Flash RSS News

Un site utilisant WordPress

Catégorie : Actualité Sécurité Info (Page 1 of 133)

[local] Wansview 1.0.2 – Denial of Service (PoC)

Wansview 1.0.2 – Denial of Service (PoC)

Source: [local] Wansview 1.0.2 – Denial of Service (PoC)

Malicious Faxes Leave Firms Open To Cyber Attack

Source: Malicious Faxes Leave Firms Open To Cyber Attack

Oracle GlassFish Server 4.1 Directory Traversal

This Metasploit module exploits an unauthenticated directory traversal vulnerability which exits in administration console of Oracle GlassFish Server version 4.1, which is listening by default on port 4848/TCP.

Source: Oracle GlassFish Server 4.1 Directory Traversal

Former NSA Top Hacker Names The Filthy Four Of Nation-State Hacking

Source: Former NSA Top Hacker Names The Filthy Four Of Nation-State Hacking

[remote] Oracle Weblogic Server – Deserialization Remote Code Execution (Metasploit)

Oracle Weblogic Server – Deserialization Remote Code Execution (Metasploit)

Source: [remote] Oracle Weblogic Server – Deserialization Remote Code Execution (Metasploit)

FireHOL 3.1.6

FireHOL a simple yet powerful way to configure stateful iptables firewalls. It can be used for almost any purpose, including control of any number of internal/external/virtual interfaces, control of any combination of routed traffic, setting up DMZ routers and servers, and all kinds of NAT. It provides strong protection (flooding, spoofing, etc.), transparent caches, source MAC verification, blacklists, whitelists, and more. Its goal is to be completely abstracted and powerful but also easy to use, audit, and understand.

Source: FireHOL 3.1.6

macOS Vuln Paves Way For Single Click Compromise

Source: macOS Vuln Paves Way For Single Click Compromise

U.S. House Candidates Vulnerable To Attacks

Source: U.S. House Candidates Vulnerable To Attacks

[webapps] IBM Sterling B2B Integrator 5.2.0.1/5.2.6.3 – Cross-Site Scripting

IBM Sterling B2B Integrator 5.2.0.1/5.2.6.3 – Cross-Site Scripting

Source: [webapps] IBM Sterling B2B Integrator 5.2.0.1/5.2.6.3 – Cross-Site Scripting

Kernel Live Patch Security Notice LSN-0041-1

The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel through 4.16.12 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact because sense buffers have different sizes at the CDROM layer and the SCSI layer, as demonstrated by a CDROMREADMODE2 ioctl call. Wen Xu discovered that the ext4 file system implementation in the Linux kernel did not properly initialize the crc32c checksum driver. A local attacker could use this to cause a denial of service (system crash). Various other issues were also addressed.

Source: Kernel Live Patch Security Notice LSN-0041-1

Page 1 of 133

Fièrement propulsé par WordPress & Thème par Anders Norén

serial rss