Google's New Priority Inbox Hits a Snag

The buzz this morning isn’t Google’s Buzz, but its new Priority Inbox feature for the company’s Web based Gmail messaging service. The new feature allows heavy e-mail users to filter out and prioritize important messages. But the search giant has already hit a snag in releasing it to the public...

Видео и голосовой чат Gmail работают теперь и в Linux

Google сделал наконец так, что бы важные возможности Gmail - видео и голосовой чат - работали под Linux. Ubuntu и другие основанные на Debian дистрибутивы Linux могут работать с этим уже сейчас, поддержка RPM появиться в самом ближайшем времени. Для тестирования вы можете попробовать загрузить...

kernel: futex: Handle user space corruption gracefully

The wakefutexpi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly handle certain unlock operations for a Priority Inheritance PI futex, which allows local users to cause a denial of service OOPS and possibly have unspecified other impact via vectors involving...

Motorola SB5101 Hax0rware Rajko HTTPD Remote Exploit PoC

Exploit for hardware platform in category dos / poc ======================================================== Motorola SB5101 Hax0rware Rajko HTTPD Remote Exploit PoC ======================================================== !/usr/bin/perl Motorola SB5101 Hax0rware Rajko HttpD Remote Exploit PoC...

Microsoft to Patch Critical Windows, Office Flaws

Microsoft plans to ship two bulletins next Tuesday to fix multiple remote code execution vulnerabilities in Windows, Microsoft Office and Microsoft Visual Basic for Applications. Both bulletins are rated “critical,” Microsoft’s highest severity rating. The company describes a critical flaw as one...

Cert-Lexsi - Microsoft Windows Media Services MMS Buffer Overflow Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cert-Lexsi - Microsoft Windows Media Services MMS Buffer Overflow Vulnerability 13/04/2010 Priority: High Type: Remote Impact: Remote code execution CVE id: CVE-2010-0478 CVSSv2 Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C - ---------- 1. Software...

Feds Admit Not Doing Enough in ID Theft

An internal review has found that the Justice Department has not done enough to fight identity theft, the fastest-growing crime in the country. Justice Department Inspector General Glenn Fine says in a report that the department is falling short in efforts to combat identity theft, and that the...

kernel: futex: Handle user space corruption gracefully

The wakefutexpi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly handle certain unlock operations for a Priority Inheritance PI futex, which allows local users to cause a denial of service OOPS and possibly have unspecified other impact via vectors involving...

Eshbel Priority MarketGate module Cross Site Scripting Vulnerability

Exploit for unknown platform in category web applications ==================================================================== Eshbel Priority MarketGate module Cross Site Scripting Vulnerability ==================================================================== ===================== I...

Design/Logic Flaw

The wakefutexpi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly handle certain unlock operations for a Priority Inheritance PI futex, which allows local users to cause a denial of service OOPS and possibly have unspecified other impact via vectors involving...

Fedora Update for condor FEDORA-2010-0227

Check for the Version of condor OpenVAS Vulnerability Test Fedora Update for condor FEDORA-2010-0227 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

Microsoft Patches Critical IE, Windows Vulnerabilities

Microsoft today shipped six bulletins with patches for a total of 12 documented security vulnerabilities in a wide range of widely deployed software products. Three of the six bulletins are rated “critical,” Microsoft’s highest severity rating. The most serious issues affect the company’s Interne...

Abdicating on a Cyber Security Czar?

In May, President Obama completed his long-awaited “cyberspace policy review,” concluding that cyberspace is a strategic asset that must be safeguarded from attack as a national security priority. The president promised to appoint a permanent “cyber czar” who would coordinate the work of federal...

python security update

2.3.4-14.7.el48.2 - Fix all of the low priority security bugs: - Resolves: rhbz486329 - Multiple integer overflows in python core CVE-2008-2315 - Resolves: 455008 - PyStringFromStringAndSize does not check for negative size values CVE-2008-1887 - Resolves: 443810 - Multiple integer overflows...

python security update

2.2.3-6.11 - Fix all of the low priority security bugs: - Resolves: rhbz486114 - Multiple integer overflows in python core CVE-2008-2315 - Resolves: 455008 - PyStringFromStringAndSize does not check for negative size values CVE-2008-1887 - Resolves: 443810 - Multiple integer overflows discovered ...

CVE-2009-1886

Multiple format string vulnerabilities in client/client.c in smbclient in Samba 3.2.0 through 3.2.12 might allow context-dependent attackers to execute arbitrary code via format string specifiers in a filename...

Fedora 10 : python-fedora-0.3.9-1.fc10 (2009-1518)

This release includes a bugfix to the fedora.client.AccountSystem.verifypassword method. verifypassword was incorrectly returning True username, password combination was correct for any input. Although no known code is using this method to verify a user's account with the Fedora Account System, t...

Fedora Core 9 FEDORA-2009-1519 (python-fedora)

The remote host is missing an update to python-fedora announced via advisory FEDORA-2009-1519. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C...

CVE-2008-3326

Cross-site scripting XSS vulnerability in blog/edit.php in Moodle 1.6.x before 1.6.7 and 1.7.x before 1.7.5 allows remote attackers to inject arbitrary web script or HTML via the etitle parameter blog entry title...

serendipity -- multiple cross site scripting vulnerabilities

Hanno Boeck reports: The installer of serendipity 1.3 has various Cross Site Scripting issues. This is considered low priority, as attack scenarios are very unlikely. Various path fields are not escaped properly, thus filling them with javascript code will lead to XSS. MySQL error messages are no...