Monthly Archives: March 2017
Adium 1.5.10.2 libpurple Code Execution
Adium version 1.5.10.2 includes a vulnerable version of libpurple that permits for arbitrary code execution on the client.
SAP NetWeaver UMEADMIN 7.50 Directory Creation
SAP NetWeaver UMEADMIN versions 7.00 through 7.50 suffer from a flaw where an authenticated user, via web administration, can trigger directory creation anywhere where the SAP OS user has access.
Searching for Leaked Celebrity Photos? Don't Blindly Click that Fappening Link!
Are you curiously googling or searching torrents for nude photos or videos of Emma Watson, Amanda Seyfried, Rose McGowan, or any other celebrities leaked in The Fappenning 2.0?
If yes, then beware, you should not click any link promising Fappenning celebrity photos.
Cybercriminals often take advantage of news headlines in order to trap victims and trick them into following links that may
Increasing Digital Clutter Leaves Consumers Exposed, Kaspersky Lab Study Reveals
Kaspersky Lab today announced a new report, which highlights consumers’ attitudes and behaviors toward their digital clutter, and how a lack of app maintenance could leave devices vulnerable to security threats.
Kaspersky Security for Storage Certified with Dell EMC FluidFS v6
Today, Kaspersky Lab, a longtime member of Dell EMC’s Technology Partner Program, has completed certification of Kaspersky Security for Storage with Dell EMC FluidFS v6.
The malware business: Today’s top get-rich-quick scheme, funded by YOU
Have you ever been tempted by one of those ads promising “You can earn $20,000 a month by working from home just 4 hours a day!”? Most of us probably have, even for a moment.
Adium vulnerable to remote code execution via libpurple
Posted by erythronium23 on Mar 21
Adium is a popular instant messaging client for MacOS (OSX) that
incorporates libpurple. The current release (1.5.10.2) is vulnerable
to CVE-2017-2640 in libpurple, which permits execution of arbitrary
code on the client.
The Adium team has been aware of the vulnerability since at least
March 15, but has not released an advisory to its users, for reasons
unknown.
A post to the official developer’s mailing list, which included
vulnerability…
Bugtraq: CVE-2017-7183 ExtraPuTTY v029_RC2 TFTP Denial Of Service
CVE-2017-7183 ExtraPuTTY v029_RC2 TFTP Denial Of Service
Bugtraq: [security bulletin] HPSBUX03596 rev.2 – HPE HP-UX running CIFS Server (Samba), Remote Access Restriction Bypass, Unauthorized Access
[security bulletin] HPSBUX03596 rev.2 – HPE HP-UX running CIFS Server (Samba), Remote Access Restriction Bypass, Unauthorized Access