Lucene search
K

2590 matches found

Kitploit
Kitploit
added 2015/11/03 9:52 p.m.28 views

Security Onion - Linux Distro For Intrusion Detection, Network Security Monitoring, And Log Management

Security Onion is a Linux distro for intrusion detection, network security monitoring, and log management. It's based on Ubuntu and contains Snort, Suricata, Bro, OSSEC, Sguil, Squert, ELSA, Xplico, NetworkMiner, and many other security tools. The easy-to-use Setup wizard allows you to build an...

7.4AI score
Exploits0
Fedora
Fedora
added 2015/11/02 6:55 p.m.15 views

[SECURITY] Fedora 23 Update: git-2.5.0-2.fc23

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The git rpm installs common set of tools which are usually using with small amount of dependencies. To install all git packages,...

2.4AI score
Exploits0
ArchLinux
ArchLinux
added 2015/10/23 12:0 a.m.68 views

jre7-openjdk: multiple issues

CVE-2015-4734 information disclosure It was discovered that the JGSS component of OpenJDK did not properly hide Kerberos realm information from all error exceptions when running under Security Manager. An untrusted Java application or applet could use this flaw to obtain certain information about...

10CVSS1.5AI score0.13354EPSS
Exploits0References22
ArchLinux
ArchLinux
added 2015/10/23 12:0 a.m.69 views

jre8-openjdk-headless: multiple issues

CVE-2015-4734 information disclosure It was discovered that the JGSS component of OpenJDK did not properly hide Kerberos realm information from all error exceptions when running under Security Manager. An untrusted Java application or applet could use this flaw to obtain certain information about...

10CVSS2.6AI score0.13354EPSS
Exploits0References25
RedHat Linux
RedHat Linux
added 2015/10/22 6:34 p.m.6 views

OpenJDK: incorrect access control context used in DGCImpl (RMI, 8080688)

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI, a different vulnerability than CVE-2015-4883...

10CVSS7.3AI score0.06284EPSS
Exploits0References5
ThreatPost
ThreatPost
added 2015/10/22 2:21 p.m.13 views

Novel NTP Attacks Roll Back Time

Sharon Goldberg remembers the cold February day when her Boston University PhD candidate Aanchal Malhotra was studying routing security, in particular, attacks against the resource public key infrastructure RPKI—and kept hitting a dead end because of a cache-flushing issue. The resourceful Malhot...

0.2AI score
Exploits0References6
RedHat Linux
RedHat Linux
added 2015/10/21 9:7 p.m.2 views

OpenJDK: incorrect access control context used in DGCImpl (RMI, 8080688)

Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI, a different vulnerability than CVE-2015-4883...

10CVSS7.3AI score0.06284EPSS
Exploits0References5
Fedora
Fedora
added 2015/10/15 3:51 a.m.38 views

[SECURITY] Fedora 22 Update: fossil-1.33-1.fc22

Fossil is a simple, high-reliability, distributed software configuration management with distributed bug tracking, distributed wiki and built-in web interface...

4.3CVSS2.7AI score0.99999EPSS
Exploits7
Fedora
Fedora
added 2015/10/01 6:59 p.m.64 views

[SECURITY] Fedora 22 Update: jakarta-commons-httpclient-3.1-23.fc22

The Hyper-Text Transfer Protocol HTTP is perhaps the most significant protocol used on the Internet today. Web services, network-enabled appliances and the growth of network computing continue to expand the role of the HTTP protocol beyond user-driven web browsers, and increase the number of...

4.3CVSS1AI score0.19312EPSS
Exploits0
Fedora
Fedora
added 2015/10/01 4:55 p.m.37 views

[SECURITY] Fedora 23 Update: jakarta-commons-httpclient-3.1-23.fc23

The Hyper-Text Transfer Protocol HTTP is perhaps the most significant protocol used on the Internet today. Web services, network-enabled appliances and the growth of network computing continue to expand the role of the HTTP protocol beyond user-driven web browsers, and increase the number of...

4.3CVSS1AI score0.19312EPSS
Exploits0
GoogleProjectZero
GoogleProjectZero
added 2015/09/28 12:0 a.m.46 views

Revisiting Apple IPC: (1) Distributed Objects

Posted by Ian Beer of Google Project Zero Earlier this year I gave a talk at the inaugural Jailbreak Security Summit entitled Auditing and Exploiting Apple IPC slides | video . As part of my research for that talk I wanted to find at least one bug involving each of the available IPC mechanisms on...

9.3CVSS9.5AI score0.09027EPSS
Exploits2
CNVD
CNVD
added 2015/09/27 12:0 a.m.3 views

IBM WebSphere eXtreme Scale Security Bypass Vulnerability

IBM WebSphere eXtreme Scale is a distributed caching solution. IBM WebSphere Extreme Scale failed to properly handle logout operations, allowing an attacker to exploit a vulnerability to bypass security restrictions on other user sessions...

2.1CVSS6.8AI score0.00497EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2015/09/21 6:55 a.m.10 views

'Bitcoin is Now Officially a Commodity' — US Regulator Declared

Bitcoins are making their way, in Bits and Pieces. In a recent report The Hacker News THN had mentioned about banks adopting the Blockchain Technology from Bitcoins; to create a safe and secure distributed ledger. Now, last week U.S. Commodity Future Trading Commission CFTC, has added Bitcoins an...

6.8AI score
Exploits0
0day.today
0day.today
added 2015/09/11 12:0 a.m.34 views

OS X Install.framework suid Helper Privilege Escalation Vulnerability

Exploit for macOS platform in category local exploits Source: https://code.google.com/p/google-security-research/issues/detail?id=314 The private Install.framework has a few helper executables in /System/Library/PrivateFrameworks/Install.framework/Resources, one of which is suid root: -rwsr-sr-x ...

9.3CVSS5.3AI score0.09301EPSS
Exploits1
0day.today
0day.today
added 2015/09/11 12:0 a.m.47 views

OS X Install.framework suid root Runner Binary Privilege Escalation Vulnerability

Exploit for macOS platform in category local exploits Source: https://code.google.com/p/google-security-research/issues/detail?id=478 The Install.framework runner suid root binary does not correctly account for the fact that Distributed Objects can be connected to by multiple clients at the same...

9.3CVSS8.9AI score0.07421EPSS
Exploits1
Exploit DB
Exploit DB
added 2015/09/10 12:0 a.m.26 views

Apple Mac OSX - Install.framework suid Helper Privilege Escalation

Source: https://code.google.com/p/google-security-research/issues/detail?id=314 The private Install.framework has a few helper executables in /System/Library/PrivateFrameworks/Install.framework/Resources, one of which is suid root: -rwsr-sr-x 1 root wheel 113K Oct 1 2014 runner Taking a look at i...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2015/09/10 12:0 a.m.38 views

Apple Mac OSX Install.Framework - SUID Root Runner Binary Privilege Escalation

Source: https://code.google.com/p/google-security-research/issues/detail?id=478 The Install.framework runner suid root binary does not correctly account for the fact that Distributed Objects can be connected to by multiple clients at the same time. By connecting two proxy objects to an...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2015/08/24 12:0 a.m.68 views

[USN-2704-1] Swift vulnerabilities

========================================================================== Ubuntu Security Notice USN-2704-1 August 06, 2015 swift vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

5.5CVSS0.5AI score0.03949EPSS
Exploits0
Fedora
Fedora
added 2015/08/11 2:11 a.m.19 views

[SECURITY] Fedora 22 Update: elasticsearch-1.6.1-0.fc22

Elasticsearch is a search server based on Lucene. It provides a distributed, multitenant-capable full-text search engine with a RESTful web interface and schema-free JSON documents. Elasticsearch is developed in Java and is relea sed as open source under the terms of the Apache License. It is a...

0.4AI score
Exploits0
Fedora
Fedora
added 2015/08/04 5:25 a.m.28 views

[SECURITY] Fedora 21 Update: quassel-0.11.0-2.fc21

Quassel IRC is a modern, distributed IRC client, meaning that one or multiple clients can attach to and detach from a central core -- much like the popular combination of screen and a text-based IRC client such as WeeChat, but graphical...

5CVSS2.2AI score0.02795EPSS
Exploits0
Rows per page
Query Builder