116 matches found
The NSA Hack — What, When, Where, How, Who & Why?
You might have heard about the recent ongoing drama of NSA hack that has sparked a larger debate on the Internet concerning abilities of US intelligence agencies as well as their own security. Saturday morning the news broke that a mysterious group of hackers calling themselves "The Shadow Broker...
Security Advisory - Information Leak Vulnerability in Some Huawei Servers
Some Huawei servers have an information leak vulnerability. The servers allow users to select security encryption algorithms. If an insecure encryption algorithm is selected, an attacker may decrypt ciphertext data, causing information leaks. Vulnerability ID: HWPSIRT-2016-07019 This vulnerabilit...
Allfresco Community Edition: source code security analysis report
Several vulnerabilities were discovered in Alfresco Software 'Allfresco Community Edition' software: Утечка пользовательских данных между сессиями Использование XSL трансформации для исполнения произвольного кода Использование метода finalize Отсутствие верификации цифровой подписи исполняемых...
Addressing False Positives from CBC and MAC Vulnerability Scans of NetScaler SSHD
BUG0217580 addressed an SSH vulnerability CVE-2008-5161 involving CBC algorithms used in SSH connections CBC Mode Plaintext Recovery Vulnerability. The bug was reported when NetScaler 10.0 was still the newest version as NetScaler shipped with an affected version of OpenSSH. The NetScaler bug fix...
My Government Doesn't Understand How Encryption and Cyber Security Work
Almost every day or every second day, When I come across various announcements in Newspaper, TV News Channels, and Press releases that... ...Indian Government and related Policy-making organizations are going to set up their so-called "CyberSecurity Task Forces" or drafted a "National Cyber...
Red October Attackers Return With CloudAtlas APT Campaign
The attackers behind the Red October APT campaign that was exposed nearly two years ago have resurfaced with a new campaign that is targeting some of the same victims and using similarly constructed tools and spear phishing emails. Red October emerged in January 2013 and researchers found that th...
OracleAS TopLink Mapping Workbench Weak Encryption Algorithm Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9515/info OracleAS TopLink Mapping Workbench is a tool included with OracleAS TopLink, a Java-based database integration development framework that is included as a component of various Oracle Application Server releases...
Junos Pulse Secure Access IVE / UAC OS Weak Cipher Information Disclosure (JSA10628)
According to its self-reported version, the version of IVE / UAC OS running on the remote host is affected by an information disclosure vulnerability due to an issue where cipher suites with weak encryption algorithms are used even when cipher suites with strong encryption algorithms are enabled....
USN-2124-2: OpenJDK 6 regression
USN-2124-1 fixed vulnerabilities in OpenJDK 6. Due to an upstream regression, memory was not properly zeroed under certain circumstances which could lead to instability. This update fixes the problem. We apologize for the inconvenience. Original advisory details: A vulnerability was discovered in...
[Advanced Encryption Package 2014] Strong encryption algorithms to protect your confidential documents
Strong and proven encryption algorithms to protect your confidential documents To secure sensitive data AEP PRO file encryption software uses 20 proven and strong encryption algorithms including AES, Blowfish, Twofish, GOST, Serpent and others. Easy to use for novices. Integration with Windows...
Privacy Advocates Anxious Ahead of Obama NSA Speech
It’s been more than seven months since Edward Snowden began feeding stolen NSA documents to reporters, and in that time, virtually everyone in Washington who could find a microphone or keyboard has voiced an opinion on the agency’s methods and Snowden’s actions. Everyone except President Barack...
[SECURITY] Fedora 20 Update: python-crypto-2.6.1-1.fc20
PyCrypto is a collection of both secure hash functions such as MD5 and SHA, and various encryption algorithms AES, DES, RSA, ElGamal, etc...
Fedora Update for python-crypto FEDORA-2013-19472
Check for the Version of python-crypto OpenVAS Vulnerability Test Fedora Update for python-crypto FEDORA-2013-19472 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
Fedora Update for python-crypto FEDORA-2013-19441
Check for the Version of python-crypto OpenVAS Vulnerability Test Fedora Update for python-crypto FEDORA-2013-19441 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
[SECURITY] Fedora 18 Update: python-crypto-2.6.1-1.fc18
PyCrypto is a collection of both secure hash functions such as MD5 and SHA, and various encryption algorithms AES, DES, RSA, ElGamal, etc...
[SECURITY] Fedora 19 Update: python-crypto-2.6.1-1.fc19
PyCrypto is a collection of both secure hash functions such as MD5 and SHA, and various encryption algorithms AES, DES, RSA, ElGamal, etc...
Information disclosure
The SSL implementation in IBM Security AppScan Enterprise before 8.7.0.1 enables cipher suites with weak encryption algorithms, which makes it easier for remote attackers to obtain sensitive information by sniffing the network...
KLA10208 OSI vulnerability in IBM Security AppScan
Weak encryption algorithms were found in IBM Security AppScan. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely at a point related to SSL. Original advisories - Related products...
Important: Red Hat Security Advisory: JBoss Enterprise Application Platform 5.2.0 security update
Updated packages for JBoss Enterprise Application Platform 5.2.0 which fix one security issue are now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base...
Fedora Update for python-crypto FEDORA-2012-8392
Check for the Version of python-crypto OpenVAS Vulnerability Test Fedora Update for python-crypto FEDORA-2012-8392 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...