125 matches found
Jon Callas on PGP, Crypto History and Cloud Security
Dennis Fisher talks with Jon Callas, CTO of PGP, about the history of cryptography, the evolution of PGP itself and the future of cloud security. Download Subscribe to the Digital Underground podcast on Podcast audio courtesy of sykboy65...
OpenSSL < 0.9.8i - DTLS ChangeCipherSpec Remote Denial of Service
/ cve-2009-1386.c OpenSSL http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1386 OpenSSL would SegFault if the DTLS server receives a ChangeCipherSpec as the first record instead of ClientHello. Usage: Pass the host and port of the target DTLS server: $...
honeyd security advisory: remote detection
Honeyd Security Advisory 2006-001 ================================= Topic: Remote Detection Via Multiple Probe Packets Version: All versions prior to Honeyd 1.5 Severity: Identification of Honeyd installations allows an adversary to launch attacks specifically against Honeyd. No remote root explo...
[Full-disclosure] 3 XSS Vulnerabilities in Phorum <= 5.0.14
Author: Jon Oberheide [email protected] Date: Sat, March 12th, 2005 Summary ======= Application: Phorum Vendor Website: http://www.phorum.org Affected Versions: = 5.0.14 Type of Vulnerability: Cross Site Scripting XSS About Phorum ============ Phorum is a web based message board written in PHP...
CVE-2002-0934
CVE-2002-0934 affects Jon Hedley’s AlienForm2 CGI scripts (typically af.cgi or alienform.cgi). The vulnerability is a directory traversal flaw that lets remote attackers read or modify arbitrary files by injecting an illegal character into a .. sequence in the parameters _browser_out or _out_file...