Ubuntu Security Notice 2481-1 – Andrew Bartlett discovered that Samba incorrectly handled delegation of authority when being used as an Active Directory Domain Controller. An attacker given delegation privileges could use this issue to escalate their privileges further.
Monthly Archives: January 2015
Slackware Security Advisory – samba Updates
Slackware Security Advisory – New samba packages are available for Slackware 14.1 and -current to fix a security issue.
Ubuntu Security Notice USN-2480-1
Ubuntu Security Notice 2480-1 – Multiple security issues were discovered in MySQL and this update includes a new upstream MySQL version to fix these issues. MySQL has been updated to 5.5.41. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Various other issues were also addressed.
US Government Faces $134,000 Fine For Spoofing Citizen's Facebook Page
Remote Code Execution Vulns Hit Atlassian Kit
Kim Dotcom Takes On Skype With Encrypted Chat Service
Kids Create Cyber Security Education Tool To Tackle Hacking
Zero-day vulnerability in Flash Player exploited by attackers
A zero day vulnerability in Flash is being actively used by cybercriminals, according to Forbes.
The post Zero-day vulnerability in Flash Player exploited by attackers appeared first on We Live Security.
Madonna hacking suspect arrested by Israeli police
Police have arrested a man who allegedly hacked into computer systems and stole unfinished versions of songs from Madonna’s upcoming “Rebel Heart” album.
The post Madonna hacking suspect arrested by Israeli police appeared first on We Live Security.
CVE-2015-1306
The newsletter posting area in the web interface in Sympa 6.0.x before 6.0.10 and 6.1.x before 6.1.24 allows remote attackers to read arbitrary files via unspecified vectors.