iSelect version 1.4 suffers from a local buffer overflow vulnerability.
Monthly Archives: January 2017
How To Stop Larry From Hacking Your WiFi in 2017
It’s 2017, and we’re not any further along with Wi-Fi security than we were 10 years ago. There are Intrusion Detection Systems and 2nd generation antivirus apps to protect us from some vulnerabilities but the simple fact that some people and businesses still don’t set their network up well in the first place.
Installing WiFi is like running Ethernet to your parking lot. It’s a cliche thing
Bugtraq: [security bulletin] HPSBGN03689 rev.1 – HPE Diagnostics, Remote Cross-Site Scripting and Click Jacking
[security bulletin] HPSBGN03689 rev.1 – HPE Diagnostics, Remote Cross-Site Scripting and Click Jacking
Bugtraq: [SECURITY] [DSA 3765-1] icoutils security update
[SECURITY] [DSA 3765-1] icoutils security update
Bugtraq: [SECURITY] [DSA 3743-2] python-bottle regression update
[SECURITY] [DSA 3743-2] python-bottle regression update
Bugtraq: [SECURITY] CVE-2016-8748: Apache NiFi XSS vulnerability in connection details dialogue
[SECURITY] CVE-2016-8748: Apache NiFi XSS vulnerability in connection details dialogue
RHSA-2017:0064-1: Important: bind97 security update
Red Hat Enterprise Linux: An update for bind97 is now available for Red Hat Enterprise Linux 5.
Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
CVE-2016-9147
RHSA-2017:0063-1: Important: bind security update
Red Hat Enterprise Linux: An update for bind is now available for Red Hat Enterprise Linux 5 and Red Hat
Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
CVE-2016-9147
RHSA-2017:0062-1: Important: bind security update
Red Hat Enterprise Linux: An update for bind is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
CVE-2016-9131, CVE-2016-9147, CVE-2016-9444
Don't Fall For This Dangerously Convincing Ongoing Phishing Attack
Security researchers have discovered a new phishing campaign targeting Gmail users, which is so convincing and highly effective that even tech-savvy people can be tricked into giving away their Google credentials to hackers.
The attackers first compromise a victim’s Gmail account, and once they are in, they start rifling through inboxes to launch secondary attacks in order to pass on the
