RFIDIOt is a python library for exploring RFID devices. It currently drives a couple of RFID readers made by ACG, called the HF Dual ISO and the LFX. Includes sample programs to read/write tags and the beginnings of library routines to handle the data structures of specific tags like MIFARE(r).
e590d82082812428adeeae4ba62e1f3a0c9d9c718996d59b26e0d4ea07d2e18b
Secunia Security Advisory - Steven J. Murdoch has discovered a weakness in WordPress, which can be exploited by malicious people to bypass certain security restrictions.
42cda88fe794d3ce1dbca1bed7eba0e9b9f32c3f56de678de7df803d09955997
Secunia Security Advisory - Greg Linares has reported a vulnerability in BitDefender Online Scanner, which can be exploited by malicious people to compromise a user's system.
24182d6f32ce802c5c657343effd136ebb97721e15993c06ee231bc93c5bdce8
Secunia Security Advisory - Fedora has issued an update for net-snmp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
16b56774e4cb306c16a081c1a9bbe23088851f12cb4996af9381ee6afa1501b4
Secunia Security Advisory - A vulnerability has been reported in Ability Mail Server, which potentially can be exploited by malicious users to cause a DoS (Denial of Service).
4e0b56b2fb74dc14221ad3b40b27d4ae427827cf0458fc78a4cfa4321cd31ec3
Secunia Security Advisory - Mandriva has issued an update for tetex. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose and manipulate sensitive information, and by malicious people to potentially compromise a user's system.
89c0305f8b9595a42a1526722b1b9b4a10f5b48271946a92dff0381ab18130fb
Secunia Security Advisory - Gentoo has issued an update for pcre. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose sensitive information, or potentially compromise an application using the library.
d1ebb93796bf4af4842d581a54af5485de618ac2124fc8c9fe8baa216c3597f6
Debian Security Advisory 1414-1 - Several remote vulnerabilities have been discovered in the Wireshark network traffic analyzer, which may lead to denial of service or the execution of arbitrary code.
ccf0ec8858413ea8ba12161a134650d2ab14dcf76e34fc09567a209ac90f8b8c
Ubuntu Security Notice 547-1 - Tavis Ormandy and Will Drewry discovered multiple flaws in the regular expression handling of PCRE. By tricking a user or service into running specially crafted expressions via applications linked against libpcre3, a remote attacker could crash the application, monopolize CPU resources, or possibly execute arbitrary code with the application's privileges.
66bc5ad0bb37a4068f3555dae6e8753ea5e7fa341175c53f8af72d6e933363b5
Ubuntu Security Notice 546-1 - It was discovered that Firefox incorrectly associated redirected sites as the origin of "jar:" contents. A malicious web site could exploit this to modify or steal confidential data (such as passwords) from other web sites. Various flaws were discovered in the layout and JavaScript engines. By tricking a user into opening a malicious web page, an attacker could execute arbitrary code with the user's privileges. Gregory Fleischer discovered that it was possible to use JavaScript to manipulate Firefox's Referer header. A malicious web site could exploit this to conduct cross-site request forgeries against sites that relied only on Referer headers for protection from such attacks.
eea6986dd7177cff71510c5348f3b44123fb42e4e12c02afbd9a3deb373ed2bf
Ubuntu Security Notice 545-1 - Alin Rad Pop discovered that AbiWord's Link Grammar parser did not correctly handle overly-long words. If a user were tricked into opening a specially crafted document, AbiWord, or other applications using Link Grammar, could be made to crash.
a5a8f33da1eaca717263cb7c2283a7e90f12b33b29d48aa6dd112c792c61bc3d
Call for papers for the 4th edition of the best Polish IT security conference, CONFIDENCE 2008, which is taking place on May 16th and May 17th, 2008.
6e6a53d1b5a4df04f259db8b65e806c3df32a718b30805f615cec6da414c27d8
FIGIS suffers from a bypass vulnerability due to a SQL injection vulnerability.
e00f3f9a2f8b067340a5a276a896df5bc431239402262fdf194e52282330e383
A vulnerability allows attackers to arbitrarily access and modify the file system and registry of vulnerable installations of Computer Associates BrightStor ARCserve Backup. Authentication is not required to exploit this vulnerability.
89357d202a32023d98793264bbd1c28ee69a7876f29b486362f1a58bd9882ed5
The JLMForo System is susceptible to a cross site scripting vulnerability in modificarPerfil.php.
2e3ce3f62773940bab5fe8a5fe48c88572512a3f30a8ff76413c48bf61e6e631
SafeNet Inc.'s Sentinel Protection Server and Sentinel Keys Server products include web servers which are vulnerable to directory traversal attacks. Full details provided.
f7f6354ebed49f68c99bbd67e5995748deda4a1778bd64afdf085e8b40571d30
PHP-Nuke NSN Script Depository module versions 1.0.0 and below suffer from a remote source disclosure vulnerability.
144e75cbe059096e21d1f91bec2591c86ff0521111f4e18723c060b1380f5898
Tilde CMS versions 4.x and below suffer from a SQL injection vulnerability.
725a638d7ecc580efaf52369d616b6fc55fd38bc964bc6bd22c0183388524d10
DeluxeBB versions 1.09 and below remote change exploit that manipulates user or administrative e-mail addresses.
5da43e9f15ffbc70123fadf0e8612e483a9df4701240901e0af770b647d0ad26
Debian Security Advisory 1413-1 - Several vulnerabilities have been found in the MySQL database packages with implications ranging from unauthorized database modifications to remotely triggered server crashes.
3004a57524df98d6976c1c2e06fe87754fe4a48eaf25d9d14ca11b341229fb84
Calendar Proverbs versions 1.1 and below suffer from a remote SQL injection vulnerability in caladmin.php.
aae914c780e7c772a99ba22c6203bb28734a38a18d6950ecb826cbe2c276e0e7
SimpleGallery version 0.1.3 suffers from a cross site scripting vulnerability in index.php.
6580f5abeab864b81edd8b074f98a1c88bda24b5bb8468cec8ebe8bc73a20275
PHPSlideShow suffers from a cross site scripting vulnerability in toonchapter8.php.
e0f9129785e7117c6829b61979e82ea7e0c7a77f0a6efb2aaf82709e3de8dca2
FMDeluxe suffers from a cross site scripting vulnerability in index.php.
62767f5fd0894bfdabb3f347723981a5dfb02e0f6030c7149dea69d619065b85
Secunia Security Advisory - Slackware has issued an update for mozilla-thunderbird. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
f5c40b4b33ce922c7330a668e7c566a51fce90dc4743dd8f955593ed281baaaa