132 matches found
CVE-2015-7267
The CVE-2015-7267 entry applies to Samsung 850 Pro/PM851 SSDs and Seagate ST500LT015/ST500LT025 HDDs used in Lenovo ThinkPad T440s (BIOS 2.32) and W541 (BIOS 2.21), Dell Latitude E6410 (BIOS A16), and Latitude E6430 (BIOS A16). It describes a physical-access risk where, when the drives operate in...
CVE-2015-7268
The CVE-2015-7268 entry describes a hardware-level vulnerability affecting Samsung 850 Pro/PM851 SSDs and Seagate ST500LT015/ST500LT025 HDDs when used with Windows and specific Opal/eDrive configurations on certain Lenovo/Dell laptops. The issue allows physically proximate attackers to bypass sel...
[SECURITY] Fedora 26 Update: mupdf-1.10a-5.fc26
MuPDF is a lightweight PDF viewer and toolkit written in portable C. The renderer in MuPDF is tailored for high quality anti-aliased graphics. MuPDF renders text with metrics and spacing accurate to within fractions of a pixel for the highest fidelity in reproducing the look of a printed page on...
openSUSE Security Update : kopete (openSUSE-2017-19)
This update for kopete fixes the following issues : - fix encrypting OTR messages after closing and re-opening kopete boo1016982, kde362535 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
Accessing data on Self-Encrypting drives while a system is in sleep state
Lenovo Security Advisory: LEN-2910 Potential Impact: Physical access of encrypted data Severity: Informational Summary: At the BlackHat Europe 2015 conference, KPMG disclosed an industry-wide vulnerability affecting hard disk drives that employ hardware-based Full Disk Encryption FDE. These drive...
Accessing data on Self-Encrypting drives while a system is in sleep state - Lenovo Support US
No description provided...
Bypass of application specific PIN - ownCloud
The ownCloud Android application does support setting a PIN that has to be provided before the application can be opened. An attacker may remove the PIN by clearing the application data via the Android system settings. By doing that the application information would be removed while the...
[SECURITY] Fedora 23 Update: vtun-3.0.3-15.fc23
VTun provides a method for creating Virtual Tunnels over TCP/IP networks and allows one to shape, compress, and encrypt traffic in those tunnels. Supported types of tunnels are: PPP, IP, Ethernet and most other serial protocols and programs. VTun is easily and highly configurable: it can be used...
Microsoft IExpress DLL Hijacking
Hi @ll, IExpress creates executable installers ° or self-extracting archives for Windows by embedding a .CAB archive and some strings as resources into a copy of the program %SystemRoot%\System32\WExtract.exe. These self-extracting archives/executable installers, especially those made by Microsof...
Western data WD from the encrypted hard drive was traced to the presence of vulnerability-vulnerability warning-the black bar safety net
Researchers said, there are several versions of the encrypted Western Digital hard drive there are many vulnerabilities, the hack once you get to the physical contact of the opportunity, you can easily get inside the data, during which time you can disregard the hard disk password. Western Digita...
Western Digital Self-Encrypting Drives Vulnerable
Some consumer-grade, self-encrypting external hard drives are littered with security vulnerabilities that render their encryption an afterthought. An academic paper published in late September took apart a number of drives manufactured by Western Digital that suffer from flaws that are trivial to...
CVE-2015-4080
The Kankun Smart Socket device and mobile application uses a hardcoded AES 256 bit key, which makes it easier for remote attackers to 1 obtain sensitive information by sniffing the network and 2 obtain access to the device by encrypting messages...
krb5 security and bug fix update
1.6.1-78.el5 - gssapi: pull in upstream fix for a possible NULL dereference in spnego CVE-2014-4344, 1121509 1.6.1-77.el5 - fix what appears to be a cosmetic error in the patch for self-tests for CVE-2014-4341 1.6.1-76.el5 - run the backported self-tests, such as they are, for CVE-2014-4341...
CryptoWall Ransomware Earns $1.1M, Encrypts 5 Billion Files
CryptoWall is a million-dollar business. The file-encrypting ransomware has netted the criminal gang responsible for its development and dispersal, more than $1.1 million in the six months it’s been in the wild, researchers at Dell SecureWorks’ Counter Threat Unit said in a report this week. The...
Intel launches Hardware-based Self-Encrypting Solid State Drives
Data security is a big task for businesses as well as a challenge for IT leaders, whether it be securing networks or devices. Past few months, we often came across various data breaches, the largest among all was Target data breach, which cost a business nearly $50,000 in lost productivity,...
[SECURITY] Fedora 20 Update: gnupg-1.4.17-1.fc20
GnuPG GNU Privacy Guard is a GNU utility for encrypting data and creating digital signatures. GnuPG has advanced key management capabilities and is compliant with the proposed OpenPGP Internet standard described in RFC2440. Since GnuPG doesn't use any patented algorithm, it is not compatible with...
WordPress to Deploy SSL on All its Sites by End of 2014
The movement by technology companies to encrypt their respective corners of the Internet continues to gain steam as more and more are enabling SSL and other encryption technologies such as Perfect Forward Secrecy to ward off surveillance and enhance the privacy and security of user data. WordPres...
Fedora Update for gnupg FEDORA-2013-23615
Check for the Version of gnupg OpenVAS Vulnerability Test Fedora Update for gnupg FEDORA-2013-23615 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
CentOS Update for gnupg CESA-2013:1458 centos5
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 20 Update: gnupg-1.4.15-1.fc20
GnuPG GNU Privacy Guard is a GNU utility for encrypting data and creating digital signatures. GnuPG has advanced key management capabilities and is compliant with the proposed OpenPGP Internet standard described in RFC2440. Since GnuPG doesn't use any patented algorithm, it is not compatible with...