Posted by Milos Krasojevic on Jun 02
Hi all,
This is our Call for Papers for 3rd Balkan Computer Congress. It would
be awesome to see many submissions from you guys.
Call for Papers for 3rd Balkan Computer Congress – BalCCon2k15
11|12|13 September 2015, Novi Sad, Vojvodina, Serbia, Europe, Earth,
Milky Way
=========
The Event
=========
Balkan Computer Congress has been conceptualized as a three days
gathering of the international hacker community in the…
Posted by DAU Huy Ngoc on Jun 02
Hello list,
Here are two CVEs I reported to Freebox, a french ISP:
– CVE-2014-9382 – CSRF in VPN user account creation
– CVE-2014-9405 – XSS
Vulnerable product: Freebox OS Web interface 3.0.2.
CVE-2014-9382 – CSRF in Freebox OS Web interface 3.0.2 allowing VPN user
account creation
====================
Risk level: High
Freebox allows users to create VPN connections to their home network.
In version 3.0.2 when a new user is created, the…
Posted by Genevieve Southwick on Jun 02
————————BEGIN TRANSMISSION——————–
**SOURCE Dublin 2015 Call for Papers is Open!**
SOURCE Dublin
Training September 5-6, 2015
Conference September 7-8, 2015
Trinity College
Submit at: https://sourcedublin2015.busyconf.com/proposals/new
**What is SOURCE?**
SOURCE Conference brings security experts and business professionals
together in an intimate and personal environment to discuss the security
industry’s most…
This archive contains 169 exploits that were added to Packet Storm in May, 2015.
The session.flush function in the cached_db backend in Django 1.8.x before 1.8.2 does not properly flush the session, which allows remote attackers to hijack user sessions via an empty string in the session key. (CVSS:5.0) (Last Update:2015-06-03)
Multiple vulnerabilities were discovered in the dissectors/parsers for
LBMR, web sockets, WCP, X11, IEEE 802.11 and Android Logcat, which could
result in denial of service.
Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. x86_64 version.