OpenJDK: no default network operations timeouts in FtpClient (Networking, 8181612)

It was found that the FtpClient implementation in the Networking component of OpenJDK did not set connect and read timeouts by default. A malicious FTP server or a man-in-the-middle attacker could use this flaw to block execution of a Java application connecting to an FTP server...

OpenJDK: no default network operations timeouts in FtpClient (Networking, 8181612)

It was found that the FtpClient implementation in the Networking component of OpenJDK did not set connect and read timeouts by default. A malicious FTP server or a man-in-the-middle attacker could use this flaw to block execution of a Java application connecting to an FTP server...

August 16, 2017—KB4034661 (OS Build 14393.1613)

August 16, 2017—KB4034661 OS Build 14393.1613 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: This package contains d3dcompiler47.dll; for more information, read the blog post,HLSL, FXC, a...

Security fix for the ALT Linux 9 package apache2 version 1:2.4.28-alt1

Oct. 10, 2017 Anton Farygin 1:2.4.28-alt1 - new version 2.4.28 - disabled NameVirtualHost directive in portsall.conf closes: 32269 - increased timeout for restarting httpd on SysVinit sytems closes: 31062 - increased LOOPSSTART and TimeoutStartSec closes: 33978 - fixes: CVE-2017-9798 Corrupted or...

Security fix for the ALT Linux 8 package apache2 version 1:2.4.28-alt1

Oct. 10, 2017 Anton Farygin 1:2.4.28-alt1 - new version 2.4.28 - disabled NameVirtualHost directive in portsall.conf closes: 32269 - increased timeout for restarting httpd on SysVinit sytems closes: 31062 - increased LOOPSSTART and TimeoutStartSec closes: 33978 - fixes: CVE-2017-9798 Corrupted or...

Unable to import App Layering OS Layer to ELM from vSphere

After creating a vSphere connector and selected the host and VM to import into the Enterprise Layer Manager ELM as an OS layer, the operation will timeout within a few minutes. vSphere shows an exporting task stuck at 0% before timing out...

Network Timeout Encountered

Provides a report of network timeouts encountered during the scan, showing URLs and the number of timeouts for each URL. Note that assessment will stop on any URLs in timeout state, and timeouts may increase significantly the overall duration of the scan. No source data...

Secure Web cannot access external websites

Unable to browse external websites. Error " http 1.1 gateway timeout" on Secure Web. VPN mode : Full VPN Internal websites work fine...

Crowbar - Brute Forcing Tool (SSH, OpenVPN, RDP, VNC)

Crowbar formally known as Levye is a brute forcing tool that can be used during penetration tests. It was developed to brute force some protocols in a different manner according to other popular brute forcing tools. As an example, while most brute forcing tools use username and password for SSH...

SUSE-SU-2017:2453-1 Security update for SUSE Manager Server 3.0

This update for the SUSE Manager Server 3.0 provides several fixes and improvements. The following security issue has been fixed: spacewalk-java: - CVE-2017-7538: Do not allow HTML code injection via Cross Site Scripting XSS in the Organization Name. bsc1048968 Additionally, the following...

Users prompted for the message "Please close your browser to protect your account"

When using Storefront and SAML or smart card authentication, after the user logs off or the session times out, if the user tries to log back in an error is displayed. With Smartcard the error is You cannot log on using a smart card Please close your browser to protect your account SAML...

kernel: Stack corruption while reading /proc/keys when gcc stack protector is enabled

It was found that when the gcc stack protector was enabled, reading the /proc/keys file could cause a panic in the Linux kernel due to stack corruption. This happened because an incorrect buffer size was used to hold a 64-bit timeout value rendered as weeks...

SecureHub prompting for login even though timeout is correctly set or even while using non MDX apps

SecureHub keeps prompting to login randomly even though the timeouts are correctly set on XMS server...

SecureWeb 10.x: HTTP 1.1 Gateway timeout error while accessing external/internal websites from Secure Web.

While accessing any internal/external websites using Secure we get the following error in Secure web Error : Http/1.1 gateway timeout error Unable to find the requested server or DNS Error...

Connecting to the StoreFront from the Client Times Out

Connecting to the StoreFront from the client times out. Background Fix is provided in the Dazzle registry key...

HTTP Load Generator: hey

hey is a tiny program that sends some load to a web application – ApacheBench ab replacement. hey was originally called boom and was influenced from Tarek Ziade’s tool at tarekziade/boom . Installation go get -u github.com/rakyll/hey Note: Requires go 1.7 or greater. Usage hey runs provided numbe...

Artificial Inteligent Packet Inspection Engine: AIEngine

AIEngine is a next generation interactive/programmable Python/Ruby/Java packet inspection engine with capabilities of learning without any human intervention, NIDS Network Intrusion Detection System functionality, DNS domain classification, network collector, network forensics and many others...

CVE-2012-5030

Cisco IOS before 15.24S6 does not initialize an unspecified variable, which might allow remote authenticated users to cause a denial of service CPU consumption, watchdog timeout, crash by walking specific SNMP objects...

kernel: Stack corruption while reading /proc/keys when gcc stack protector is enabled

It was found that when the gcc stack protector was enabled, reading the /proc/keys file could cause a panic in the Linux kernel due to stack corruption. This happened because an incorrect buffer size was used to hold a 64-bit timeout value rendered as weeks...

kernel: Stack corruption while reading /proc/keys when gcc stack protector is enabled

It was found that when the gcc stack protector was enabled, reading the /proc/keys file could cause a panic in the Linux kernel due to stack corruption. This happened because an incorrect buffer size was used to hold a 64-bit timeout value rendered as weeks...