Posted by ERPScan inc on Feb 12

Application: SAP PCo
Versions Affected: SAP PCo 2.2, 2.3, 15.0, and 15.1
Vendor URL: http://SAP.com
Bugs: DoS
Send: 05.09.2015
Reported: 05.09.2015
Vendor response: 06.09.2015
Date of Public Advisory: 20.11.2015
Reference: SAP Security Note 2238619
Author: Mathieu Geli (ERPScan)

Description

1. ADVISORY INFORMATION
Title: SAP PCo
Advisory ID: [ERPSCAN-15-032]
Risk: high
Advisory URL:…

Posted by Vitor Silva on Feb 12

So a year back I was massively scanning internet. This case ISPs IPs blocks where you can find easily at RIPE for
example.
Then I found some interesting hosts where SMB were open and the ACL is totally open to root file system with the same
netbios name.
All file system is writable.

I was able to find some software of WinREST https://www.grupopie.com/frontoffice.html so I was amazed how a system like
this is totaly open.
So what I thought to…

Posted by ERPScan inc on Feb 12

Application: SAP MII
Versions Affected: SAP MII 12.2, 14.0, 15.0
Vendor URL: http://SAP.com
Bugs: Authentication bypass
Send: 05.09.2015
Reported: 05.09.2015
Vendor response: 06.09.2015
Date of Public Advisory: 20.11.2015
Reference: SAP Security Note 2240274
Author: Mathieu Geli (ERPScan)

Description

1….

Posted by Sullo on Feb 12

RVAsec 5 // June 2-3rd, 2016 // Richmond, VA

RVAsec is a Richmond, VA based security convention that brings top industry
speakers to the mid-atlantic region. In its fourth year, RVAsec 2015
attracted nearly 400 security professionals from across the country. For
2016, the conference is a two day and dual-track format, with a mixed focus
on technical and management/business presentations.

All talks must be 55 minutes in length, and submissions…

Posted by Daniel Busch on Feb 12

Folks @ FD!

We will have a Security BSides in Hannover on march 18th.

CFP is open and runs until early march.

Please follow us on twitter @bsideshn

or visit the website bsideshannover.de for more details !

On behalf of the BSides Hannover Team,

Daniel

Posted by Cosmin Maier on Feb 12