Lucene search
K

106 matches found

Schneier on Security
Schneier on Security
added 2017/12/15 12:18 p.m.11 views

Tracking People Without GPS

Interesting research: The trick in accurately tracking a person with this method is finding out what kind of activity they're performing. Whether they're walking, driving a car, or riding in a train or airplane, it's pretty easy to figure out when you know what you're looking for. The sensors can...

6.6AI score
Exploits0
OSV
OSV
added 2017/12/12 9:29 p.m.5 views

CVE-2017-11927

Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allow an information vulnerability due to the way the Windows its:// protocol handler determines...

6.5CVSS7.1AI score0.09617EPSS
Exploits0References3
Malwarebytes
Malwarebytes
added 2017/11/10 1:0 p.m.158 views

How to solve the Malwarebytes CrackMe: a step-by-step tutorial

The topic of this post is a Malwarebytes CrackMe—an exercise in malware analysis that I recently created. First, the challenge was created to serve internal purposes, but then it was released to the community on Twitter and triggered a lot of positive response. Thanks to all of you who sent in yo...

7.3AI score
Exploits0
Citrix
Citrix
added 2017/08/02 12:0 a.m.9 views

NetScaler SD-WAN Troubleshooting Guide

Citrix SD-WAN, formerly NetScaler SD-WAN This articles helps you diagnose, troubleshoot, and resolve common issue encountered on NetScaler SD-WAN. Note : This is a master overview article. The detailed information for each topic is covered in its individual articles. CTX236987 - Information to Ke...

6.9AI score
Exploits0
Citrix
Citrix
added 2017/02/08 12:0 a.m.8 views

How to determine the version of Citrix license server installed

This article describes how to determine the version of the Citrix license server...

7AI score
Exploits0
Citrix
Citrix
added 2016/08/17 12:0 a.m.10 views

How to debug Citrix Gateway connector logs (XNC)

In order to determine an issue with Citrix Gateway connector formerly known as XNC, we would need to enable debug logging...

7AI score
Exploits0
myhack58
myhack58
added 2016/03/01 12:0 a.m.327 views

FCKeditor upload vulnerability summary-vulnerability warning-the black bar safety net

0x01 FCKeditor profile FCKeditor is a specialized use on a web page belonging to the open source WYSIWYG text editor. It logs in lightweight, does not require complicated installation steps can be used. It can be PHP, JavaScript, ASP, ASP.NET and ColdFusion, Java, and ABAP and other different...

0.8AI score
Exploits0
OpenVAS
OpenVAS
added 2015/09/29 12:0 a.m.28 views

Gentoo Security Advisory GLSA 201403-03

Gentoo Linux Local Security Checks GLSA 201403-03 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

5CVSS8.1AI score0.0507EPSS
Exploits0References1
Cvelist
Cvelist
added 2015/02/18 2:0 a.m.16 views

CVE-2015-1356

Siemens SIMATIC STEP 7 TIA Portal before 13 SP1 determines a user's privileges on the basis of project-file fields that lack integrity protection, which allows remote attackers to establish arbitrary authorization data via a modified file...

6.7AI score0.00512EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

SuidPerl 5.6 Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6282/info An information disclosure vulnerability has been reported for SuidPerl. Reportedly, it is possible for an attacker to determine whether files exist in non-accessible directories. An attacker can exploit this...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2014/04/10 7:13 a.m.16 views

Ensnare Web Application Attack Detection Utility Released

BOSTON – Two engineers from Netflix this week released to open source a security tool that detects attacks against web applications—and also reacts to those attacks with responses they hope will flummox a hacker to the point that he moves on to his next target. The utility is called Ensnare and i...

7.5AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2013/10/29 12:0 a.m.32 views

CVE-2013-5596

The cycle collection CC implementation in Mozilla Firefox before 25.0, Firefox ESR 24.x before 24.1, Thunderbird before 24.1, and SeaMonkey before 2.22 does not properly determine the thread for release of an image object, which allows remote attackers to execute arbitrary code or cause a denial ...

6.8CVSS6.9AI score0.03144EPSS
Exploits0References4
w3af
w3af
added 2013/06/10 11:2 p.m.29 views

frontpage_version

This plugin searches for the FrontPage Server Info file and if it finds it will try to determine the version of the Frontpage Server Extensions. The file is located inside the web server webroot. For example: http://localhost/vtiinf.html Plugin type Infrastructure Options This plugin doesnt have...

Exploits0
w3af
w3af
added 2013/06/10 11:2 p.m.378 views

phpinfo

This plugin searches for the PHP Info file in all the directories and subdirectories that are sent as input and if it finds it will try to determine the version of the PHP. The PHP Info file holds information about the PHP and the system version, environment, modules, extensions, compilation...

7.2AI score
Exploits0
Nmap
Nmap
added 2012/07/08 10:34 a.m.234 views

metasploit-info NSE Script

Gathers info from the Metasploit rpc service. It requires a valid login pair. After authentication it tries to determine Metasploit version and deduce the OS type. Then it creates a new console and executes few commands to get additional info. References: Metasploit RPC API Guide See also:...

10CVSS9.7AI score0.99448EPSS
Exploits33
OpenVAS
OpenVAS
added 2011/03/16 12:0 a.m.78 views

Host Details

This scripts aggregates the OS detection information gathered by several VTs and store it in a structured and unified way. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7AI score
Exploits0
Cvelist
Cvelist
added 2010/08/11 6:0 p.m.27 views

CVE-2010-1258

Microsoft Internet Explorer 6, 7, and 8 does not properly determine the origin of script code, which allows remote attackers to execute script in an unintended domain or security zone, and obtain sensitive information, via unspecified vectors, aka "Event Handler Cross-Domain Vulnerability."...

6.8AI score0.16995EPSS
Exploits0References3
myhack58
myhack58
added 2010/07/28 12:0 a.m.19 views

Days of the edge of the school website system v1. 3 upload vulnerability-vulnerability warning-the black bar safety net

Open the admin directory, and found there a upload. asp, this file is submitted and the documents submitted for judgment, which has such a sentence if Uprequest. form"fileErr"0 then select case Uprequest. form"fileErr" But I saw a half day also did not see it this fileErr read what it is, and...

7AI score
Exploits0
NVD
NVD
added 2010/07/06 5:17 p.m.27 views

CVE-2010-2252

GNU Wget 1.12 and earlier uses a server-provided filename instead of the original URL to determine the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a 3xx redirect to a URL with a .wgetrc filename followed by a 3xx redirect to a URL wit...

6.8CVSS8.7AI score0.04214EPSS
Exploits0References18
OpenVAS
OpenVAS
added 2009/12/23 12:0 a.m.26 views

IBM Db2 db2pd Denial Of Service Vulnerability - Windows

IBM Db2 and is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2"; ifdescriptio...

5CVSS6.3AI score0.02352EPSS
Exploits0References4
Rows per page
Query Builder