4752 matches found
[SECURITY] Fedora 17 Update: curl-7.24.0-9.fc17
curl is a command line tool for transferring data with URL syntax, supporti ng FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, I MAP, SMTP, POP3 and RTSP. curl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies,...
Researchers uncovered new malware used by Chinese cyber criminals
Trend Micro researchers have uncovered a new backdoor pieces of malware from the Winnti family, which are mainly used by a Chinese cyber criminal group to target South East Asian organizations from the video gaming sector. Winnti malware used by hackers to hijack control of web users systems usin...
Debian Security Advisory DSA 2665-1 (strongswan - authentication bypass)
Kevin Wojtysiak discovered a vulnerability in strongSwan, an IPsec based VPN solution. When using the OpenSSL plugin for ECDSA based authentication, an empty, zeroed or otherwise invalid signature is handled as a legitimate one. An attacker could use a forged signature to authenticate like a...
Fedora Update for bind FEDORA-2013-4525
Check for the Version of bind OpenVAS Vulnerability Test Fedora Update for bind FEDORA-2013-4525 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Fedora Update for mingw-openssl FEDORA-2013-4403
Check for the Version of mingw-openssl OpenVAS Vulnerability Test Fedora Update for mingw-openssl FEDORA-2013-4403 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
[SECURITY] [DSA 2644-1] wireshark security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2644-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 14, 2013 http://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-2644-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Wireshark multiple security vulnerabilities
Multiple vulnerabilities on CLNP, DTLS, DCP-ETSI, NTLMSSP and another protocols parsing...
[SECURITY] Fedora 17 Update: openssl-1.0.0k-1.fc17
The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols...
Fedora Update for nginx FEDORA-2013-2955
Check for the Version of nginx OpenVAS Vulnerability Test Fedora Update for nginx FEDORA-2013-2955 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Fedora Update for openssl FEDORA-2013-2834
Check for the Version of openssl OpenVAS Vulnerability Test Fedora Update for openssl FEDORA-2013-2834 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
[SECURITY] Fedora 17 Update: ekiga-4.0.1-1.fc17
Ekiga is a tool to communicate with video and audio over the internet. It uses the standard SIP and H323 protocols...
[SECURITY] Fedora 18 Update: openssl-1.0.1e-3.fc18
The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols...
Nmap NSE 6.01: smb-enum-domains
Attempts to enumerate domains on a system, along with their policies. This generally requires credentials, except against Windows 2000. In addition to the actual domain, the 'Builtin' domain is generally displayed. Windows returns this in the list of domains, but its policies don't appear to be...
[SECURITY] Fedora 18 Update: openconnect-4.08-1.fc18
This package provides a client for Cisco's "AnyConnect" VPN, which uses HTTPS and DTLS protocols...
[SECURITY] Fedora 17 Update: openconnect-4.08-1.fc17
This package provides a client for Cisco's "AnyConnect" VPN, which uses HTTPS and DTLS protocols...
[SECURITY] [DSA 2625-1] wireshark security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2625-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 17, 2013 http://www.debian.org/security/faq -...
SSL/TLS: CBC padding timing attack (lucky-13)
The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider timing side-channel attacks on a MAC check requirement during the processing of malformed CBC padding, which allows remote attackers to conduct...
[SECURITY] [DSA 2625-1] wireshark security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2625-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 17, 2013 http://www.debian.org/security/faq -...
DARPA, FIDO Alliance Join Race to Replace Passwords
Nearly everyone agrees that passwords are the bane of Internet security. For years, industry thinkers have somewhat vaguely referenced the need for Internet fingerprints capable of reliably verifing identities online. Yet here we are, it’s 2013 and passwords remain the primary means of...