취약점 정보1 썸네일형 리스트형 Ubuntu 14.04: security problem in the lock screen affects ubuntuHello, I am running Ubuntu 14.04 with all the packages updated. When the screen is locked with password, if I hold ENTER after some seconds the screen freezes and the lock screen crashes. After that I have the computer fully unlocked.-- Marco AgneseThis bug is about the lockscreen being bypassed when unity crashes/restarts, which is a critcal security issue. The crash will be handl.. 더보기 HP-UX 보호우회 HP-UX 보호우회 명칭 : HP-UX 보호우회발령일시 : 4월27일해당시스템 : HP-UX 11.31위험도 : ★★★☆☆최초 보고자 : HPSBUX03001 SSRT101382 rev.1HPSBUX03001 SSRT101382 rev.1 - HP-UX Whitelisting (WLI), Local System Integrity Risk -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04227671 SU.. 더보기 New Zero-Day Exploit targeting Internet Explorer Versions 9 through 11 Identified in Targeted Attacks FireEye Research Labs identified a new Internet Explorer (IE) zero-day exploit used in targeted attacks. The vulnerability affects IE6 through IE11, but the attack is targeting IE9 through IE11. This zero-day bypasses both ASLR and DEP. Microsoft has assigned CVE-2014-1776 to the vulnerability and released security advisory to track this issue.Threat actors are actively using this exploit in an .. 더보기 New Project by Linux Foundation - Core Infrastructure Initiative After the OpenSSL Heartbleed vulnerability [1] that sent lots of products scrambling to issue a patch to prevent data leakage, the Linux Foundation formed a new initiative [2] with some of the major technologies leaders, to support critical open source projects to like OpenSSL to provide funding and ensure greater reliability."The first project under consideration to receive funds from the Initi.. 더보기 크롬 업데이트 권고 Google에서 제공하는 웹 브라우저인 Chrome이 업데이트되었습니다. -- The Stable Channel has been updated to 34.0.1847.131 for Windows, Mac, and 34.0.1847.132 for Linux. This release also contains a Flash Player update, to version 13.0.0.206. Security Fixes and Rewards This update includes 9 security fixes. Below, we highlight fixes that were either contributed by external researchers or particularly interesting. Please .. 더보기 Android Users - Beware of Bitcoin Mining Malware It has been reported that Bitcoin mining malware has been found in the Google Play store. If your battery is draining faster than usual, your phone maybe running a copy of the BadLepricon Bitcoin mining malware. "The malware comes in the form of a wallpaper app. Google promptly removed five of these applications after we alerted them to the issue. The apps had between 100-500 installs each at th.. 더보기 2014-04-26 취약점 정리 Linux Kernel 'tcp_rcv_state_process()' Function Denial of Service Vulnerability 2014-04-26 http://www.securityfocus.com/bid/65654 Linux Kernel CONFIG_HID Local Memory Corruption Vulnerability 2014-04-26 http://www.securityfocus.com/bid/62043 Drupal Core Information Disclosure Vulnerability 2014-04-26 http://www.securityfocus.com/bid/66977 QEMU CVE-2014-0145 Multiple Buffer Overflow Vulnerabiliti.. 더보기 WordPress iMember360is 3.9.001 XSS / Disclosure / Code Execution WordPress iMember360is plugin versions 3.8.012 through 3.9.001 suffers from arbitrary code execution, database credential disclosure, arbitrary user deletion, and cross site scripting vulnerabilities.------------ BACKGROUND ------------ "iMember360is a WordPress plugin that will turn a normal WordPress site into a full featured membership site. It includes all the protection controls you can ima.. 더보기 Mac OS X NFS Mount Privilege Escalation This exploit leverage a stack overflow vulnerability to escalate privileges. The vulnerable function nfs_convert_old_nfs_args does not verify the size of a user-provided argument before copying it to the stack. As a result by passing a large size, a local user can overwrite the stack with arbitrary content. Mac OS X Lion Kernel versions equal to and below xnu-1699.32.7 except xnu-1699.24.8 are a.. 더보기 Wireshark 1.8.12/1.10.5 wiretap/mpeg.c Stack Buffer Overflow This Metasploit module triggers a stack buffer overflow in Wireshark versions 1.8.12/1.10.5 and below by generating an malicious file.# # This module requires Metasploit: http//metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## require 'msf/core' class Metasploit3 < Msf::Exploit::Remote Rank = GoodRanking include Msf::Exploit::FILEFORMAT include Msf::Expl.. 더보기 이전 1 ··· 43 44 45 46 47 48 49 ··· 62 다음