Security News

Vuln: Multiple Symantec Products CVE-2018-12239 Local Security Bypass Vulnerability

Security Focus Vulnerabilities - 28 November, 2018 - 00:00
Multiple Symantec Products CVE-2018-12239 Local Security Bypass Vulnerability

Vuln: Multiple Symantec Products CVE-2018-12238 Local Security Bypass Vulnerability

Security Focus Vulnerabilities - 28 November, 2018 - 00:00
Multiple Symantec Products CVE-2018-12238 Local Security Bypass Vulnerability

Vuln: Schneider Electric Software Update CVE-2018-7799 DLL Loading Local Code Execution Vulnerability

Security Focus Vulnerabilities - 28 November, 2018 - 00:00
Schneider Electric Software Update CVE-2018-7799 DLL Loading Local Code Execution Vulnerability

Vuln: Samba CVE-2018-16851 Remote Denial of Service Vulnerability

Security Focus Vulnerabilities - 27 November, 2018 - 00:00
Samba CVE-2018-16851 Remote Denial of Service Vulnerability

Vuln: Samba CVE-2018-16853 Remote Denial of Service Vulnerability

Security Focus Vulnerabilities - 27 November, 2018 - 00:00
Samba CVE-2018-16853 Remote Denial of Service Vulnerability

Vuln: Samba Security Bypass and Denial of Service Vulnerabilities

Security Focus Vulnerabilities - 27 November, 2018 - 00:00
Samba Security Bypass and Denial of Service Vulnerabilities

Vuln: Samba CVE-2018-16841 Remote Denial of Service Vulnerability

Security Focus Vulnerabilities - 27 November, 2018 - 00:00
Samba CVE-2018-16841 Remote Denial of Service Vulnerability

Vuln: Samba CVE-2018-14629 Remote Denial of Service Vulnerability

Security Focus Vulnerabilities - 27 November, 2018 - 00:00
Samba CVE-2018-14629 Remote Denial of Service Vulnerability

Vuln: Multiple Pivotal Cloud Foundry Products CVE-2018-15759 Access Bypass Vulnerability

Security Focus Vulnerabilities - 27 November, 2018 - 00:00
Multiple Pivotal Cloud Foundry Products CVE-2018-15759 Access Bypass Vulnerability

[SECURITY] [DSA 4344-1] roundcube security update

Bug Traq - 26 November, 2018 - 08:23

Posted by Salvatore Bonaccorso on Nov 26

-------------------------------------------------------------------------
Debian Security Advisory DSA-4344-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
November 24, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : roundcube
CVE ID : CVE-2018-19206

Aidan Marlin...

[SECURITY] [DSA 4343-1] liblivemedia security update

Bug Traq - 26 November, 2018 - 08:20

Posted by Moritz Muehlenhoff on Nov 26

-------------------------------------------------------------------------
Debian Security Advisory DSA-4343-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
November 23, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : liblivemedia
CVE ID : CVE-2018-4013

It was...

Re: CTFs

Daily Dave - 20 November, 2018 - 11:14

Posted by Jordan Wiens on Nov 20

For more context for those that haven't seen it, here's the game we made
for the CTF:

https://sourcery.pwnadventure.com/

We're continuing our quest to make hacking a first-class video game
mechanic. Now, instead of hacking the game itself to win, you hack inside
the game using in-game elements.

Re: CTFs

Daily Dave - 20 November, 2018 - 11:12

Posted by Arun Koshy on Nov 20

It's reasonable posture to never go to cons with any devices that you
care about or has actual telemetry on you or your org in any way. Not
sure why most of the industry does not follow the standard above.

Re: CTFs

Daily Dave - 20 November, 2018 - 11:10

Posted by Edward Prevost on Nov 20

If I'm understanding correctly, you're proposing to setup a system, at it's hardened state, and upon arrival all
attendees are made aware of the access particulars and details of said system, and then encouraged to assail it? If so,
this sounds great... kind of like "CommunityCrowdSourcing", for fun.

I'll note, the one thing that makes the CTF at DEFCON enjoyable for most observers, is the graphical displays....
Syndicate content