How Attackers Steal Private Keys from Digital Certificates
Regular readers of the Symantec blog may sometimes read blogs that mention a fraudulent file that is signed with a valid digital certificate or that an attacker signed their malware with a stolen...
View ArticleTeamSHATTER Security Advisory: SQL Injection in Oracle EM...
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1TeamSHATTER Security AdvisorySQL Injection in Oracle Enterprise Manager (advReplicationAdmin)February 20, 2013Risk Level:HighAffected versions:Oracle...
View ArticleTeamSHATTER Security Advisory: SQL Injection in Oracle EM (dBClone)...
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1TeamSHATTER Security AdvisorySQL Injection in Oracle Enterprise Manager (dBClone)February 20, 2013Risk Level:HighAffected versions:Oracle Enterprise Manager...
View ArticleTeamSHATTER Security Advisory: SQL Injection in Oracle EM (SCPLBL_COLLECTED...
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1TeamSHATTER Security AdvisorySQL Injection in Oracle Enterprise Manager (SCPLBL_COLLECTED parameters)February 20, 2013Risk Level:HighAffected versions:Oracle...
View ArticleTeamSHATTER Security Advisory: SQL Injection in Oracle EM (streams queue)...
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1TeamSHATTER Security AdvisorySQL Injection in Oracle Enterprise Manager (streams queue)February 20, 2013Risk Level:HighAffected versions:Oracle Enterprise...
View ArticleTeamSHATTER Security Advisory: Oracle EM Segment Advisor Arbitrary URL...
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1TeamSHATTER Security AdvisoryOracle Enterprise Manager Segment Advisor Arbitrary URL redirection/phishingvulnerabilityFebruary 20, 2013Risk...
View ArticleTeamSHATTER Security Advisory: SQL Injection in Oracle EM (Resource Manager)...
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1TeamSHATTER Security AdvisorySQL Injection in Oracle Enterprise Manager (Resource Manager)February 20, 2013Risk Level:HighAffected versions:Oracle Enterprise...
View ArticleGet yourself your own Honeyspider Network virtual machine here
DownloadAll binary packages required for Honeyspider Network 2 deployment are delivered in form of Debian packages. To ease installation process a package repository was created. Please use the...
View ArticleTeamSHATTER Security Advisory: Cross-site scripting in Oracle EM...
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1Cross-site scripting in Oracle Enterprise Manager (advReplicationAdmin)TeamSHATTER Security AdvisoryFebruary 20, 2013Risk Level:HighAffected versions:Oracle...
View ArticleSamsung Galaxy S3 partial screen-lock bypass
MTI Technology Vulnerability Research Teamwww.mti.com ukpentestinfo"at"mti.comSamsung Galaxy S3 partial screen-lock bypassDate found:17th Feb 2012Vendor Notified:20th Feb 2012Vendor Affected:...
View Articlenagios metacharacter filtering omission
Summary:---------------CVE-ID: CVE-2013-1362CVSS: Base Score 7.5CVSS2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:UC/CDP:N/TD:N/CR:L/IR:L/AR:LVendor: NagiosAffected Products: NRPEAffected...
View ArticleLinux kernel: Bluetooth HIDP information disclosure
Linux kernel built with Bluetooth stack and HIDP support HCONFIG_BT=y/m & CONFIG_BT_HIDP=y/m is vulnerable to an information disclosure flaw caused by wrongly initializing the hid_device->name,...
View ArticleSamsung Galaxy S3 partial screen-lock bypass
MTI Technology Vulnerability Research Teamwww.mti.com ukpentestinfo"at"mti.comSamsung Galaxy S3 partial screen-lock bypassDate found:17th Feb 2012Vendor Notified:20th Feb 2012Vendor Affected:...
View Articlevarnish world-readable logdir
varnish[1], an high-performance HTTP accelerator, has a world-readable log/logdir. # ls -la /var/log/varnish/ total 8 drwxr-xr-x 2 root root 4096 Feb 22 13:48 . drwxr-xr-x 8 root root 4096 Feb 22 13:50...
View Articlesthttpd world-redable logdir
sthttps[1], a fork of thttpd, a small, fast, multiplexing webserver.creates its log as world-redable:# ls -la /var/log/thttpd.log -rw-r--r-- 1 thttpd thttpd 0 Feb 22 14:05 /var/log/thttpd.log It should...
View ArticleCVE-2013-0162 rubygem-ruby_parser: incorrect temporary file usage / Public...
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1This is a relatively minor issue, hence no embargo.Michael Scherer (mscherer () redhat com) of Red Hat found:Looking for incorrect /tmp/ usage, I found the...
View Articlewebfs world-readable log
webfs[1], a Lightweight HTTP server for static content creates its log with world-readable permission:# ls /var/log/webfsd.log -la-rw-r--r-- 1 root root 0 Feb 22 14:02 /var/log/webfsd.logthe upstream...
View ArticleTECNOMEGA SQL Injection Vulnerability
# Exploit Title: TECNOMEGA / SQL Injection Vulnerability# Date: 21/02/2013# Exploit Author: Diego_Asencio | | r4z0r_bl4ck# Twitter: @ r4z0r_bl4ck# Blog: http://r4z0rbl4ck.wordpress.com/# Vendor...
View ArticleComment Group Cyber Espionage: Additional Information & Clarification
A cyber espionage threat group, frequently known as the Comment Group, has recently received a good bit of extra attention in the last few days. On Monday (February 18, 2013) Mandiant released a report...
View ArticleApkscan: Live Android Malware Analysis
Mobile devices are more and more seen as nice targets from attackers’ point of view. Which is easily understandable: the market is exploding and people still don’t realize that a mobile device is not...
View Article