48 matches found
SOL31372672 - Mozilla NSS vulnerabilities CVE-2015-7181, CVE-2015-7182, and CVE-2015-7183
Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...
SOL17518 - NTP vulnerability CVE-2015-7871
Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...
Java Secure Socket Extension (JSSE) SKIP-TLS MITM Proxy
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'openssl' class Metasploit3 'Java Secure Socket Extension JSSE SKIP-TLS MITM Proxy', 'Description' = %q This module exploits an incomplete...
OpenSSL re-aeration of the CCS injection vulnerability-vulnerability warning-the black bar safety net
Too much drama last night to see a good piece has about, also good, 2 0 1 2 edition of the perfect memories on, like me such people still choose to use the TV or go to the cinema to see the movie, in the middle of no commercials, experience holding back process, always Suddenly have a lot of idea...
Turkish Hacker Crashes Google Play Store Twice while testing vulnerability
Last Weekend Google Play Store was crashed twice by a Turkish hacker when he tried to test vulnerability he discovered on the Android apps publishing system, known as Google's Developer Console. Turkish hacker 'Ibrahim Balic' claimed responsibility for the Google Play Store attack and told 'The...
Sybase Fixes Nine ASE Flaws
Enterprise software and services company Sybase has again patched holes in its Adaptive Server Enterprise ASE product, fixing a handful of database vulnerabilities that could have allowed a hacker to execute code and bypass security parameters on the company’s main database server product. As...
CVE-2010-2637
IBM WebSphere MQ 6.0 before 6.0.2.9 and 7.0 before 7.0.1.1 does not encrypt the username and password in the security parameters field, which allows remote attackers to obtain sensitive information by sniffing the network traffic from a .NET client application...
GNUTLS-SA-2008-1-1 GnuTLS buffer overflow
The gnutlsservernamerecvparams function in lib/extservername.c in libgnutls in gnutls-serv in GnuTLS before 2.2.4 does not properly calculate the number of Server Names in a TLS 1.0 Client Hello message during extension handling, which allows remote attackers to cause a denial of service crash or...