Apache Hadoop MapReduce JobTracker Web Detection

The web interface for Hadoop MapReduce JobTracker was detected on the remote host. This interface can be used to monitor jobs submitted to the Hadoop MapReduce engine. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid50304; scriptversion"1.7"; scriptcvsdate"Date:...

Apache Hadoop MapReduce TaskTracker Web Interface

The web interface for Hadoop MapReduce TaskTracker was detected on the remote host. This interface can be used to monitor MapReduce tasks submitted to this node. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid50305; scriptversion"1.7"; scriptcvsdate"Date: 2019/11/25"...

Microsoft Releases New Regex Fuzzer

Microsoft has released a new fuzzing tool designed specifically to find mistakes in regular expressions in application code that could be vulnerable to attack. The SDL Regex Fuzzer identifies problematic lines that might cause an application to be susceptible to attacks that consume huge amounts ...

Microsoft Proposes 'Health Certificates' For Internet Access

Microsoft is proposing a new Internet-wide security model, based on the concepts of public health, that is designed to address the problem of how to prevent infected machines from affecting the security and performance of PCs elsewhere on the Web. The model would require each PC to present a...

National Science Foundation: Time for Web Makeover

The National Science Foundation NSF has doled out grants worth up to $32 million in total to a pack of universities dedicated to rethinking everything about the Internet from from its core routing system to its security architecture and addressing the emergence of cloud computing and an...

CVE-2010-2544

Cross-site scripting XSS vulnerability in utilities.php in Cacti before 0.8.7g, as used in Red Hat High Performance Computing HPC Solution and other products, allows remote attackers to inject arbitrary web script or HTML via the filter parameter...

CVE-2010-2545

Multiple cross-site scripting XSS vulnerabilities in Cacti before 0.8.7g, as used in Red Hat High Performance Computing HPC Solution and other products, allow remote attackers to inject arbitrary web script or HTML via 1 the name element in an XML template to templatesimport.php; and allow remote...

CVE-2010-1644

Multiple cross-site scripting XSS vulnerabilities in Cacti before 0.8.7f, as used in Red Hat High Performance Computing HPC Solution and other products, allow remote attackers to inject arbitrary web script or HTML via the 1 hostname or 2 description parameter to host.php, or 3 the hostid paramet...

CVE-2010-1645

Cacti before 0.8.7f, as used in Red Hat High Performance Computing HPC Solution and other products, allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in 1 the FQDN field of a Device or 2 the Vertical Label field of a Graph Template...

CVE-2010-2544

Cross-site scripting XSS vulnerability in utilities.php in Cacti before 0.8.7g, as used in Red Hat High Performance Computing HPC Solution and other products, allows remote attackers to inject arbitrary web script or HTML via the filter parameter...

CVE-2010-1645

Cacti before 0.8.7f, as used in Red Hat High Performance Computing HPC Solution and other products, allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in 1 the FQDN field of a Device or 2 the Vertical Label field of a Graph Template...

Important: Red Hat Security Advisory: Red Hat High Performance Computing (HPC) Solution 5.5

The Red Hat High Performance Computing HPC Solution version 5.5 for Red Hat Enterprise Linux 5.5, or RHHPC 5.5, is now available, fixing multiple security issues, multiple bugs, and adding several enhancements. The Red Hat Security Response Team has rated this update as having important security...

Cacti 0.8.7 (RedHat High Performance Computing [HPC]) - 'utilities.php?Filter' Cross-Site Scripting

source: https://www.securityfocus.com/bid/42575/info Cacti is prone to cross-site-scripting and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would run in the contex...

Grid. Система распределенных вычислений.

Введение. Материал появился в результате анализа замечаний и предложений, поступивших от тех, кто прочитал статью “Процесс создания ПО для распределенных вычислений C++”. Отсутствие явного распределения задачи сервером между клиентами и отсутствие конкретной задачи в принципе заставили автора ина...

Chris Hoff: Cloud Computing

In this session from the SOURCE conference in Boston, Chris Hoff of Cisco Systems discusses the current state of cloud computing and what it can tell us about the future of cloud computing...

End of Support for XP SP2 is End of an Era

Microsoft’s announcement this week that it is preparing to end support for machines running Windows XP SP2 not only represents a challenge for the thousands of businesses still running SP2, but also is the end of an era for both Microsoft and its customers. By the time Microsoft drops support for...

Research Software Secures Hypervisor Behavior

Researchers from North Carolina State University have developed new techniques and software that may be the key to resolving cloud computing and virtualization security concerns and boosting confidence in the sector. Read the full article. ScienceDaily...

Has Apple Gotten Religion on Software Security?

Information security is an unpredictable, fluid discipline. There are very few absolute truths, but for the last few years, one of those has been that Apple isn’t paying much attention to software security. At least that’s the received wisdom. This theory is based mainly on the fact that security...

RE-TRUST Solves Trusted Computing Weaknesses

European researchers are proposing a paradigm-shifting solution to trusted computing that offers better security and authentication with none of the drawbacks that exist in the current state of the art. Read the full article. Science Daily...

MS Discovers Over 1,800 Office 2010 Bugs

Microsoft uncovered more than 1,800 bugs in Office 2010 by tapping into the unused computing horsepower of idling PCs. Office developers found the bugs by running millions of “fuzzing” tests, said Tom Gallagher, senior security test lead with Microsoft’s Trustworthy Computing group. Read the full...