4114 matches found
xfsprogs security, bug fix and enhancement update
3.2.2-2 - Fix xfsmetadump disclosure flaw, CVE-2012-2150 1251118 3.2.2-1 - Update to upstream v3.2.2, plus fixes from v3.2.3 1223991 - repair: fix unnecessary secondary scan if only last sb is corrupt 1201238 - repair: check ino alignment value to avoid mod by zero 1223444...
Samsung Galaxy S6 Edge Memory Corruption Vulnerability
Samsung Galaxy S6 Edge is a smartphone released by Samsung South Korea. A security vulnerability exists in the media scanning feature of the face recognition library in the android.media.process file in previous versions of the Samsung Galaxy S6 Edge G925VVRU4B0G9. A remote attacker can exploit...
LAN Scan HD v1.20 iOS - Command Inject Vulnerability
Lan Scan HD version 1.20 suffers from a command injection vulnerability. Document Title: =============== LAN Scan HD v1.20 iOS - Command Inject Vulnerability Product & Service Introduction: =============================== See whats all connect to your favorite public WiFi network or your home...
Port Scan v2.0 iOS - Command Inject Vulnerability
Port Scan version 2.0 suffers from a command injection vulnerability. Document Title: =============== Port Scan v2.0 iOS - Command Inject Vulnerability Product & Service Introduction: =============================== Port Scanning is a essential network utility for every IT professional and this i...
FFmpeg 'ljpeg_decode_yuv_scan' function denial of service vulnerability
FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the 'ljpegdecodeyuvscan' function in the libavcodec/mjpegdec.c file in versions of FFmpeg prior to 2.8.2. As the program fails to perform length and width...
Port Scan 2.0 Command Injection
Document Title: =============== Port Scan v2.0 iOS - Command Inject Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1619 Release Date: ============= 2015-11-02 Vulnerability Laboratory ID VL-ID: ==================================== 1619...
Lan Scan HD 1.20 Command Injection
Document Title: =============== LAN Scan HD v1.20 iOS - Command Inject Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1618 Release Date: ============= 2015-11-05 Vulnerability Laboratory ID VL-ID: ==================================== 1618...
targets-xml NSE Script
Loads addresses from an Nmap XML output file for scanning. Address type IPv4 or IPv6 is determined according to whether -6 is specified to nmap. Script Arguments targets-xml.iX Filename of an Nmap XML file to import targets-xml.state Only hosts with this status will have their addresses input...
LAN Scan HD v1.20 iOS - Command Inject Vulnerability
Document Title: =============== LAN Scan HD v1.20 iOS - Command Inject Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1618 Release Date: ============= 2015-11-05 Vulnerability Laboratory ID VL-ID: ==================================== 1618...
LAN Scan HD v1.20 iOS - Command Inject Vulnerability
Document Title: =============== LAN Scan HD v1.20 iOS - Command Inject Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1618 Release Date: ============= 2015-11-05 Vulnerability Laboratory ID VL-ID: ==================================== 1618...
Port Scan v2.0 iOS - Command Inject Vulnerability
Document Title: =============== Port Scan v2.0 iOS - Command Inject Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1619 Release Date: ============= 2015-11-02 Vulnerability Laboratory ID VL-ID: ==================================== 1619...
Port Scan v2.0 iOS - Command Inject Vulnerability
Document Title: =============== Port Scan v2.0 iOS - Command Inject Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1619 Release Date: ============= 2015-11-02 Vulnerability Laboratory ID VL-ID: ==================================== 1619...
UBUNTU-CVE-2015-7970
The p2mpodemergencysweep function in arch/x86/mm/p2m-pod.c in Xen 3.4.x, 3.5.x, and 3.6.x is not preemptible, which allows local x86 HVM guest administrators to cause a denial of service CPU consumption and possibly reboot via crafted memory contents that triggers a "time-consuming linear scan,"...
Threat Outbreak Alert RuleID18585: Email Messages Distributing Malicious Software on October 9, 2015
Medium Alert ID: 41458 First Published: 2015 October 9 13:55 GMT Last Updated: 2015 October 12 11:39 GMT Version: 3 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID18585 a...
WPHardening 1.5 - Fortify the security of any WordPress installation
Fortify the security of any WordPress installation. Installation Installing WPHardening requires you to execute one console command: $ pip install -r requirements.txt Usage $ python wphardening.py -h \ \ / / | | | | | | \ \ /\ / /| | | || | | | \ / / / | /| |/ | '/ |/ \ ' | | ' \ / | \ /\ / | |...
Automate Vulnerability Scanning: Seccubus
Seccubus automates regular vulnerability scans with vrious tools and aids security people in the fast analysis of its output, both on the first scan and on repeated scans. The goal is to reduce the analysis time for subsequent scans of the same infrastructure by only reporting delta findings...
WPS attack tool: Penetrator-WPS
This is experimental tool that is capable of attacking multiple WPS-enabled wireless access points in real time Penetrator-WPS utilizes the pixie-dust attack every time it receives M3 message, unless it is disabled with -P – pixie-dust requires pixiewps to be installed. Installation First, you ne...
Automated Evil Twin Attack: infernal-twin
Evil twin is a term for a rogue Wi-Fi access point that appears to be a legitimate one offered on the premises, but actually has been set up to eavesdrop on wireless communications. An evil twin is the wireless version of the phishing scam. An attacker fools wireless users into connecting a lapto...
DEBIAN-CVE-2013-7443
Buffer overflow in the skip-scan optimization in SQLite 3.8.2 allows remote attackers to cause a denial of service crash via crafted SQL statements...
GE Healthcare Centricity PACS-IW Built-in Account Vulnerability
GE Healthcare Centricity PACS-IW is an image archiving and delivery system for the healthcare industry. Built-in accounts exist for GE Healthcare Centricity PACS-IW, with 'shared' passwords for shared users; and 'scan' passwords for scan users, allowing remote attackers to to utilize these accoun...