Lucene search
K

2886 matches found

ThreatPost
ThreatPost
added 2011/05/25 2:39 a.m.10 views

Siemens Working On Fix For 'Security Gaps' In Logic Controllers

Siemens AG said on Tuesday that it was talking to its customers about what it acknowledged were “security gaps” in its Programmable Logic Controllers PLCs, after an NSS Labs researcher disclosed the discovery of what he described as serious security holes in the company’s industrial control...

Exploits0References5
ThreatPost
ThreatPost
added 2011/05/24 3:20 p.m.7 views

Researcher Says Siemens Downplaying Serious SCADA Holes

Dillon Beresford, the NSS Labs researcher who disclosed serious holes in industrial control system software from Siemens says the company is downplaying the seriousness of the vulnerabilities in its public statements, and that a supposed “fix” for the vulnerabilities is inadequate. In a message...

0.5AI score
Exploits0References5
The Hacker News
The Hacker News
added 2011/05/04 4:46 a.m.16 views

Network access control system PacketFence 2.2 released !

PacketFence is a free and open source network access control NAC system. It can be used to effectively secure networks - from small to very large heterogeneous networks. PacketFence has been deployed in production environments where thousands of users are involved - on wired and wireless networks...

6.9AI score
Exploits0
securityvulns
securityvulns
added 2011/05/02 12:0 a.m.54 views

Cisco Security Advisory: Cisco Wireless LAN Controllers Denial of Service Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco Wireless LAN Controllers Denial of Service Vulnerability Document ID: 112916 Advisory ID: cisco-sa-20110427-wlc Revision 1.0 For Public Release 2011 April 27 1600 UTC GMT...

7.8CVSS0.4AI score0.10378EPSS
Exploits5
securityvulns
securityvulns
added 2011/03/31 12:0 a.m.51 views

Cisco Security Advisory: Cisco Network Access Control Guest Server System Software Authentication Bypass Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco Network Access Control Guest Server System Software Authentication Bypass Vulnerability Advisory ID: cisco-sa-20110330-nac Revison 1.0 For Public Release 2011 March 30 1600 UTC GMT...

5CVSS0.4AI score0.01802EPSS
Exploits0
NVD
NVD
added 2011/01/20 7:0 p.m.18 views

CVE-2010-4331

Multiple cross-site scripting XSS vulnerabilities in Seo Panel 2.2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 defaultnews or 2 sponsors cookies, which are not properly handled by a controllers/index.ctrl.php or b controllers/settings.ctrl.php...

4.3CVSS5.7AI score0.01519EPSS
Exploits6References5
Prion
Prion
added 2011/01/20 7:0 p.m.17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Seo Panel 2.2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 defaultnews or 2 sponsors cookies, which are not properly handled by a controllers/index.ctrl.php or b controllers/settings.ctrl.php...

4.3CVSS6AI score0.01519EPSS
Exploits6References5Affected Software1
CVE
CVE
added 2011/01/20 6:0 p.m.62 views

CVE-2010-4331

Seo Panel 2.2.0 contains cookie‑rendered persistent XSS vulnerabilities: unmapped content is reflected from two cookies, default_news and sponsors, into pages that include controllers/index.ctrl.php or controllers/settings.ctrl.php. The issue is demonstrated across multiple references (Exploit-DB...

4.3CVSS5.6AI score0.01519EPSS
Exploits6References5Affected Software1
securityvulns
securityvulns
added 2010/10/19 12:0 a.m.35 views

HP ProCurve access points / access controllers / mobility controllers privilege escalation

No description provided...

8.3CVSS4AI score0.0189EPSS
Exploits0References1
securityvulns
securityvulns
added 2010/10/19 12:0 a.m.48 views

[security bulletin] HPSBGN02589 SSRT100296 rev.1 - HP ProCurve Access Points, Access Controllers, and Mobility Controllers, Privilege Escalation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02544568 Version: 1 HPSBGN02589 SSRT100296 rev.1 - HP ProCurve Access Points, Access Controllers, and Mobility Controllers, Privilege Escalation NOTICE: The information in this Security Bulletin...

8.3CVSS0.3AI score0.0189EPSS
Exploits0
NVD
NVD
added 2010/10/18 5:0 p.m.18 views

CVE-2010-3287

Unspecified vulnerability on HP ProCurve Access Points, Access Controllers, and Mobility Controllers with software 5.1.x through 5.1.9, 5.2.x through 5.2.7, 5.3.x through 5.3.5, and 5.4.x through 5.4.0 allows remote attackers to execute arbitrary code via unknown vectors...

8.3CVSS7.7AI score0.0189EPSS
Exploits0References1
Prion
Prion
added 2010/10/18 5:0 p.m.19 views

Code injection

Unspecified vulnerability on HP ProCurve Access Points, Access Controllers, and Mobility Controllers with software 5.1.x through 5.1.9, 5.2.x through 5.2.7, 5.3.x through 5.3.5, and 5.4.x through 5.4.0 allows remote attackers to execute arbitrary code via unknown vectors...

8.3CVSS8.2AI score0.0189EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2010/10/18 4:0 p.m.21 views

CVE-2010-3287

Unspecified vulnerability on HP ProCurve Access Points, Access Controllers, and Mobility Controllers with software 5.1.x through 5.1.9, 5.2.x through 5.2.7, 5.3.x through 5.3.5, and 5.4.x through 5.4.0 allows remote attackers to execute arbitrary code via unknown vectors...

7.7AI score0.0189EPSS
Exploits0References1
CVE
CVE
added 2010/10/18 4:0 p.m.56 views

CVE-2010-3287

CVE-2010-3287 affects HP ProCurve hardware (Access Points, Access Controllers, Mobility Controllers) running software versions 5.1.x up to 5.1.9, 5.2.x up to 5.2.7, 5.3.x up to 5.3.5, and 5.4.x up to 5.4.0. The vulnerability allows remote attackers to execute arbitrary code via unknown vectors. H...

8.3CVSS7.9AI score0.0189EPSS
Exploits0References1Affected Software18
ThreatPost
ThreatPost
added 2010/10/08 3:49 a.m.14 views

Security Firms Scramble For SCADA Talent After Stuxnet

Three months after the world first learned of the sophisticated Stuxnet worm, insiders say that there’s a scramble to find and hire engineers with knowledge of both security and the industrial control systems that were Stuxnet’s intended target. Anti virus companies admit their research teams wer...

7AI score
Exploits0References3
securityvulns
securityvulns
added 2010/09/08 12:0 a.m.104 views

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers Advisory ID: cisco-sa-20100908-wlc Revision 1.0 For Public Release 2010 September 08 1600 UTC GMT +--------------------------------------------------------------------...

9CVSS0.7AI score0.01482EPSS
Exploits0
Prion
Prion
added 2010/08/10 12:19 p.m.18 views

Design/Logic Flaw

Cisco Unified Wireless Network UWN Solution 7.x before 7.0.98.0 on 5508 series controllers allows remote attackers to cause a denial of service buffer leak and device crash via ARP requests that trigger an ARP storm, aka Bug ID CSCte43508...

7.8CVSS7.2AI score0.01205EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2010/08/10 12:19 p.m.10 views

Design/Logic Flaw

Cisco Unified Wireless Network UWN Solution 7.x before 7.0.98.0 on 4404 series controllers does not properly implement the WEBAUTHREQD state, which allows remote attackers to bypass intended access restrictions via WLAN traffic, aka Bug ID CSCtb75305...

10CVSS7.3AI score0.02516EPSS
Exploits0References1Affected Software1
ThreatPost
ThreatPost
added 2009/11/09 3:58 p.m.12 views

How to Take Down a Botnet

The botnet problem has reached epidemic levels in recent months, with the continued growth of large-scale botnets, as well as the identification of smaller, more targeted networks around the world. But researchers have been taking steps to disrupt botnets of late, with some notable successes, as...

0.2AI score
Exploits0References1
ThreatPost
ThreatPost
added 2009/11/02 7:31 p.m.9 views

Conficker Infects 7 Million Systems in a Year

The Shadowserver Foundation reported that it has discovered 7 million unique IP addresses infected by Conficker and its variants. Tracking of the attack was accomplished by cracking the algorithm that the worm uses to find instructions on the Internet. Shadowserver then used sinkhole servers to l...

3.3AI score
Exploits0References2
Rows per page
Query Builder