Lucene search
K

985 matches found

The Hacker News
The Hacker News
added 2010/11/06 1:17 a.m.9 views

Earn Rewards for Finding Security Flaws in Gmail, YouTube, and More

Google is on the hunt for hackers to find security vulnerabilities in popular web applications like Gmail, Blogger, and YouTube. The tech giant is offering rewards starting at $500 per bug. For vulnerabilities that are "severe or unusually clever," the payout can reach up to $3,133.70...

7.1AI score
Exploits0
NVD
NVD
added 2010/10/13 7:0 p.m.27 views

CVE-2010-3238

Microsoft Excel 2002 SP3 and 2003 SP3, and Office 2004 for Mac, does not properly validate binary file-format information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Negative Future Function Vulnerability."...

9.3CVSS7.5AI score0.21413EPSS
Exploits0References3
rdot
rdot
added 2010/08/21 12:0 a.m.15 views

Глава Google поделился своим видением будущего

Эрик Шмидт, генеральный директор Google, дал интервью изданию Wall Street Journal. В нём он рассказал о том, каким образом компания зарабатывает, про неприбыльные проекты, а также про новые технологии и своё видение будущего. Пару лет назад фирма переживала "кризис среднего возраста" - в компании...

0.5AI score
Exploits0
ThreatPost
ThreatPost
added 2010/05/14 2:13 p.m.7 views

Chris Hoff: Cloud Computing

In this session from the SOURCE conference in Boston, Chris Hoff of Cisco Systems discusses the current state of cloud computing and what it can tell us about the future of cloud computing...

1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2010/02/16 4:20 p.m.3 views

mysql: Incomplete fix for CVE-2008-2079 / CVE-2008-4098

MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified 1 DATA DIRECTORY or 2 INDEX DIRECTORY arguments that are originally associated with pathnames without symlinks, and that can point to tables created at a future...

4.6CVSS6.7AI score0.02588EPSS
Exploits4References4
ThreatPost
ThreatPost
added 2009/12/29 4:40 p.m.6 views

Paul Roberts on the Decade in Security

Dennis Fisher talks with Paul Roberts of The 451 Group about the changes that the last decade has brought in computer security, the biggest story of the ’00s and what the Teens might hold. Podcast audio courtesy of sykboy65 Subscribe to the Digital Underground podcast on...

0.1AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2009/12/02 12:0 a.m.42 views

SSL Certificate Expiry - Future Validity

The SSL certificate for the remote SSL-enabled service is not yet valid. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid42980; scriptversion "$Revision: 1.8 $"; scriptcvsdate"$Date: 2012/04/02 16:34:10 $"; scriptnameenglish:"SSL Certificate Expiry - Future Validity";...

5.5AI score
Exploits0
ThreatPost
ThreatPost
added 2009/11/18 9:25 p.m.8 views

GAO Names Areas of Threat to U.S.

It’s not a very good day when a security report concludes: Disruptive cyber activities expected to become the norm in future political and military conflicts. But such was the case as the Government Accountability Office took yet another critical look at the US federal security systems and found...

1.1AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2009/09/02 8:0 a.m.3 views

mysql: privilege escalation via DATA/INDEX DIRECTORY directives

MySQL 4.1.x before 4.1.24, 5.0.x before 5.0.60, 5.1.x before 5.1.24, and 6.0.x before 6.0.5 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified 1 DATA DIRECTORY or 2 INDEX DIRECTORY arguments that are within the MySQL home data directory,...

4.6CVSS7.3AI score0.02588EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2009/09/02 8:0 a.m.6 views

OpenSSL: DTLS epoch record buffer memory DoS

The dtls1bufferrecord function in ssl/d1pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service memory consumption via a large series of "future epoch" DTLS records that are buffered in a queue, aka "DTLS record buffer limitation bug."...

5CVSS7.1AI score0.11274EPSS
Exploits1References4
ThreatPost
ThreatPost
added 2009/08/07 7:5 p.m.8 views

Disruptive Innovation and the Future of Security

In this video from the Source Boston 2008 conference, Rich Mogull of Securosis and Chris Hoff discuss the phenomenon of disruptive innovation and what it means for the future of security...

1.2AI score
Exploits0
OSV
OSV
added 2009/05/19 7:30 p.m.3 views

DEBIAN-CVE-2009-1377

The dtls1bufferrecord function in ssl/d1pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service memory consumption via a large series of "future epoch" DTLS records that are buffered in a queue, aka "DTLS record buffer limitation bug."...

5CVSS9.1AI score0.11274EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2009/05/18 12:0 a.m.42 views

openssl -- denial of service in DTLS implementation

Secunia reports: Some vulnerabilities have been reported in OpenSSL, which can be exploited by malicious people to cause a DoS. The library does not limit the number of buffered DTLS records with a future epoch. This can be exploited to exhaust all available memory via specially crafted DTLS...

7.5AI score
Exploits0References1
ThreatPost
ThreatPost
added 2009/03/27 3:19 p.m.13 views

Dan Geer: Risk management should change the future

By Joan Goodchild, CSO “The dean of the security deep thinkers,” “security luminary, ” and “risk-management pioneer” are all phrases that have been used to describe Dan Geer. Considered one of the foremost leaders in information security, his resume includes time as president and chief scientist ...

0.5AI score
Exploits0References3
Packet Storm
Packet Storm
added 2009/01/20 12:0 a.m.32 views

Copyright 2008 Future US Cross Site Scripting

NULL CODE SERVICES www.nullcode.com.ar Hunting Security Bugs! +===================================================================================================================+ + Copyright 2008 - Copyright 2008 Future US //Cross-site scripting XSS Remote Java Execution +...

0.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2008/07/24 5:9 p.m.4 views

mysql: privilege escalation via DATA/INDEX DIRECTORY directives

MySQL 4.1.x before 4.1.24, 5.0.x before 5.0.60, 5.1.x before 5.1.24, and 6.0.x before 6.0.5 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified 1 DATA DIRECTORY or 2 INDEX DIRECTORY arguments that are within the MySQL home data directory,...

4.6CVSS7.4AI score0.02588EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2008/07/02 1:15 p.m.8 views

mysql: privilege escalation via DATA/INDEX DIRECTORY directives

MySQL 4.1.x before 4.1.24, 5.0.x before 5.0.60, 5.1.x before 5.1.24, and 6.0.x before 6.0.5 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified 1 DATA DIRECTORY or 2 INDEX DIRECTORY arguments that are within the MySQL home data directory,...

4.6CVSS7.4AI score0.02588EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2008/01/04 12:0 a.m.42 views

Debian DSA-1444-2 : php5 - several vulnerabilities

It was discovered that the patch for CVE-2007-4659 could lead to regressions in some scenarios. The fix has been reverted for now, a revised update will be provided in a future PHP DSA. For reference the original advisory below : Several remote vulnerabilities have been discovered in PHP, a...

7.5CVSS5.9AI score0.07919EPSS
Exploits0References22
NVD
NVD
added 2006/12/28 12:28 a.m.12 views

CVE-2006-6777

Cross-site scripting XSS vulnerability in index.cfm in Future Internet allows remote attackers to inject arbitrary web script or HTML via the categoryId parameter in a Portal.ShowPage action...

6.8CVSS5.7AI score0.01692EPSS
Exploits1References3
NVD
NVD
added 2006/12/28 12:28 a.m.14 views

CVE-2006-6776

Multiple SQL injection vulnerabilities in Future Internet allow remote attackers to execute arbitrary SQL commands via the 1 newsId or 2 categoryid parameter in a Portal.Showpage action in index.cfm, or 3 the langId parameter in index.cfm...

7.5CVSS8.5AI score0.00983EPSS
Exploits1References3
Rows per page
Query Builder