Monthly Archives: March 2017

NVD

CVE-2017-5897

Leave a comment

The ip6gre_err function in net/ipv6/ip6_gre.c in the Linux kernel allows remote attackers to have unspecified impact via vectors involving GRE flags in an IPv6 packet, which trigger an out-of-bounds access.

NVD

CVE-2017-5538

Leave a comment

The kbase_dispatch function in arm/t7xx/r5p0/mali_kbase_core_linux.c in the GPU driver on Samsung devices with M(6.0) and N(7.0) software and Exynos AP chipsets allows attackers to have unspecified impact via unknown vectors, which trigger an out-of-bounds read, aka SVE-2016-6362.

Avira

World Cafés with 100 HR leads at Rethink! HR Tech – how to find and retain technical experts?

Leave a comment

World Cafés with 100 HR leads at Rethink! HR Tech – how to find and retain technical experts? Technische Experten

From Big Data Engineers to Experts for Artificial Intelligence – how can you find and retain the sought-after experts? At the renowned Rethink! HR Tech conference I facilitated several World Cafés with nearly 100 HR leads from Germany, Austria, and Switzerland. And here are the core results of their sessions: How do you get the attention […]

The post World Cafés with 100 HR leads at Rethink! HR Tech – how to find and retain technical experts? appeared first on Avira Blog.

Security

Logsign Remote Command Injection

Leave a comment

This Metasploit module exploits an command injection vulnerability in Logsign. By exploiting this vulnerability, unauthenticated users can execute arbitrary code under the root user. Logsign has a publicly accessible endpoint. That endpoint takes a user input and then use it during operating system command execution without proper validation. This Metasploit module was tested against 4.4.2 and 4.4.137 versions.