Whitepaper call Of Mice and Keyboards. This write up gives you an overview on the security of modern wireless desktop sets.
a23b6c71f4bc4c2bb5db90ee5bab0a7cd56644257573acdf96d51e19d1e89e12
Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers.
689ddf62221b152779d8846ab5b2063cc7fd41ec1a9f04eefab09b5d5486dbb5
PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
940aef87e926b32320f06ee78c39d56585054fa3925dd47197b2eb0f075bf489
Ubuntu Security Notice 3307-1 - Karsten Heymann discovered that OpenLDAP incorrectly handled certain search requests. A remote attacker could use this issue to cause slapd to crash, resulting in a denial of service.
f01b6f961a52a68de008ececbe337f09a0d4e33fc0abdbf6ccf00f18c932a493
Ubuntu Security Notice 3306-1 - Agostino Sarubbo and Jakub Jirasek discovered that libsndfile incorrectly handled certain malformed files. A remote attacker could use this issue to cause libsndfile to crash, resulting in a denial of service, or possibly execute arbitrary code.
fbea49bbfed434bfcce62a15d2778715d6c388a04384856437ee54a1c12be504
Debian Linux Security Advisory 3870-1 - Several vulnerabilities were discovered in wordpress, a web blogging tool. They would allow remote attackers to force password resets, and perform various cross-site scripting and cross-site request forgery attacks.
b6416e3fdd839bdd3c96dafbdb7c461102ba3e0264d8016651480924cc3ee946
Debian Linux Security Advisory 3869-1 - It was discovered that tnef, a tool used to unpack MIME attachments of type "application/ms-tnef", did not correctly validate its input. An attacker could exploit this by tricking a user into opening a malicious attachment, which would result in a denial-of-service by application crash.
99f65e58e1a911fb336f114210fc622d81a34d31d54b93aee976c3b7c13b2a25
Riverbed SteelHead VCX version 9.6.0a suffers from an arbitrary file read vulnerability.
67bd160f57f9efe9ce7c82cb99728bf0b5fd64561cc6f8297967e1d117931a8c
Digital Whisper Electronic Magazine issue 83. Written in Hebrew.
da203d194f6af03cf4b7ce0df355de1c79bae4d52b47e1901b56bae2f76e230e
This is the fifteenth issue of POC || GTFO.
c9b3f5026640efae12d75e62868931e2b2b5ad98a9b858408266ac5c35815bf4
Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
7a09c6fc71c65d572ca702df7b4394d71f9037484062ef71b76f59a2c498b029
WebKit suffers from a universal cross site scripting vulnerability in CachedFrameBase::restore.
7f962f27a8f242a3d914b7613c99b2a54149f667a258300f52a5997142ca5a32
WebKit suffers from a use-after-free vulnerability in Element::setAttributeNodeNS.
0af5bc9b464b348d07ec52a7a2be51db444e7e536f58a4b521760fee90ad844b
WebKit CachedFrame does not detach openers allowing for a universal cross site scripting vulnerability.
abb2eb80430b0760916c4951be5f62aa477b51f99147ec39961aa69d26c3fb0a
WebKit JSC suffers from an incorrect check in emitPutDerivedConstructorToArrowFunctionContextScope.
a896a4670ad6e45a86257f2de8b28d8691ca919a2a4457017498eeb0b85ae85e
WebKit JSC JSObject::ensureLength does not check if ensureLengthSlow fails.
83eb99cf5dfbcea5f2d251c4c9514c69e190833a6e6c129179d72e63ff84a076
WebKit suffers from a universal cross site scripting vulnerability via Document::prepareForDestruction and CachedFrame.
76f58739c3089ac68ae118c90504fca22a2e35012d6af4a2916f8843bee8a89b
Digital Whisper Electronic Magazine issue 82. Written in Hebrew.
ae704545932ba77eaf0296d1017d29244f7788ffec0a88c196a136560d183ed7