34 matches found
PT-2022-25527
Name of the Vulnerable Software and Affected Versions profanity versions 1.60 and earlier Description The issue allows attackers to recover private keys from Ethereum vanity addresses and steal cryptocurrency due to only four billion possible RNG initializations. This has been exploited in the...
pgpbuilder (>=0.3.6 <=0.6.0), pgpmailer (>=0.3.8 <=0.9.1) +5 more potentially affected by CVE-2015-8013 via openpgp (>=0.11.1 <=0.8.2)
openpgp NPM version =0.11.1, =0.3.6, =0.3.8, =0.0.1, =0.1.0, =0.5.6, =0.15.0, =0.24.1 Source cves: CVE-2015-8013 Source advisory: OSV:GHSA-QMVQ-F3FJ-M3WG...
We know what your kids did this summer
For many kids and teenagers, summer is all about ditching school books in favor of hobbies and fun. Every year we release a report on children's interests, as reflected in their online activity. This summer, we investigated what they prefer in their free time. The Parental Control module in...
openSUSE Security Update : profanity (openSUSE-2017-285)
This update for profanity fixes the following issues : Changes in profanity : - CVE-2017-5592: The incorrect message carbons implementation that could allow user impersonification was fixed boo1024696 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...
Profanity XMPP Client User Emulation Vulnerability
XMPP is Extensible Messaging and Presence Protocol, a set of open technologies for instant messaging, multi-party chat, voice and video calls. A user emulation vulnerability exists in Profanity XMPP Client. An attacker can exploit this vulnerability to emulate any user, leading to further attacks...
XMPP Clients User Impersonation Vulnerability
Exploit for multiple platform in category local exploits Multiple XMPP Clients User Impersonation Vulnerability Summary ------- An incorrect implementation of XEP-0280: Message Carbons0 in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerabl...
Design/Logic Flaw
An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks. This CVE is for profanity 0.4.7 - 0.5.0...
CVE-2017-5592
An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks. This CVE is for profanity 0.4.7 - 0.5.0...
DEBIAN-CVE-2017-5592
An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks. This CVE is for profanity 0.4.7 - 0.5.0...
UBUNTU-CVE-2017-5592
An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks. This CVE is for profanity 0.4.7 - 0.5.0...
CVE-2017-5592
Technical details for CVE-2017-5592 are not publicly available in the provided documents. Monitor for updates from Vulners/EUVD sources.
CVE-2017-5592
An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks. This CVE is for profanity 0.4.7 - 0.5.0...
Script that gives hackers access to user accounts floods Facebook !
A widespread hack spread across Facebook early Thursday morning and shows no signs of abating as of yet. It comes in the form of a script that posts heavily profanity-laden wall posts continuously, instructing you that the only way to remove the posts is to click a 'Remove This App' link...
Website collecting donations for Japan hacked !
Hackers took down the website of a Tennessee nonprofit that was collecting donations for Japan and replaced the home page with profanity. Japan-America Society of Tennessee executive director Leigh Weiland said hackers broke into the site sometime Wednesday night. The group's web-hosting company...