SUSE SLED11 Security Update : compat-openssl097g (SUSE-SU-2016:0631-1) (DROWN)

This update for compat-openssl097g fixes the following issues : - CVE-2016-0800 aka the 'DROWN' attack bsc968046: OpenSSL was vulnerable to a cross-protocol attack that could lead to decryption of TLS sessions by using a server supporting SSLv2 and EXPORT cipher suites as a Bleichenbacher RSA...

Vulnerability in OpenSSL - BN_hex2bn/BN_dec2bn NULL pointer deref/heap corruption

In the BNhex2bn function the number of hex digits is calculated using an int value |i|. Later |bnexpand| is called with a value of |i 4|. For large values of |i| this can result in |bnexpand| not allocating any memory because |i 4| is negative. This can leave the internal BIGNUM data field as NUL...

88 Percent of Networks Susceptible to Privileged Account Hacks

IT professionals have long grappled with the inherent risks associated with privileged accounts. Whenever credentials that allow other employees to login to servers, routers, and so forth, are compromised, it can have a dire outcome on the rest of the network. A security firm this week is warning...

Google AdMob filter vulnerabilities, malicious ads sneak into the application-vulnerability warning-the black bar safety net

! There are Android app developers complained, because the official advertising network poorly regulated, resulting in this pollution-free Android application infected with malicious ads. Android app strange is implanted in the third-party advertising From Sydney, two bus the Android app Arrivo a...

Coalition of Security Companies Forms to Oppose Wassenaar Rules

A large group of security companies have formed a coalition to oppose the proposed rules from the Department of Commerce that would regulate the export of so-called intrusion software, a broad term that researchers and legal experts are concerned would limit security research and development. The...

4th Member of 'Xbox Underground' Group Pleads Guilty to $100 Million Theft

The Fourth and final member of an international hacking group called "Xbox Underground" XU has pled guilty to steal more than $100 Million in intellectual property and data from Microsoft, Epic Games, and Valve Corporation. In addition, the group also stole an Apache helicopter simulator develope...

Michael Chertoff Risk Management ACSC Keynote

BOSTON – Former Homeland Security secretary Michael Chertoff gave enterprises a pep talk Wednesday during his keynote address at the Advanced Cyber Security Center’s annual conference. In a climate where massive financial services organizations such as JP Morgan Chase have been breached, the Whit...

Cyberespionage: 'This Isn't a Problem That Can Be Solved'

WASHINGTON–Gentlemen may not read each other’s mail, as Henry Stimson famously said so long ago, but in today’s world they certainly steal it and there’s precious little in the way of gentlemanly conduct happening in the realm of cyberespionage. It’s every man—or country—for himself in this...

Supermicro Onboard IPMI Port 49152 敏感文件泄露漏洞

关于 IPMI：智能平台管理接口 IPMI 是一种开放标准的硬件管理接口规格，定义了嵌入式管理子系统进行通信的特定方法。IPMI 信息通过基板管理控制器 BMC（位于 IPMI 规格的硬件组件上）进行交流。IPMI是智能型平台管理接口（Intelligent Platform Management Interface）的缩写，是管理基于...

Mastery OA 2011-2013 pass to kill GETSHELL-a vulnerability warning-the black bar safety net

Statement: This program applied to a lot of government agencies, educational institutions, as well as the large stream companiesChina Telecom, etc.! Please after reading this don't try to for any use of the program website destruction attack invasion, etc... I made this post purely technical...

Eric Allman Sendmail 8.8 .x Socket Hijack Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/774/info Through exploiting a combination of seemingly low-risk vulnerabilities in sendmail, it is possible for a malicious local user to have an arbitrary program inherit or hijack the file descriptor for the socket...

Red Hat Linux stickiness of /tmp

No description provided by source. from: http://marc.info/?l=full-disclosure&m=129842239022495&w=2 Developers should not rely on the stickiness of /tmp on Red Hat Linux --------------------------------------------------------------------- Recent versions of Red Hat Enterprise Linux and Fedora...

CheckPoint/Sofaware Firewall Multiple Vulnerabilities

No description provided by source. ProCheckUp Research http://procheckup.com/procheckup-labs/pr11-07.aspx PR11-07 Multiple peristent XSS, XSS, XSRF, offsite redirection and information disclosure flaws within CheckPoint/Sofaware firewalls Vulnerability found: 3rd May 2011 Vendor informed: 20th Ju...

Exploiting GPS vulnerability to Hijack Ships, Airplanes with $3000 Equipments

The GPS expert Todd Humphreys, professors at the University of Texas, demonstrated that just using a cheap apparatus composed by a small antenna, an electronic GPS "spoofer" built in $3,000 and with a laptop, it is possible to exploit GPS vulnerability to obtain control of sophisticated navigatio...

NIST Seeks Guidance on Incident Response and Forensics

The federal government is looking for some help in figuring out how to respond to security incidents. As attacks continue to escalate against both government agencies and private enterprises, NIST is developing a set of standards for best practices in incident response and computer forensics. The...

Microsoft's Bug Bounty Program and the Law of Unintended Consequences

The Microsoft bug bounty program has been nearly a decade in the making and it is clear from the shape and size of it that the company did not simply slap the program together in order to join the cool kids. Rather, Microsoft’s security team spent years watching the way other programs work, seein...

Eugene Kaspersky: Clear Need to Define Cyberweapons and Cyberwar

The term cyberwar has become a catch-all used by politicians, talking heads and others to encompass just about any online threat, regardless of the attacker or the target. Among security professionals, however, the word has a specific connotation–an attack by one nation against another nation’s...

DirCMS arbitrary file read 0day-vulnerability warning-the black bar safety net

Feel time really flies really fast, the computer opened an off day is gone. Can't go on like this, so I'm going to take some time to write the blog and learning, recording their growth. Whether it be a programmer, or a security engineer, reading someone else's code is undoubtedly progress in a...

Know who you're dealing with

The EFF has some advice for interacting with border agents. First: don’t lie to them. This is a punishable crime regardless of whether you are lying to cover something up or not. It is always better to decline answering than it is to give a false answer. Don’t obstruct an Agent’s investigation or...

Opinion: Anon Will Need More Than Porn Takedowns To Rehab Its Image

The hacktivist group Anonymous, it seems, is bent on rehabilitating its image. In recent months, the anarchic hacking collective has moved from retaliatory attacks on enemies like Aaron Barr and outing “snitches,” to squelching out child pornography networks Operation DarkNet, launched in October...