3037 links
  • Nono's Links
  • Home
  • Login
  • RSS Feed
  • ATOM Feed
  • Tag cloud
  • Picture wall
  • Daily
Links per page: 20 50 100
◄Older
page 1 / 3
48 results tagged infosec x
  • Google, Intel Warn on ‘Zero-Click’ Kernel Bug in Linux-Based IoT Devices
    Gloups
    October 15, 2020 at 6:45:39 AM GMT+2 - permalink -
    QRCode
    - https://threatpost.com/google-intel-kernel-bug-linux-iot/160067/
    infosec security
  • New Wi-Fi Encryption Vulnerability Affects Over A Billion Devices
    Une bonne explication de Kr00k, la dernière faille en date de WPA2
    February 28, 2020 at 3:54:40 PM GMT+1 - permalink -
    QRCode
    - https://thehackernews.com/2020/02/kr00k-wifi-encryption-flaw.html
    infosec security
  • oss-sec: [CVE-2019-14899] Inferring and hijacking VPN-tunneled TCP connections.
    Tiens, c'est rigolo ca "hijacking VPN-tunneled TCP connections."
    December 6, 2019 at 4:50:21 PM GMT+1 - permalink -
    QRCode
    - https://seclists.org/oss-sec/2019/q4/122
    infosec
  • DSA-2019-137: iDRAC Improper Authorization Vulnerability
    In case you have your iDRAC available publicly ... (Hi NordVPN ;-) )
    November 8, 2019 at 11:17:50 AM GMT+1 - permalink -
    QRCode
    - https://www.dell.com/support/article/sln319317/dsa-2019-137-idrac-improper-authorization-vulnerability?lang=en
    infosec
  • New PHP Flaw Could Let Attackers Hack Sites Running On Nginx Servers
    a website is vulnerable, if:

        NGINX is configured to forward PHP pages requests to PHP-FPM processor,
        fastcgi_split_path_info directive is present in the configuration and includes a regular expression beginning with a '^' symbol and ending with a '$' symbol,
        PATH_INFO variable is defined with fastcgi_param directive,
        There are no checks like try_files $uri =404 or if (-f $uri) to determine whether a file exists or not.
    October 26, 2019 at 11:56:36 PM GMT+2 - permalink -
    QRCode
    - https://thehackernews.com/2019/10/nginx-php-fpm-hacking.html
    infosec
  • Another libssh2 integer overflow (CVE-2019-17498) | Semmle Blog
    ah, le premier qui soit si clair, je cite :
    This is not a vulnerability in openssh, so it doesn't affect the ssh that we all use every day. libssh2 is a client-side C library, which enables applications to connect to an SSH server. This also isn't a vulnerability in libssh, which is an unrelated C library which provides similar functionality to libssh2.
    October 23, 2019 at 11:50:47 AM GMT+2 - permalink -
    QRCode
    - https://blog.semmle.com/libssh2-integer-overflow-CVE-2019-17498/
    infosec
  • https://www.openssh.com/txt/release-8.1
    Bon, c'est pas comme si c'etait tous les jours, mais les certif CA généré par default avec ssh-keygen v8.1 ne seront plus compatible avec OpenSSH < 7.2
    October 14, 2019 at 7:31:52 PM GMT+2 - permalink -
    QRCode
    - https://www.openssh.com/txt/release-8.1
    infosec
  • oss-sec: Sudo: CVE-2019-14287
    Bon, dans le doute, on patch sudo hein ;-)
    October 14, 2019 at 7:00:04 PM GMT+2 - permalink -
    QRCode
    - https://seclists.org/oss-sec/2019/q4/18
    infosec
  • CVE - CVE-2019-16701
    Vu la réponse de PFsense sur twitter (see https://twitter.com/CVEnew/status/1176900464643887109 ) on va dire que c'est *DISPUTED* :)
    September 26, 2019 at 11:57:43 AM GMT+2 - permalink -
    QRCode
    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16701
    infosec
  • [Unpatched] Critical 0-Day RCE Exploit for vBulletin Forum Disclosed Publicly
    J'espère que vous utilisez pas vBulletin. Joli POC cela dit :)
    Edit: on patch https://threatpost.com/exploits-critical-vbulletin-rce-bug/148712/
    September 25, 2019 at 8:22:56 AM GMT+2 * - permalink -
    QRCode
    - https://thehackernews.com/2019/09/vbulletin-zero-day-exploit.html
    infosec
  • VMSA-2019-0014
    Je suis pas contre qu'on me l'explique celle-là...
    EDIT: Ils ont enlevé la note; tout le monde est affecté
    September 20, 2019 at 10:29:29 AM GMT+2 * - permalink -
    QRCode
    - https://www.vmware.com/security/advisories/VMSA-2019-0014.html
    infosec
  • Exim TLS Flaw Opens Email Servers to Remote 'Root' Code Execution Attacks
    Si vous utilisez Exim (pourquoi?) patchez !
    September 6, 2019 at 4:56:08 PM GMT+2 - permalink -
    QRCode
    - https://thehackernews.com/2019/09/exim-email-server-vulnerability.html
    infosec
  • Half of Android Handsets Susceptible to Clever SMS Phishing Attack | Threatpost
    and that's why I'm not using Bank app on my mobile ...
    September 5, 2019 at 9:14:55 AM GMT+2 - permalink -
    QRCode
    - https://threatpost.com/half-of-android-handsets-susceptible-to-clever-sms-phishing-attack/147988/
    infosec
  • XKCD Forum Hacked – Over 562,000 Users’ Account Details Leaked
    Oh non :(
    September 4, 2019 at 10:02:18 AM GMT+2 - permalink -
    QRCode
    - https://thehackernews.com/2019/09/xkcd-forum-hacked.html
    infosec
  • Android PDF app with just 100m downloads caught sneaking malware into mobes • The Register
    Désinstallez l'application CamScanner si vous l'avez sur votre mobile android !
    PS: L'application notebloc (sur F-Droid) la remplace à merveille !
    via https://sebsauvage.net/links/?RaYzMw
    August 28, 2019 at 11:02:41 AM GMT+2 - permalink -
    QRCode
    - https://www.theregister.co.uk/2019/08/28/camscanner_android_malware/
    infosec
  • CVE - CVE-2019-15316
    Attention aux utilisateurs de Steam, une élévation de privilège dans la version actuelle de Steam (hors beta, qui est corrigé). voir aussi https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15315
    August 22, 2019 at 4:24:03 PM GMT+2 - permalink -
    QRCode
    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15316
    infosec
  • Hackers Planted Backdoor in Webmin, Popular Utility for Linux/Unix Servers
    Ah sympa ca :) popcorn time !
    August 20, 2019 at 11:19:36 AM GMT+2 - permalink -
    QRCode
    - https://thehackernews.com/2019/08/webmin-vulnerability-hacking.html
    infosec
  • Say Cheese: Ransomware-ing a DSLR Camera - Check Point Research
    Bon, patchez vos APN Canon les gens ;-)
    August 14, 2019 at 12:24:02 PM GMT+2 - permalink -
    QRCode
    - https://research.checkpoint.com/say-cheese-ransomware-ing-a-dslr-camera/
    infosec
  • Google Discloses 20-Year-Old Unpatched Flaw Affecting All Versions of Windows
    ah, c'est joli ca :)
    August 14, 2019 at 11:09:12 AM GMT+2 - permalink -
    QRCode
    - https://thehackernews.com/2019/08/ctfmon-windows-vulnerabilities.html
    infosec
  • Intezer - EvilGnome: Rare Malware Spying on Desktop Users
    Tiens tiens tiens, (enfin?) un malware qui cible les Desktop sous linux (Gnome).
    July 17, 2019 at 5:52:43 PM GMT+2 - permalink -
    QRCode
    - https://www.intezer.com/blog-evilgnome-rare-malware-spying-on-linux-desktop-users/
    infosec
Links per page: 20 50 100
◄Older
page 1 / 3
Shaarli - The personal, minimalist, super-fast, database free, bookmarking service by the Shaarli community - Help/documentation