[SECURITY] Fedora 25 Update: python-tornado-4.4.2-1.fc25

Tornado is an open source version of the scalable, non-blocking web server and tools. The framework is distinct from most mainstream web server frameworks and certainly most Python frameworks because it is non-blocking and reasonably fast. Because it is non-blocking and uses epoll, it can handle...

Cisco Firepower System Software FTP Malware Vulnerability

A vulnerability in the FTP Representational State Transfer Application Programming Interface REST API for Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass FTP malware detection rules and download malware over an FTP connection. The vulnerability is due to ...

OpenGB 1.2.3 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications OpenGB version 1.2.3 Cross Site Scripting XSS Vulnerability ================================================================= Discovered by NA, NAattutanota.com ====================================== Description ============ A simple PHP MySQL...

OpenGB 1.2.3 Cross Site Scripting

OpenGB version 1.2.3 Cross Site Scripting XSS Vulnerability ================================================================= Discovered by NA, NAattutanota.com ====================================== Description ============ A simple PHP MySQL website guestbook, user friendly and easily...

[SECURITY] Fedora 24 Update: nodejs-4.6.1-6.fc24

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

[SECURITY] Fedora 24 Update: nodejs-4.6.0-5.fc24

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

Turkey Blocks GitHub, Google Drive and Dropbox to Censor RedHack Leaks

Turkey is again in the news for banning online services, and this time, it's a bunch of sites and services offered by big technology giants. Turkey government has reportedly blocked access to cloud storage services including Microsoft OneDrive, Dropbox, and Google Drive, as well as the code hosti...

XNC: How to Block any Device which does not use SecureMail Agent

Question : XNC: How to Block any Device which does not use SecureMail Agent Answer : Rule = Static+XDM: Block mode Made the static XNC rule for "WorxMail" agent. The Above step can also be achieved by allowing Secure Mail agent as "Secure Mail/Secure Mail" in the XNC RegEx build. Perform "Implici...

CVE-2016-4741

The Assets component in Apple iOS before 10 allows man-in-the-middle attackers to block software updates via vectors related to lack of an HTTPS session for retrieving updates...

Cisco Firepower Management Center and FireSIGHT System Software Security Bypass Vulnerability

Cisco Firepower Management Center and FireSIGHT System Software are management center software from Cisco in the United States. Cisco Firepower Management Center and FireSIGHT System Software fail to properly validate fields in HTTP headers, allowing remote attackers to exploit vulnerabilities to...

Cisco FireSIGHT System Software Malware Bypass Vulnerability

A vulnerability in the malicious file detection and blocking features of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass malware detection mechanisms on an affected system. The vulnerability is due to improper input validation of fields in HTTP headers. A...

pi-hole - A Black Hole For Internet Advertisements (Designed For Raspberry Pi)

A black hole for Internet advertisements designed for Raspberry Pi Designed For Raspberry Pi A+, B, B+, 2, Zero, and 3B with an Ethernet/Wi-Fi adapter Works on most Debian distributions! 1. Install Raspbian 2. Run the command below downloads this script in case you want to read over it first! cur...

TYPO3 http:BL Blocking 'http:BL Blocking' Extension Cross-Site Scripting Vulnerability

TYPO3 is a free and open source content management system maintained by the Swiss TYPO3 Association. A cross-site scripting vulnerability exists in the TYPO3 http:BL Blocking extension, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can b...

Multiple Vulnerabilities in the TYPO3 'http:BL Blocking' Extension

TYPO3 is a free and open source content management system framework CMS/CMF maintained by the Swiss TYPO3 Association. http:BL Blocking is one of the http binding extension plugin . SQL injection and cross-site scripting vulnerabilities exist in TYPO3 http:BL Blocking extension 1.1.7 and earlier...

[SECURITY] Fedora 23 Update: squid-3.5.10-4.fc23

Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DN...

[SECURITY] Fedora 24 Update: squid-3.5.19-2.fc24

Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DN...

The vulnerability of the Firefox browser, which allows a malicious individual to execute cross-site scripting attacks

The Mozilla Firefox browser contains a vulnerability that can be exploited if the security settings are not properly configured to block pop-up windows. This allows malicious individuals to bypass the protection mechanisms for cross-site scripting scenarios...

[SECURITY] Fedora 23 Update: squidGuard-1.4-26.fc23

squidGuard can be used to - limit the web access for some users to a list of accepted/well known web servers and/or URLs only. - block access to some listed or blacklisted web servers and/or URLs for some users. - block access to URLs matching a list of regular expressions or words for some users...

[SECURITY] Fedora 22 Update: squidGuard-1.4-26.fc22

squidGuard can be used to - limit the web access for some users to a list of accepted/well known web servers and/or URLs only. - block access to some listed or blacklisted web servers and/or URLs for some users. - block access to URLs matching a list of regular expressions or words for some users...

pytbull - Intrusion Detection/Prevention System (IDS/IPS) Testing Framework

pytbull is an Intrusion Detection/Prevention System IDS/IPS Testing Framework for Snort, Suricata and any IDS/IPS that generates an alert file. It can be used to test the detection and blocking capabilities of an IDS/IPS, to compare IDS/IPS, to compare configuration modifications and to...