to instantly recover your lost Twitter password from all the popular web browsers. Currently it can recover your Twitter password from following applications, Firefox Internet Explorer v6.x - v10.x Google Chrome Chrome Canary/SXS CoolNovo Browser Ope...

[APKinspector] Powerful GUI tool to analyze the Android applications

The goal of this project is to aide analysts and reverse engineers to visualize compiled Android packages and their corresponding DEX code. APKInspector provides both analysis functions and graphic features for the users to gain deep insight into the malicious apps: CFG Call Graph Static...

Ecava IntegraXor Project Directory Information Disclosure Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Ecava IntegraXor. Authentication is not required to exploit this vulnerability. The specific flaw exists within the storing of credentials in cleartext. The issue lies in the ability to bypass file...

Gmail Image Proxy Change Has Privacy, Security Implications

Google’s decision to automatically display images in Gmail messages has security experts on edge about the privacy and security implications of the move. Of particular concern is the ability of an attacker, or marketer, to learn whether messages are being opened, as well the possibility of an...

Scientific Linux Security Update : samba and samba3x on SL5.x, SL6.x i386/x86_64 (20131210)

A heap-based buffer overflow flaw was found in the DCE-RPC client code in Samba. A specially crafted DCE-RPC packet could cause various Samba programs to crash or, possibly, execute arbitrary code when parsed. A malicious or compromised Active Directory Domain Controller could use this flaw to...

Certificate update

Security Certificate update Share December 9th, 2013 Last week we became aware of the existence of several unauthorized security certificates, issued in violation of rules for creation of such certificates. The certificates chained back to a French certificate authority, ANSSI, and had been signe...

Windows Manage Proxy PAC File

This module configures Internet Explorer to use a PAC proxy file. By using the LOCALPAC option, a PAC file will be created on the victim host. It's also possible to provide a remote PAC file REMOTEPAC option by providing the full URL. This module requires Metasploit: https://metasploit.com/downlo...

[zAnti] Android Network Toolkit

Anti consists of 2 parts: The Anti version itself and extendable plugins. Upcoming updates will add functionality, plugins or vulnerabilities/exploits to Anti Using Anti is very intuitive - on each run, Anti will map your network, scan for active devices and vulnerabilities, and will display the...