174 matches found
Cybersecurity Law Casebook
Robert Chesney teaches cybersecurity at the University of Texas School of Law. He recently published a fantastic casebook, which is a good source for anyone studying this...
PT-2019-6449 · FFmpeg +5 · Ffmpeg +5
Name of the Vulnerable Software and Affected Versions: Ffmpeg version 4.2.1 Description: The issue is related to an integer overflow vulnerability in the filter robert function within the libavfilter/vf convolution.c file of Ffmpeg. This vulnerability allows attackers to cause a Denial of Service...
Robert Mueller's Work Is Done. Now It's Congress's Turn
In nearly six hours of testimony Wednesday, former special counsel Robert Mueller stuck to the facts...
Watch Robert Mueller's Testimony Live Right Here
Robert Mueller will testify before Congress Wednesday in two separate hearings. You can watch it right here, but first make sure to manage your expectations...
Robert Mueller's Testimony: What Congress Needs to Know
Here’s what members of Congress should know before they question the former special counsel...
Myspace Employees Used to Spy on Users
Robert Mueller will testify, malware wrecks IoT, and more of the week's top security news...
Watch Robert Mueller’s Statement on the Russia Investigation
Special counsel Robert Mueller is making his first public remarks since the release of his report in April...
Robert Mueller Won't Testify Next Week After All
Facial recognition run amok, antivirus hacks, and more of the week's top security news...
Vulnerability in OpenSSL - 0-byte record padding oracle
If an application encounters a fatal protocol error and then calls SSLshutdown twice once to send a closenotify, and once to receive one then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 byte record is received...
Hackers Leak Personal Data from Hundreds of German Politicians On Twitter
Germany has been hit with the biggest hack in its history. A group of unknown hackers has leaked highly-sensitive personal data from more than 100 German politicians, including German Chancellor Angela Merkel, Brandenburg's prime minister Dietmar Woidke, along with some German artists, journalist...
Pan Am Flight 103: Robert Mueller’s 30-Year Search for Justice
Known as the Lockerbie bombing, in December 1988 a bomb downed a Pan Am jet, leaving 270 dead. It was the first mass killing of Americans by terrorists. As the head of the Justice Department’s criminal division, Robert Mueller oversaw the case. And for him, it was personal...
robert-habeck.de XSS vulnerability
Open Bug Bounty ID: OBB-707828 Description| Value ---|--- Affected Website:| robert-habeck.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden...
14 Questions Robert Mueller Knows the Answer To
The Russia investigation's known unknowns give valuable hints about the special counsel's next moves...
USN-3809-1 openssh vulnerabilities
Robert Swiecki discovered that OpenSSH incorrectly handled certain messages. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. CVE-2016-10708 It was discovered that OpenSSH incorrectly handled certain requests. ...
Morris Worm - fingerd Stack Buffer Overflow (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Morris Worm fingerd Stack Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in fingerd on 4.3BSD. This...
robert-habeck.de XSS vulnerability
Open Bug Bounty ID: OBB-693341 Description| Value ---|--- Affected Website:| robert-habeck.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Morris Worm fingerd Stack Buffer Overflow
This module exploits a stack buffer overflow in fingerd on 4.3BSD. This vulnerability was exploited by the Morris worm in 1988-11-02. Cliff Stoll reports on the worm in the epilogue of The Cuckoo's Egg. Currently, only bsd/vax/shellreversetcp is supported. This module requires Metasploit:...
[SECURITY] [DSA 4164-1] apache2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4164-1 [email protected] https://www.debian.org/security/ Stefan Fritsch April 03, 2018 https://www.debian.org/security/faq -...
Multiple IoT Vendors – Multiple Vulnerabilities
Vulnerabilities summary The following advisory describes three 3 vulnerabilities found in the following vendors: Lorex StarVedia Eminent Kraun The vulnerabilities found: Hard-coded credentials Remote command injection 2 It is possible to chain the vulnerabilities and to achieve unauthenticated...
CVE-2017-1000411
CVE-2017-1000411 affects OpenFlow Plugin and OpenDaylight Controller (Nitrogen, Carbon, Boron) with a flaw where multiple expired flows consume memory in CONFIG DATASTORE, causing the controller to shutdown once JVM/resource limits are reached. The issue arises when idle-timeout and hard-timeout ...