[SECURITY] Fedora 24 Update: python-2.7.11-8.fc24

Python is an interpreted, interactive, object-oriented programming language often compared to Tcl, Perl, Scheme or Java. Python includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as t...

[SECURITY] Fedora 22 Update: python-2.7.10-10.fc22

Python is an interpreted, interactive, object-oriented programming language often compared to Tcl, Perl, Scheme or Java. Python includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as t...

WECON LeviStudio Stack Buffer Overflow Vulnerability

WECON LeviStudio is HMI programming software. WECON LeviStudio handles a stack buffer overflow vulnerability in certain files that could allow an attacker to cause a stack buffer overflow and execute arbitrary code in the context of the current process...

Eaton ELCSoft Programming Software Heap Buffer Overflow Vulnerability

Eaton ELCSoft Programming Software is a suite of software for configuring programmable logic controllers from Eaton Corporation, USA. A heap buffer overflow vulnerability exists in Eaton ELCSoft Programming Software version 2.4.01 and earlier. A remote attacker could exploit this vulnerability to...

RHEL 7 : ocaml (RHSA-2016:1296)

An update for ocaml is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

Patched libarchive Vulnerabilities Have Big Reach

The libarchive programming library was recently patched against three critical memory-related vulnerabilities that could be abused to execute code on computers running the vulnerable software. As is the case with most open source software packages, patching the core library is only half the battl...

[SECURITY] Fedora 23 Update: python-2.7.11-4.fc23

Python is an interpreted, interactive, object-oriented programming language often compared to Tcl, Perl, Scheme or Java. Python includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as t...

Parrot OS 3.0 (Lithium) - Friendly OS designed for Pentesting, Computer Forensic, Hacking, Cloud pentesting, Privacy/Anonimity and Cryptography

Parrot Security OS is a cloud friendly operating system designed for Pentesting, Computer Forensic, Reverse engineering, Hacking, Cloud pentesting, privacy/anonimity and cryptography. Based on Debian and developed by Frozenbox network. Who can use it Parrot is designed for everyone, from the Pro...

Angler Exploit Kit Evading EMET

We recently encountered some exploits from Angler Exploit Kit EK that are completely evading Microsoft’s Enhanced Mitigation Experience Toolkit EMET. This is something we are seeing for the first time in the wild, and we only observed it affecting systems running Windows 7. Angler EK uses complex...

Perl 5.22 Buffer Overflow Vulnerability

Binary data 802000.prm...

Google Wins Epic Java Copyright Case Against Oracle

Google has finally won six-year long $9-billion legal battle with Oracle over the use of Java APIs in Android. Oracle filed its lawsuit against Google in 2010, claiming that the company illegally used 11,500 lines of Java code in its Android operating system, violating copyrights owned by Oracle...

NTT Broadband Platform Japan Connected-free Wi-Fi for Android and iOS Arbitrary API Execution Vulnerability

NTT Broadband Platform Japan Connected-free Wi-Fi for Android and iOS is a suite of Android and iOS-based applications from NTT Broadband Platform Japan for finding and automatically connecting to nearby free Wi-Fi in Japan. It is a set of Android and iOS based applications for NTT Broadband...

Linux/x86 - Bind Shell Port 4444/TCP Shellcode (656 bytes)

// Title: Linux X86 Bind TCP:4444 656 bytes // Author: Brandon Dennis // Contact: email protected // Date: 5/24/2016 // ASM Source: https://github.com/slyth11907/x86-ASM-Linux-Intel/blob/master/Code-Examples/ShellCode/execve-stack-bind.asm / ; Filename: execve-stack-bind.asm ; Author: Brandon...

CVE-2016-3959

The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a denial of service infinite loop via a crafted public key to a program that uses HTTPS client...

Design/Logic Flaw

The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a denial of service infinite loop via a crafted public key to a program that uses HTTPS client...

Red Hat Satellite SQL Injection Vulnerability

Red Hat Satellite is a suite of system management platforms from Red Hat, Inc. that can be used to extend Linux infrastructures and provide system management functions such as administration, configuration, and monitoring. A security vulnerability exists in the 'sortby' and 'sortorder' parameters...

[SECURITY] Fedora 23 Update: libarchive-3.1.2-15.fc23

Libarchive is a programming library that can create and read several differ ent streaming archive formats, including most popular tar variants, several cpio formats, and both BSD and GNU ar variants. It can also write shar archives and read ISO9660 CDROM images and ZIP archives...

CloudBees Jenkins CI and Jenkins LTS Information Disclosure Vulnerability

CloudBees Jenkins CI formerly known as Hudson Labs is a Java-based continuous integration tool from CloudBees, Inc. It is mainly used to monitor ongoing software releases/testing projects and a number of timed tasks.LTS Long-Term Support is a long-supported version of CloudBees Jenkins CI is a...

[SECURITY] Fedora 22 Update: perl-5.20.3-330.fc22

Perl is a high-level programming language with roots in C, sed, awk and she ll scripting. Perl is good at handling processes and files, and is especially good at handling text. Perl's hallmarks are practicality and efficiency. While it is used to do a lot of different things, Perl's most common...

Safety warning: the ImageMagick image processing software there is a remote code execution(CVE-2 0 1 6-3 7 1 4)-vulnerability warning-the black bar safety net

ImageMagick is a popular image processing software, there are numerous Web sites use it for image processing, but in the present on Tuesday, ImageMagick disclose a serious 0day vulnerability, and this vulnerability allows an attacker to upload a malicious configuration of the image file on the...