694 matches found
Five ways to survive a data breach investigation
From CSO Bill Brenner When the digital forensics crew comes in to investigate a possible data breach, company executives often make matters worse by not being prepared. To help companies deal with this issue, CSOonline talks to the experts csoonline.com and offers these five steps that can be tak...
DFLabs PTK 1.0 - Local Command Execution
DFLabs PTK 1.0 - Local Command Execution ==================================================== Security Research Advisory Vulnerability name: DFLabs PTK Local Command Execution Vulnerability Advisory number: LC-2008-07 Advisory URL: http://www.ikkisoft.com...
DFLabs PTK 1.0 - Local Command Execution
==================================================== Security Research Advisory Vulnerability name: DFLabs PTK Local Command Execution Vulnerability Advisory number: LC-2008-07 Advisory URL: http://www.ikkisoft.com ==================================================== 1 Affected Software DFLabs PT...
Debian Security Advisory DSA 403-1 (kernel-image-2.4.18-1-alpha, kernel-image-2.4.18-1-i386, kernel-source-2.4.18)
The remote host is missing an update to kernel-image-2.4.18-1-alpha, kernel-image-2.4.18-1-i386, kernel-source-2.4.18 announced via advisory DSA 403-1. OpenVAS Vulnerability Test $Id: deb4031.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 403-1 Authors:...
CVE-2007-6505
Solaris 9, with Solaris Auditing enabled and certain patches for sshd installed, can generate audit records with an audit-ID of 0 even when the user logging into ssh is not root, which makes it easier for attackers to avoid detection and can make it more difficult to conduct forensics activities...
Design/Logic Flaw
Solaris 9, with Solaris Auditing enabled and certain patches for sshd installed, can generate audit records with an audit-ID of 0 even when the user logging into ssh is not root, which makes it easier for attackers to avoid detection and can make it more difficult to conduct forensics activities...
CVE-2007-6505
Solaris 9, with Solaris Auditing enabled and certain patches for sshd installed, can generate audit records with an audit-ID of 0 even when the user logging into ssh is not root, which makes it easier for attackers to avoid detection and can make it more difficult to conduct forensics activities...
CVE-2007-6505
Solaris 9, with Solaris Auditing enabled and certain patches for sshd installed, can generate audit records with an audit-ID of 0 even when the user logging into ssh is not root, which makes it easier for attackers to avoid detection and can make it more difficult to conduct forensics activities...
CVE-2007-6505
Technical details are not publicly available in the provided documents. The initial CVE description notes an audit-ID 0 issue on Solaris 9 with certain sshd patches; monitor for updates.
Crlf injection
CRLF injection vulnerability in the Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to spoof the information in the Image File Header tab via strings with CRLF sequences in the IMAGEEXPORTDIRECTORY array in a PE file, which could complicate forensics investigations...
CVE-2007-4464
CRLF injection vulnerability in the Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to spoof the information in the Image File Header tab via strings with CRLF sequences in the IMAGEEXPORTDIRECTORY array in a PE file, which could complicate forensics investigations...
CVE-2007-4464
CRLF injection vulnerability in the Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to spoof the information in the Image File Header tab via strings with CRLF sequences in the IMAGEEXPORTDIRECTORY array in a PE file, which could complicate forensics investigations...
CVE-2007-4464
The CVE-2007-4464 entry describes a CRLF injection vulnerability in the Fileinfo 2.0.9 plugin for Total Commander. The issue affects the plugin’s handling of PE exports: an attacker could inject CRLF sequences into the IMAGE_EXPORT_DIRECTORY data, enabling spoofing of information shown in the Ima...
AFFLIB(TM): Multiple Buffer Overflows
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Virtual Security Research, LLC. http://www.vsecurity.com/ Security Advisory - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Advisory Name: Multiple Buffer Overflows Discovered in AFFLIB Release Date: 2007-04-27...