FreeBSD Security Advisory FreeBSD-SA-12:02.crypt
============================================================================= FreeBSD-SA-12:02.crypt Security Advisory The FreeBSD Project Topic: Incorrect crypt() hashing Category: core Module:...
View ArticleSolaris 10 Patch Cluster Symlink Attack
#!/usr/bin/perl $clobber = "/etc/passwd"; while(1) { open ps,"ps -ef | grep -v grep |grep -v PID |"; while(<ps>) { @args = split " ", $_; if (/inetd-upgrade/) { print "Symlinking...
View ArticleClik here to view.
High severity bug found in OpenSSL raises fears of another Heartbleed
A 'HIGH SEVERITY' BUG is currently unpatched in OpenSSL, the open source software used to encrypt internet communications, and a new version is due to be released on 9 July. OpenSSL is a cryptographic...
View ArticleClik here to view.
Adobe promises Flash improvements after Firefox and Facebook snubs
Adobe has promised to do it all can to improve the security of its much maligned Flash tool, in response to criticisms from the new CIO of Facebook and Mozilla blocking the tool from its Firefox...
View ArticleClik here to view.
Anche Google Chrome disabilita Flash: falle scoperte da Hacking Team
DOPO Firefox, anche Chrome disabilita il supporto ad Adobe Flash, il popolare lettore di video che dopo l'attacco ad Hacking Team ha mostrato una serie di falle sfruttabili dagli hacker. "Flash è un...
View ArticleClik here to view.
Zero-day flaw found in Mac OS X Yosemite security update
An Italian teenager has discovered a previously unknown zero-day vulnerability in Apple's Mac OS X platform that could be exploited by hackers to allow privileged access to Mac systems. A...
View ArticleMonster Patch Day For Juniper Customers
Source: Monster Patch Day For Juniper Customers The post Monster Patch Day For Juniper Customers appeared first on MondoUnix.
View ArticleATM Security Devs Rush Out Patch After Boffins Deliver Knockout Blow
Source: ATM Security Devs Rush Out Patch After Boffins Deliver Knockout Blow The post ATM Security Devs Rush Out Patch After Boffins Deliver Knockout Blow appeared first on MondoUnix.
View ArticleDell To Patch AMT-Vulnerable Systems
Source: Dell To Patch AMT-Vulnerable Systems The post Dell To Patch AMT-Vulnerable Systems appeared first on MondoUnix.
View ArticleMicrosoft Releases Emergency Patch For Crazy Bad Windows Zero-Day Bug
Source: Microsoft Releases Emergency Patch For Crazy Bad Windows Zero-Day Bug The post Microsoft Releases Emergency Patch For Crazy Bad Windows Zero-Day Bug appeared first on MondoUnix.
View ArticleProposed PATCH Act Forces US Snoops To Quit Hoarding Code Exploits
Source: Proposed PATCH Act Forces US Snoops To Quit Hoarding Code Exploits The post Proposed PATCH Act Forces US Snoops To Quit Hoarding Code Exploits appeared first on MondoUnix.
View ArticleWebKit Patch #1110 Universal Cross Site Scripting
The WebKit #1110 patch created a universal cross site scripting vulnerability. Source: WebKit Patch #1110 Universal Cross Site Scripting The post WebKit Patch #1110 Universal Cross Site Scripting...
View ArticleSchneider Electric Wonderware InduSoft Web Studio 8.0 Patch 3 Insecure...
Schneider Electric Wonderware InduSoft Web Studio versions 8.0 Patch 3 and below suffer from having incorrect default permissions. Source: Schneider Electric Wonderware InduSoft Web Studio 8.0 Patch 3...
View ArticleCisco Automation Code Needs Manual Patch
Source: Cisco Automation Code Needs Manual Patch The post Cisco Automation Code Needs Manual Patch appeared first on MondoUnix.
View ArticleQuali CloudShell 7.1.0.6508 (Patch 6) Cross Site Scripting
Quali CloudShell version 7.1.0.65.08 (Patch 6) suffers from multiple persistent cross site scripting vulnerabilities. Source: Quali CloudShell 7.1.0.6508 (Patch 6) Cross Site Scripting The post Quali...
View ArticleOpenText Document Sciences xPression 4.5SP1 Patch 13 Arbitrary File Read
OpenText Document Sciences xPression version 4.5SP1 Patch 13 suffers from an arbitrary file read vulnerability. Source: OpenText Document Sciences xPression 4.5SP1 Patch 13 Arbitrary File Read The post...
View ArticleOpenText Document Sciences xPression 4.5SP1 Patch 13 SQL Injection
OpenText Document Sciences xPression version 4.5SP1 Patch 13 suffers from a remote SQL injection vulnerability in the xDashboard functionality. Source: OpenText Document Sciences xPression 4.5SP1 Patch...
View ArticleOpenText Document Sciences xPression 4.5SP1 Patch 13 Cross Site Scripting
OpenText Document Sciences xPression version 4.5SP1 Patch 13 suffers from a cross site scripting vulnerability in the Deployment functionality. Source: OpenText Document Sciences xPression 4.5SP1 Patch...
View ArticleOpenText Document Sciences xPression 4.5SP1 Patch 13 XML Injection
OpenText Document Sciences xPression version 4.5SP1 Patch 13 suffers from an XML external entity injection vulnerability. Source: OpenText Document Sciences xPression 4.5SP1 Patch 13 XML Injection The...
View ArticleOracle Swats 252 Bugs In Patch Update
Source: Oracle Swats 252 Bugs In Patch Update The post Oracle Swats 252 Bugs In Patch Update appeared first on MondoUnix.
View Article
