Week in Security: Scarily Tenacious Rootkits, Stuxnet's Secrets and Cisco Flaws

The news this week revolved around complex and troublesome threats, notably two rootkits, TDL4 and ZeroAccess. Stuxnet reared its head once again as did a new problem with Cisco’s popular videoconferencing software. Read on for the full week in review. In our most popular story of the week, we...

CVE-2010-0318

The replay functionality for ZFS Intent Log ZIL in FreeBSD 7.1, 7.2, and 8.0, when creating files during replay of a setattr transaction, uses 7777 permissions instead of the original permissions, which might allow local users to read or modify unauthorized files in opportunistic circumstances...

Design/Logic Flaw

The replay functionality for ZFS Intent Log ZIL in FreeBSD 7.1, 7.2, and 8.0, when creating files during replay of a setattr transaction, uses 7777 permissions instead of the original permissions, which might allow local users to read or modify unauthorized files in opportunistic circumstances...

CVE-2010-0318

The replay functionality for ZFS Intent Log ZIL in FreeBSD 7.1, 7.2, and 8.0, when creating files during replay of a setattr transaction, uses 7777 permissions instead of the original permissions, which might allow local users to read or modify unauthorized files in opportunistic circumstances...

FreeBSD Security Advisory (FreeBSD-SA-10:03.zfs.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-10:03.zfs.asc ADV FreeBSD-SA-10:03.zfs.asc OpenVAS Vulnerability Test $ Description: Auto generated from ADV FreeBSD-SA-10:03.zfs.asc Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...

FreeSchool 1.1.0 Remote File Inclusion

x FreeSchool = 1.1.0 Mutiple Remote File Include Vulnerability ! Download Script : http://sourceforge.net/projects/freeschool/files/ ! Author : cr4wl3r ! Contact : cr4wl3r4tlinuxmaildotorg ! Location : Gorontalo - INDONESIA ! Dork : "FuCk y0u MaLaYsia" x 3xplo!t :...

FreeIPS 1.0 Protected Service - Denial of Service

/ source: https://www.securityfocus.com/bid/10541/info It is reported that FreeIPS is susceptible to a denial of service vulnerability. FreeIPS scans TCP connections for particular strings, defined by regular expressions. If a packet matches the regular expression, FreeIPS assumes malicious inten...

AUREATE Software Detection

The remote host is using the AUREATE program. You should ensure that: - the user intended to install AUREATE it is sometimes silently installed - the use of AUREATE matches your corporate mandates and security policies. C Tenable Network Security, Inc. include"compat.inc"; if description...

LOP.COM Detection

The remote host is using the LOP.COM program. You should ensure that: - the user intended to install LOP.COM it is sometimes silently installed - the use of LOP.COM matches your corporate mandates and security policies. To remove this sort of software, install software such as Ad-Aware or Spybot....

SaveNOW Detection

The remote host is using the SaveNOW program. You should ensure that: - the user intended to install SaveNOW it is sometimes silently installed - the use of SaveNOW matches your corporate mandates and security policies. To remove this sort of software, you may wish to check out ad-aware or spybot...

IPINSIGHT Detection

The remote host is using the IPINSIGHT program. You should ensure that the user intended to install IPINSIGHT as it is sometimes silently installed. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid12015; scriptversion"1.16";...

TIMESINK Spyware Detection

The remote host is using the TIMESINK program. You should ensure that : - the user intended to install TIMESINK it is sometimes silently installed - the use of TIMESINK matches your corporate mandates and security policies. To remove this sort of software, you may wish to check out Ad-Aware or...

PHP PHPfi 2.0 - Directory Traversal

PHP PHPfi 2.0 - Directory Traversal source: https://www.securityfocus.com/bid/2250/info PHP/FI is an software suite designed to offer enhanced features to sites served via the World Wide Web. It is open source, freely available, and maintained by the PHP development team. A problem with the...

PHP PHP/fi 2.0 - Directory Traversal

source: https://www.securityfocus.com/bid/2250/info PHP/FI is an software suite designed to offer enhanced features to sites served via the World Wide Web. It is open source, freely available, and maintained by the PHP development team. A problem with the software could allow remote users access ...