SECURITY RELATED RSS FEEDS

Latest Advisories/Security Related News

 
The Register - Security
Last Downloaded: Fri, 30 Jul 2010 06:19:06 GMT.
View The Raw XML Source Of The Register - Security. hide
  'Suspicious' Android wallpaper app nabs user data  

Up to 4 million downloads

An Android wallpaper application that collected data from users' phones and uploaded it to a site in China was downloaded "millions of times", according to mobile security firm Lookout.…

  Data for 100m Facebook accounts published to BitTorrent  

Forever is a mighty long time

Underscoring the permanence of data published on the internet, a security researcher has compiled the names and URLs of more than 100 million Facebook users and made them available as a BitTorrent download.…

  Fog of cyberwar: internet always favors the offense  

The Poland of international conflict

Black Hat Fighting wars that target computer networks is fraught with risks that don't exist in traditional warfare, raising the stakes for future conflicts, a retired US general told security professionals Thursday.…

  Data breaches blamed on organised crime  

Hackers feast on financial sector security mistakes

Cybercrooks continue to be a menace to corporate security, with hackers and malware authors collectibly responsible for 85 per cent of all stolen data.…

  Turkish pranksters load Facebook Translate with swears  

The rudeness of crowds

Facebook's attempts to crowdsource translations have gone awry in Turkey.…

  Cell phone eavesdropping enters script-kiddie phase  

Get your GSM snooping tools here

Black Hat Independent researchers have made good on a promise to release a comprehensive set of tools needed to eavesdrop on cell phone calls that use the world's most widely deployed mobile technology.…

  NoScript 2.0 beefs border patrol  

'Saves your router's ass'

NoScript daddy Giorgio Maone has released version 2.0 of his popular Firefox add-on, a means of blocking JavaScript, Java, Flash, and other plug-in or script content from untrusted websites.…

  Armed with exploits, ATM hacker hits the jackpot  

'Game over' vulns spew cash on demand

Black Hat A startling percentage of the world's automated teller machines are vulnerable to physical and remote attacks that can steal administrative passwords and personal identification numbers to say nothing of huge amounts of cash, a security researcher said Wednesday.…

Free On-Demand Webcast - Virtualizing the Hard Stuff

  Scareware victims seldom fight back  

Too embarrassed or too ignorant?

Victims of rogue anti-virus scams rarely attempt to claw back fraudulent credit card payments for worthless software packages, according to new research.…

  Adobe fights exploits with MAPPs  

Microsoft's advanced vuln notice

Black Hat Following a path first taken by Microsoft, Adobe Systems plans to provide security partners with information about upcoming security patches to give providers of antivirus products and intrusion prevention systems a head start in warding off attacks that target the flaws.…

  Tight-lipped Apple fixes Safari autosnoop bug  

Black Hat talk preempted

Black Hat Apple has fixed a flaw in Safari that exposed user names, email addresses, and other sensitive information when the browser visited booby-trapped websites.…

  Smart meters pose hacker kill-switch risk, warn boffins  

Who turned off the lights?

A leading computer scientist has warned of the security risks of using smart meters in controlling utility supplies.…

  Reboot key Brit 'ready to save internet'  

Seven keys to BIND them all

The Brit charged with holding one of seven digital keys necessary to re-establish a system of trust in the highly unlikely event of a collapse of the DNSSec (DNS Security Extensions) system has spoken of the practicalities of his responsibility.…

  Mariposa mastermind arrested in Slovenia  

Cybercrime toolkit suspect cuffed

Investigators have released more details on the arrest of a Slovenian hacker suspected of creating the code behind the infamous Mariposa botnet.…

  Russian gang uses botnets to automate check counterfeiting  

Old-school crime with 21st century twist

Black Hat A researcher has uncovered a sophisticated check counterfeiting ring that uses compromised computers to steal and print millions of dollars worth of bogus invoices and then recruit money mules to cash them.…

  Wireless network security weakness to demo at DEFCON  

Et tu, WPA2?

Security researchers have discovered security shortcomings in the WPA2 protocol that threaten the security of wireless networks, even if they are running up-to-date security software.…

  Aussie hacker pleads guilty to banking Trojan scam  

3,000 computers infected? Strewth

An Australian hacker has pleaded guilty to infecting 3,000 computers with an information-stealing Trojan.…

  Zeus bot latches onto Windows shortcut security hole  

bLNKing hell

Miscreants behind the Zeus cybercrime toolkit and other strains of malware have begun taking advantage of an unpatched shortcut handling flaws in Windows. It was first used by a sophisticated worm to target SCADA-based industrial control and power plant systems.…

  Opening UK cyber-security challenge cracked  

Prelude puzzle unpicked

Enthusiasts claim to have already solved the first test in the Cyber Security Challenge UK hunt for would-be cyber-security experts.…

  Battle joined for future of open source IPS  

Snort bares teeth at DHS-backed project

Analysis The battle to develop the next generation of open source intrusion prevention systems (IPS) technology is intensifying between incumbent Snort and a US government-backed project, the Open Information Security Foundation (OISF).…

 
SecurityFocus News
Last Downloaded: Fri, 30 Jul 2010 10:39:00 GMT.
View The Raw XML Source Of SecurityFocus News. hide
  News: Change in Focus  Change in Focus
  News: Twitter attacker had proper credentials  Twitter attacker had proper credentials
  News: PhotoDNA scans images for child abuse   PhotoDNA scans images for child abuse

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909
  News: Conficker data highlights infected networks  Conficker data highlights infected networks
  Brief: Google offers bounty on browser bugs  Google offers bounty on browser bugs
  Brief: Cyberattacks from U.S. "greatest concern"   Cyberattacks from U.S. "greatest concern"

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909
  Brief: Microsoft patches as fraudsters target IE flaw  Microsoft patches as fraudsters target IE flaw
  Brief: Attack on IE 0-day refined by researchers  Attack on IE 0-day refined by researchers
  News: Monster botnet held 800,000 people's details   Monster botnet held 800,000 people's details

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909
  News: Google: 'no timetable' on China talks  Google: 'no timetable' on China talks
  News: Latvian hacker tweets hard on banking whistle  Latvian hacker tweets hard on banking whistle
  News: MS uses court order to take out Waledac botnet   MS uses court order to take out Waledac botnet

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909
  Infocus: Enterprise Intrusion Analysis, Part One  Enterprise Intrusion Analysis, Part One
  Infocus: Responding to a Brute Force SSH Attack  Responding to a Brute Force SSH Attack
  Infocus: Data Recovery on Linux and ext3   Data Recovery on Linux and <i>ext3</i>

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909
  Infocus: WiMax: Just Another Security Challenge?  WiMax: Just Another Security Challenge?
  Gunter Ollmann: Time to Squish SQL Injection  Time to Squish SQL Injection
  Mark Rasch: Lazy Workers May Be Deemed Hackers   Lazy Workers May Be Deemed Hackers

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909
  Adam O'Donnell: The Scale of Security  The Scale of Security
  Mark Rasch: Hacker-Tool Law Still Does Little  Hacker-Tool Law Still Does Little
powered by zFeeder


Latest Security Files/Exploits

 
Packet Storm Security Last 20
Last Downloaded: Fri, 30 Jul 2010 06:19:07 GMT.
View The Raw XML Source Of Packet Storm Security Last 20. hide
  MDVSA-2010-142.txt  Mandriva Linux Security Advisory 2010-142 - The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check the return value of a call to the smr_normalize function, which allows remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a modrdn call with an RDN string containing invalid UTF-8 sequences, which triggers a free of an invalid, uninitialized pointer in the slap_mods_free function, as demonstrated using the Codenomicon LDAPv3 test suite. OpenLDAP 2.4.22 allows remote attackers to cause a denial of service via a modrdn call with a zero-length RDN destination string, which is not properly handled by the smr_normalize function and triggers a NULL pointer dereference in the IA5StringNormalize function in schema_init.c, as demonstrated using the Codenomicon LDAPv3 test suite.
  uplusftp-overflow.txt  UPlusFTP Server version 1.7.1.01 remote buffer overflow post authentication exploit.
  symantecams-flaw.txt  Symantec Antivirus Corporate Edition AMS Intel Alert Handler service (hndlrsvc.exe) proof of concept command execution exploit.
  jira-xss.txt  Jira version 4.0.1 suffers from a cross site scripting vulnerability.
  secunia-autonomykvrp.txt  Secunia Research has discovered two vulnerabilities in Autonomy KeyView, which can be exploited by malicious people to compromise a vulnerable system. The vulnerabilities are caused by boundary errors in the SpreadSheet Lotus 123 reader (wkssr.dll) when parsing certain records. This can be exploited to cause stack-based buffer overflows via specially crafted files. Successful exploitation allows execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected.
  secunia-autonomykvindex.txt  Secunia Research has discovered a vulnerability in Autonomy KeyView, which can be exploited by malicious people to potentially compromise a vulnerable system. The vulnerability is caused by an error in the SpreadSheet Lotus 123 reader (wkssr.dll) when allocating an array of pointers during the parsing of a certain record type combined with how strings are later indexed. This can be exploited to corrupt memory via a specially crafted file. Successful exploitation may allow execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected.
  zemana-escalate.txt  Zemana AntiLogger with AntiLog32.sys versions 1.5.2.755 and below suffer from a local privilege escalation vulnerability.
  ceteraecommerce-sqlxss.txt  Cetera eCommerce versions 14.0 and below suffer from cross site scripting and remote SQL injection vulnerabilities.
  secunia-wkssriu.txt  Secunia Research has discovered a vulnerability in Autonomy KeyView, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. The vulnerability is caused by an integer underflow error in the SpreadSheet Lotus 123 reader (wkssr.dll) when parsing the size of a specific record type. This can be exploited to cause a heap-based buffer overflow via a specially crafted file. Successful exploitation may allow execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected.
  secunia-autonomywosr.txt  Secunia Research has discovered a vulnerability in Autonomy KeyView, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused by a boundary error the WordPerfect 5.x reader (wosr.dll) when parsing data blocks and can be exploited to cause a heap-based buffer overflow via a specially crafted file. Successful exploitation may allow execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected.
  secunia-autonomyrtfsigned.txt  Secunia Research has discovered a vulnerability in Autonomy KeyView, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused by a signedness error when parsing the argument to the \\ls keyword within a list override table entry in RTF files. This can be exploited to cause a buffer overflow via a specially crafted RTF file. Successful exploitation may allow execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected.
  secunia-autonomywkssr.txt  Secunia Research has discovered a vulnerability in Autonomy KeyView, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused by a boundary error in the Spreadsheet Lotus 123 reader (wkssr.dll) when converting floating point values in certain record types. This can be exploited to cause a stack-based buffer overflow via a specially crafted file. Successful exploitation allows execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected.
  secunia-autonomycfp.txt  Secunia Research has discovered a vulnerability in Autonomy KeyView, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused by a boundary error when parsing record data in compound documents. This can be exploited to cause a heap-based buffer overflow when an application using the vulnerable library parses e.g. a specially crafted Quattro Pro file. Successful exploitation allows execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected.
  apachetomcat-traversal.txt  UTF-8 directory traversal /etc/passwd grabbing exploit for Apache Tomcat versions prior to 6.0.18.
  joomlaphotomapgallery-sql.txt  Joomla PhotoMap Gallery version 1.6.0 suffers from multiple remote blind SQL injection vulnerabilities.
  avarcade-insecure.txt  AV Arcade version 3 suffers from insecure cookie and SQL injection vulnerabilities.
  nubuilder-rfi.txt  nuBuilder version 10.04.x suffers from a remote file inclusion vulnerability.
  dsa-2076-1.txt  Debian Linux Security Advisory 2076-1 - It was discovered that GnuPG 2 uses a freed pointer when verify a signature or importing a certificate with many Subject Alternate Names, potentially leading to arbitrary code execution.
  dsa-2075-1.txt  Debian Linux Security Advisory 2075-1 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications.
  MDVSA-2010-141.txt  Mandriva Linux Security Advisory 2010-141 - The chain_reply function in process.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to cause a denial of service via a Negotiate Protocol request with a certain 0x0003 field value followed by a Session Setup AndX request with a certain 0x8003 field value. The reply_sesssetup_and_X_spnego function in sesssetup.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to trigger an out-of-bounds read, and cause a denial of service (process crash), via a \\xff\\xff security blob length in a Session Setup AndX request. The updated packages provides samba 3.4.8 which is not vulnerable to these issues.
powered by zFeeder