A Denial of Service in Intel Ethernet Controller’s X710/XL710 with Non-Volatile Memory Images before version 5.05 allows a remote attacker to stop the controller from processing network traffic working under certain network use conditions.
Monthly Archives: January 2017
Hello Kitty Database of 3.3 Million Breached Credentials Surfaces
A database of 3.3 million Hello Kitty users tied to a 2015 breach surfaced over the weekend exposing thousands of minors to potential credential theft.
Gentoo Linux Security Advisory 201701-16
Gentoo Linux Security Advisory 201701-16 – Multiple vulnerabilities have been found in libTIFF, the worst of which may allow execution of arbitrary code. Versions less than 4.0.7 are affected.
DirectAdmin Control Panel 1.50.1 Cross Site Scripting
DirectAdmin Control Panel version 1.50.1 suffers from a cross site scripting vulnerability.
RHBA-2017:0029-1: Red Hat Certification bug fix and enhancement update
Red Hat Enterprise Linux: An updated redhat-certification package that fixes several bugs and adds various
enhancements is now available for Red Hat Enterprise Linux 6 and Red Hat
Enterprise Linux 7.
moodle-3.2.1-1.el7
3.2.1
CVE-2016-10125
D-Link DGS-1100 devices with Rev.B firmware 1.01.018 have a hardcoded SSL private key, which allows man-in-the-middle attackers to spoof devices by hijacking an HTTPS session.
Man pleads guilty to role in harassment scheme against senior US government officials
Justin Liverman, a student from North Carolina, has admitted collaborating in a harassment scheme targeting US officials and their families.
The post Man pleads guilty to role in harassment scheme against senior US government officials appeared first on WeLiveSecurity
GNU Transport Layer Security Library 3.3.26
GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.
Brave Browser Address Bar Spoofing
Brave Browser suffers from an address bar spoofing vulnerability. iOS version 1.2.16 (16.09.30.10) and Android version 1.9.56 is affected.