221 matches found
CVE-2016-3145
Lexmark printers with firmware ATL before ATL.021.063, CB before CB.021.063, PP before PP.021.063, and YK before YK.021.063 mishandle Erase Printer Memory and Erase Hard Disk actions, which allows physically proximate attackers to obtain sensitive information via direct read operations on...
LiME - Linux Memory Extractor
A Loadable Kernel Module LKM which allows for volatile memory acquisition from Linux and Linux-based devices, such as Android. This makes LiME unique as it is the first tool that allows for full memory captures on Android devices. It also minimizes its interaction between user and kernel space...
Rekall - The Most Complete Memory Analysis Framework
The Rekall Framework is a completely open collection of tools, implemented in Python under the GNU General Public License, for the extraction of digital artifacts from volatile memory RAM samples. The extraction techniques are performed completely independent of the system being investigated but...
Volatile Cedar APT Group First Operating Out of Lebanon
An APT group with its sights on selective targets, most of those in Israel, has been using an elusive malware implant to steal data from groups with state and political interests. The gang, called Volatile Cedar by researchers at Check Point Software Systems, has been working since 2012 and could...
BIOS Security Updates for Multiple Issues
Summary: New BIOS updates are available for Intel products. These updates harden the implementation against malicious inputs at various stages of the boot process and runtime. Description: This update addresses issues identified in the process of resuming from a sleep state, processing data store...
[Rekall] Memory Forensics Analysis Framework
The Rekall Framework is a completely open collection of tools, implemented in Python under the GNU General Public License, for the extraction of digital artifacts from volatile memory RAM samples. The extraction techniques are performed completely independent of the system being investigated but...
[SECURITY] Fedora 19 Update: microcode_ctl-2.0-3.1.fc19
The microcodectl utility is a companion to the microcode driver written by Tigran Aivazian . The microcode update is volatile and needs to be uploaded on each system boot i.e. it doesn't reflash your cpu permanently, reboot and it reverts back to the old microcode...
[The Volatility Framework] An advanced memory forensics framework
The Volatility Framework is a completely open collection of tools, implemented in Python under the GNU General Public License, for the extraction of digital artifacts from volatile memory RAM samples. The extraction techniques are performed completely independent of the system being investigated...
Volatility 2.0 - Advanced Memory Forensics [With Video Demonstration]
Volatility 2.0 - Advanced Memory Forensics With Video Demonstration The Volatility Framework is a completely open collection of tools, implemented in Python under the GNU General Public License, for the extraction of digital artifacts from volatile memory RAM samples. The extraction techniques ar...
Volatility 2.0 - Advanced Memory Forensics [With Video Demonstration]
Volatility 2.0 - Advanced Memory Forensics With Video Demonstration The Volatility Framework is a completely open collection of tools, implemented in Python under the GNU General Public License, for the extraction of digital artifacts from volatile memory RAM samples. The extraction techniques ar...
Multi Gather Generic Operating System Environment Settings
This module prints out the operating system environment variables. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Multi Gather Generic Operating System Environment Settings', 'Description' = %...
DSA-2125-1 openssl - buffer overflow
Bulletin has no description...
Debian DSA-2112-1 : bzip2 - integer overflow
Mikolaj Izdebski has discovered an integer overflow flaw in the BZ2decompress function in bzip2/libbz2. An attacker could use a crafted bz2 file to cause a denial of service application crash or potentially to execute arbitrary code. CVE-2010-0405 %NASLMINLEVEL 70300 C Tenable Network Security,...
DSA-2112-1 bzip2 - integer overflow
Bulletin has no description...
Debian DSA-1906-1 : clamav - End-of-life announcement for clamav in stable and oldstable
Security support for clamav, an anti-virus utility for Unix, has been discontinued for the stable distribution lenny and the oldstable distribution etch. Clamav Upstream has stopped supporting the releases in etch and lenny. Also, it is not easily possible to receive signature updates for the vir...
DSA-1906-1 clamav - end-of-life announcement
Security support for clamav, an anti-virus utility for Unix, has been discontinued for the stable distribution lenny and the oldstable distribution etch. Clamav Upstream has stopped supporting the releases in etch and lenny. Also, it is not easily possible to receive signature updates for the vir...
[SECURITY] [DSA 1906-1] End-of-life announcement for clamav in stable and oldstable
------------------------------------------------------------------------ Debian Security Advisory DSA-1906-1 [email protected] http://www.debian.org/security/ Steffen Joeris October 11, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1153-1] New ClamAV packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1153-1 [email protected] http://www.debian.org/security/ Martin Schulze August 18th, 2006 http://www.debian.org/security/faq -...
DSA-1090-1 spamassassin - programming error
Bulletin has no description...
iDEFENSE Security Advisory 09.13.05: Linksys WRT54G 'restore.cgi' Configuration Modification Design Error Vulnerability
Linksys WRT54G 'restore.cgi' Configuration Modification Design Error Vulnerability iDEFENSE Security Advisory 09.13.05 www.idefense.com/application/poi/display?id=306&type=vulnerabilities September 13, 2005 I. BACKGROUND The Linksys WRT54G is a combination wireless access point, switch and router...