Privilege Escalation in SAP Healthcare Industry Solution
[ESNC-2013-001] Privilege Escalation in SAP Healthcare Industry SolutionPlease refer to www.esnc.de for the original security advisory, updates andadditional...
View ArticlePrivilege Escalation in SAP Production Planning and Control
[ESNC-2013-002] Privilege Escalation in SAP Production Planning and ControlPlease refer to www.esnc.de for the original security advisory, updates andadditional...
View ArticleRemote OS Command Execution in SAP BASIS Communication Services
[ESNC-2013-003] Remote OS Command Execution in SAP BASIS CommunicationServicesPlease refer to www.esnc.de for the original security advisory, updates andadditional...
View Article“Threat Intelligence”, not always that intelligent.
I’ve been in the security arena for some time now, like many of my friends and colleagues. For over a decade, we have been presented with several vendors that deliver yearly reports summarizing various...
View Article[RHSA-2013:0747-01] Moderate: kernel security and bug fix update
===================================================================== Red Hat Security AdvisorySynopsis: Moderate: kernel security and bug fix updateAdvisory ID:...
View Article[RHSA-2013:0748-01] Moderate: krb5 security update
===================================================================== Red Hat Security AdvisorySynopsis: Moderate: krb5 security updateAdvisory ID:...
View ArticleHouse votes to boost government cyber protection, cyber research
The House on Tuesday afternoon passed three bills aimed at updating the federal government's cybersecurity controls, and boosting research and education in information technology fields.None of the...
View Article[RHSA-2013:0741-01] Important: kernel security and bug fix update
===================================================================== Red Hat Security AdvisorySynopsis: Important: kernel security and bug fix updateAdvisory ID:...
View Article[RHSA-2013:0749-01] Important: apache-cxf security update
===================================================================== Red Hat Security AdvisorySynopsis: Important: apache-cxf security updateAdvisory ID:...
View ArticleDetails of issues fixed by Java SE 7 Update 21
Today, Oracle released Java SE 7 Update 21, which among otherthings addresses six security vulnerabilities that were reportedto the company earlier this year (Issues 51, 55 and 57-60).Our original...
View ArticleHow to protect your computer against dangerous Java Applets
Java exploits represent a common attack vector used by the bad guys to infiltrate vulnerable computers via the web browser. We wrote about the rise of Java exploits as early as 2010, and we haven't...
View ArticleZPanel arbitrary code execution + root escalation vulnerability
There's an arbitrary (PHP) code execution in ZPanel, a free andopen-source shared hosting control panel. Using the included zsudobinary, access can be escalated and commands can be run as root.The...
View ArticleMultiple vulnerabilities in PHP Address Book v8.2.5
There is a SQL injection vulnerability and reflected XSS in Simple PHPAddress Book v8.2.5.The 2 vulnerabilities had been assigned the CVE identifier CVE-2013-1748(SQLi) & CVE-2013-1749 (XSS)...
View ArticleMultiple Vulnerabilities in Simple HRM system v2.3 and below
There is a Blind SQL injection vulnerability and Cookie IntegrityProtection Vulnerability in Simple HRM system v2.3 and below.The 2 vulnerabilities had been assigned the CVE identifier CVE-2013-2498and...
View ArticleUsing DNS in Metasploit BackDoors
We use a DNS because our external IP changes every time. So a normal reverse_tcp connects like this.Victim’s internal IP—>Victim’s external IP—> Attacker’s external IP—> Attacker’s Internal...
View ArticleData Loss Protection a Priority among Asia-Pacific Enterprises as Cyber...
Increasing enterprise dependence on technology drives demandSINGAPORE, April 17, 2013 /PRNewswire/ -- The urgent need for organizations to protect sensitive data in the face of sophisticated cyber...
View ArticleEyeVerify Accelerates Leadership Position in Mobile Security With Third...
Also Announced New Milestone Reached in Eyeprint AccuracySAN FRANCISCO, CA--(Marketwired - Apr 17, 2013) - EyeVerify today announced that it has received a Notice of Allowance from the U.S. Patent and...
View ArticleArmor5 Debuts First 'Zero Touch' BYOD Mobile Security Service at DEMO Mobile...
Mobile Workforces Gain Instant Access to All Their Apps, Data and Content From Any Device, While Enterprises Are Protected From Data Loss, Security Breaches and Compliance LiabilitiesSAN FRANCISCO,...
View ArticleCatbird® Leads Software-Defined Security With New Release of vSecurity
Catbird Opens European Headquarters to Help Datacenters Meet Compliance and Security StandardsSCOTTS VALLEY, CA--(Marketwired - Apr 17, 2013) - Catbird®, the pioneer in security and compliance for...
View Article40% of Companies Have Lost Major Sales Opportunities Because They Couldn't...
Meanwhile, 46% Admitted to Bypassing Security to Get Their Job Done, and 40% Admitted That if They Were Breached No One Would NoticeCUPERTINO, CA--(Marketwired - Apr 17, 2013) - Research conducted by...
View Article