Lucene search
K

4752 matches found

ThreatPost
ThreatPost
added 2013/09/16 12:5 p.m.10 views

UK Cryptographers Call For Publication of Deliberately Weakened Protocols, Products

A group of cryptographers in the UK has published a letter that calls on authorities in that country and the United States to conduct an investigation to determine which security products, protocols and standards have been deliberately weakened by the countries’ intelligence services. The letter,...

0.1AI score
Exploits0References3
OpenVAS
OpenVAS
added 2013/09/13 12:0 a.m.36 views

Debian Security Advisory DSA 2756-1 (wireshark - several vulnerabilities)

Multiple vulnerabilities were discovered in the dissectors for LDAP, RTPS and NBAP and in the Netmon file parser, which could result in denial of service or the execution of arbitrary code. OpenVAS Vulnerability Test $Id: deb2756.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from...

5CVSS0.1AI score0.0284EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2013/09/10 2:42 p.m.10 views

IETF Discussing Ways to Protect Internet Against Pervasive Surveillance

The IETF is considering a range of options to help reengineer some of the fundamental protocols that underpin the Internet in response to revelations that the NSA and other intelligence agencies are conducting widespread, dragnet-style surveillance online. The group, which is responsible for...

0.1AI score
Exploits0References4
ThreatPost
ThreatPost
added 2013/09/09 10:3 a.m.8 views

Questions About Crypto Security Follow Latest NSA Revelations

As security experts and cryptographers continue to debate and discuss the implications of the revelations of the NSA’s capabilities against various encryption protocols and systems, some of the larger Internet companies are taking steps to protect their users’ data against the new threat. Google,...

0.5AI score
Exploits0References4
Kitploit
Kitploit
added 2013/08/23 2:58 a.m.24 views

[Yersinia v0.7.3] The network protocols assessment tool

Yersinia is a network tool designed to take advantage of some weakeness in different network protocols. It pretends to be a solid framework for analyzing and testing the deployed networks and systems. Currently, there are some network protocols implemented, but others are coming tell us which one...

7.3AI score
Exploits0References1
OpenVAS
OpenVAS
added 2013/08/23 12:0 a.m.29 views

Fedora Update for strongswan FEDORA-2013-14510

Check for the Version of strongswan OpenVAS Vulnerability Test Fedora Update for strongswan FEDORA-2013-14510 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

4.9CVSS9.5AI score0.02985EPSS
Exploits1References2
0day.today
0day.today
added 2013/08/20 12:0 a.m.20 views

VLC Player 2.0.8 (.m3u) - Local Crash PoC

VLC Player is prone to a remote denial-of-service vulnerability. Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed exploit attempts may result in a denial-of-service condition. VLC Player 2.0.8 is vulnerable; other versions may also be affected...

7.8AI score
Exploits0
Exploit DB
Exploit DB
added 2013/08/19 12:0 a.m.22 views

VideoLAN VLC Media Player 2.0.8 - '.m3u' Local Crash (PoC)

Exploit Title: VLC Player 2.0.8 ", "inj3ct0rs.m3u"; print fi...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/07/31 12:0 a.m.31 views

Oracle Linux 5 : bind97 (ELSA-2013-1115)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-1115 advisory. 32:9.7.0-17.P2.2 - fix for CVE-2013-4854 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessu...

7.8CVSS6.6AI score0.3415EPSS
Exploits1References2
FreeBSD Advisory
FreeBSD Advisory
added 2013/07/26 12:0 a.m.16 views

FreeBSD-SA-13:07.bind

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-13:07.bind Security Advisory The FreeBSD Project Topic: BIND remote denial of service Category: contrib Module: bind Announced: 2013-07-26 Credits: Maxim Shudrak...

7.8CVSS6.9AI score0.3415EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.25 views

Oracle Linux 3 : imap (ELSA-2009-0275)

From Red Hat Security Advisory 2009:0275 : Updated imap packages to fix a security issue are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The imap package provides server daemons for both the IMA...

10CVSS6.1AI score0.06355EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.24 views

Oracle Linux 4 : bind (ELSA-2009-1180)

"From Red Hat Security Advisory 2009:1180 : Updated bind packages that fix a security issue and a bug are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The Berkeley Internet Name Domain BIND is a...

4.3CVSS6AI score0.12649EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.28 views

Oracle Linux 4 : gnutls (ELSA-2008-0492)

From Red Hat Security Advisory 2008:0492 : Updated gnutls packages that fix several security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The GnuTLS Library provides support for...

10CVSS7.5AI score0.12018EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.29 views

Oracle Linux 5 : bind97 (ELSA-2012-0717)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-0717 advisory. 32:9.7.0-10.P2.1 - fix CVE-2012-1667 and CVE-2012-1033 Tenable has extracted the preceding description block directly from the Oracle Linux security...

8.5CVSS7AI score0.13538EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2013/06/29 12:0 a.m.26 views

CentOS 5 : bind97 (CESA-2011:0845)

"Updated bind and bind97 packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severit...

5CVSS6.6AI score0.24638EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2013/06/29 12:0 a.m.25 views

CentOS 5 : bind97 (CESA-2012:1122)

"Updated bind97 packages that fix one security issue are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS6.7AI score0.27383EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2013/06/14 12:0 a.m.39 views

Ubuntu: Security Advisory (USN-1808-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.00946EPSS
Exploits2References2
FreeBSD
FreeBSD
added 2013/06/12 12:0 a.m.29 views

samba -- ACLs are not checked on opening an alternate data stream on a file or directory

The Samba project reports: Samba versions 3.2.0 and above all versions of 3.2.x, 3.3.x, 3.4.x, 3.5.x, 3.6.x, 4.0.x and 4.1.x do not check the underlying file or directory ACL when opening an alternate data stream. According to the SMB1 and SMB2+ protocols the ACL on an underlying file or director...

4CVSS6.4AI score0.09017EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2013/06/06 11:26 a.m.24 views

Internet Systems Consortium Resolves Critical BIND Flaw

The Internet Systems Consortium ISC published a security advisory yesterday resolving a high priority, remotely exploitable denial-of-service vulnerability in BIND 9, the de facto software standard for implementing domain name system protocols online. There is a defect in BIND 9 that could...

7.8CVSS5.1AI score0.0511EPSS
Exploits0References3
securityvulns
securityvulns
added 2013/05/27 12:0 a.m.52 views

Apple QuickTime multiple security vulnerabilities

Memory corruptions on different formats and protocols parsing...

9.3CVSS3.8AI score0.32553EPSS
Exploits12References1Affected Software1
Rows per page
Query Builder