Solving rendering performance puzzles

You're missing demos in this post because JavaScript or inline SVG isn't available. The Chrome team are often asked to show the process of debugging a performance issue, including how to select tools and interpret results. Well, I was recently hit by an issue that required a bit of digging, here'...

CentOS Update for sos CESA-2013:1121 centos5

Check for the Version of sos OpenVAS Vulnerability Test CentOS Update for sos CESA-2013:1121 centos5 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

RHEL 5 : sos (RHSA-2013:1121)

An updated sos package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

CentOS 5 : sos (CESA-2013:1121)

An updated sos package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

Scientific Linux Security Update : sos on SL5.x (noarch) (20130730)

The sosreport utility collected the Kickstart configuration file '/root /anaconda-ks.cfg', but did not remove the root user's password from it before adding the file to the resulting archive of debugging information. An attacker able to access the archive could possibly use this flaw to obtain th...

Low: Red Hat Security Advisory: sos security update

An updated sos package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

OllyDbg / Immunity Debugger Crash

;Title : OllyDbg/Immunity Debugger - Crash POC ;Researcher : Souhail Hammou Dark-Puzzle ;Research Team : http://itsecurity.ma ;Facebook : http://www.facebook.com/dark.puzzle.sec ;Date : 29/07/2013 ;================================================================== .386 .model flat,stdcall option...

JDWP Arbitrary Java Code Execution Exploitation

This is a whitepaper discussing arbitrary java code execution leveraging the Java Debugging Wire Protocol JDWP. JDWP Arbitrary Java Code Execution Exploitation =============================================== Java Debugging Wire Protocol JDWP is the lowlevel protocol used for communication between...

JDWP Exploitation

JDWP Arbitrary Java Code Execution Exploitation =============================================== Java Debugging Wire Protocol JDWP is the lowlevel protocol used for communication between a debugger and a Java Virtual Machine JVM as outlined in the Java Platform Debugger Architecture. It is often...

SuSE 10 Security Update : ibutils (ZYPP Patch Number 8641)

Various tmp races in ibdiagnet of ibutils have been fixed that could have been used by local attackers on machines where infiband was debugged to gain privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

CentOS 4 : gdb (CESA-2007:0229)

An updated gdb package that fixes a security issue and various bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. GDB, the GNU debugger, allows debugging of programs written in C, C++, and other languages by executing them in a...

Android ICS adb debugging tools System Restore directory traversal vulnerability, can provide right-vulnerability warning-the black bar safety net

原 漏洞 信息 来自 于 [email protected] Vulnerability description: adb Android Debug Bridge backup/restore option allows you to backup and restore applications, including system applications. Backup files to tar. the zlib PACKAGE, files the default suffix is . ab. When a backup contains a file, the file...

CVE-2013-4630

CVE-2013-4630 describes a stack-based buffer overflow affecting Huawei AR series routers (AR 150, 200, 1200, 2200, 3200) when SNMPv3 debugging is enabled. The vulnerability allows remote attackers to execute arbitrary code via malformed SNMPv3 requests. Documents do not provide explicit exploit d...

Code injection

Microsoft Internet Explorer 9 and 10, when script debugging is enabled, does not properly handle objects in memory during the processing of script, which allows remote attackers to execute arbitrary code via a crafted web site, aka "Internet Explorer Script Debug Vulnerability."...

CVE-2013-3126

Microsoft Internet Explorer 9 and 10, when script debugging is enabled, does not properly handle objects in memory during the processing of script, which allows remote attackers to execute arbitrary code via a crafted web site, aka "Internet Explorer Script Debug Vulnerability."...

CVE-2013-3126

CVE-2013-3126 corresponds to a memory handling vulnerability in Microsoft Internet Explorer (IE) 9/10 when script debugging is enabled, enabling remote code execution via a crafted web page. The issue stems from improper handling of memory objects during script processing, allowing an attacker to...

CVE-2013-3126

Microsoft Internet Explorer 9 and 10, when script debugging is enabled, does not properly handle objects in memory during the processing of script, which allows remote attackers to execute arbitrary code via a crafted web site, aka "Internet Explorer Script Debug Vulnerability."...

Microsoft Internet Explorer Multiple Vulnerabilities (2838727)

This host is missing a critical security update according to Microsoft Bulletin MS13-047. OpenVAS Vulnerability Test $Id: secpodms13-047.nasl 6104 2017-05-11 09:03:48Z teissa $ Microsoft Internet Explorer Multiple Vulnerabilities 2838727 Authors: Thanga Prakash S Copyright: Copyright c 2013 SecPo...

http_in_body

This plugin searches for HTTP responses that contain other HTTP request/responses in their response body. This situation is mostly seen when programmers enable some kind of debugging for the web application, and print the original request in the response HTML as a comment. Plugin type Grep Option...

CVE-2013-1210

Array index error in the Virtual Ethernet Module VEM kernel driver for VMware ESXi in Cisco NX-OS on the Nexus 1000V, when STUN debugging is enabled, allows remote attackers to cause a denial of service ESXi crash and purple screen of death by sending crafted STUN packets to a VEM, aka Bug ID...