|
|
|
Who's Online
There are 207 unregistered users and 1 registered user on-line.
You can log-in or register for a user account here.
Main Menu
Top Stories for Today
[375] 8 weird but cool Android apps
[249] Sun’s open source chief leaves after Oracle merger [197] Schneier: Fight for privacy or kiss it good-bye [195] No Trace: How to Completely Erase Your Hard Drives, SSDs and USB Drives [180] Four over-rated security technologies [178] Douglas Duchak charged over bid to damage US security database [170] The top 10 geek anthems of all time [154] Zeus Botnet Dealt a Blow as ISP Troyak Knocked out [150] EFF knocks Apple's 'secret' restrictive developer agreement [150] How deep can Intel get inside the smart grid? [137] No-Fly List Includes the Dead [137] New Gestures coming to iPhone/iPad: Triple tap and long press [129] ARM Expects 50 Tablet Devices to Hit the Market This Year [121] F-Secure: Hackers love to exploit PDF bugs [121] Google Street View to cover 96 per cent of UK roads from tomorrow [119] Soft skills lacking in candidate-rich market [113] Android native development kit updated [113] Reader exploit prompts Adobe update alert [112] 'Jihad Jane' Exposes Web's Dark Side [110] Twitter Becomes More Proactive About Phishing [105] LED lights may be the future of broadband [105] Turkish police detain 23 PKK hackers in 13 provinces [101] New Zealand's internet filter goes live [92] 12% of employees knowingly violate company IT policies [87] Our Apps Are Vulnerable -- And Constantly Attacked
Top 20 of the Last 2 Weeks
[1530] 6 Free Android Apps That Will Make You Drop Your iPhone
[1402] North Korea develops its own OS [1221] Teen gets 15 years for Facebook blackmail [1210] Porn Detection Stick seeks out salacious images [1077] Legal team hack Xbox memory for defence evidence [1063] Should CIOs look at virtual desktops? [1049] How hackers took down Baidu [1047] Steve Jobs says Apple must 'think big' with $40 billion in cash [1037] 7 of the Best Free Linux Configuration Management Tools [1018] Analyst thinks Apple may update MacBook Pro laptop [875] Mastermind of World's Worst Computer Virus Still at Large [796] Korean couple addicted to virtual life let real-life baby starve to death [759] Chinese man held by police over sex video clips [689] Run a Background Check on Yourself with Free Online Tools [679] 'Severe' OpenSSL vuln busts public key crypto [662] BITSTALKER: Accurately and effectively monitoring BitTorrent traffic [647] Saudi Arabia wants to monitor all BlackBerry communications for 'security' [638] Confessions of a Windows 7 pirate [631] HSBC ramps up online banking security [608] Backtrack on Steroids
Past Articles
Hosting Provided By
|
HITB E-Zine ArchiveArchive for 2000
Issue #1 Archive for 2001
Issue #13 Archive for 2002
Issue #25 Archive for 2003 Archive for 2004 Archive for 2005 |
Login
HITB Ezine
Issue #38
HITBSecConf2010 - Dubai
Register now for the 4th annual deep-knowledge security conference in Dubai!
Keynote 1: John Viega (CTO, SaaS, McAfee Inc.) Keynote 2: Matt Watchinski (Senior Director of Vulnerability Research, Sourcefire Inc.) Conference Speakers (alphabetical order):
1.) Arnauld Mascret (Sogeti / Cap Gemini)
2.) Christophe Devaux (Sogeti / Cap Gemini)
3.) Daniel Mende (ERNW GmbH) 4.) Dino Covotsos (Managing Director, Telspace Systems)
5.) Fredric Raynal (Head of Research, Sogeti/Cap Gemini)
6.) Gynvael Coldwind (Researcher, Hispasec)
7.) Laurent Oudot (Founder, TEHTRI-Security)
8.) Marc Schoenefeld (Independent Network Security Specialist) 9.) Oliver Roeschke (ERNW GmbH) 10.) Saumil Shah (Founder, Net-Square)
11.) Shawn Merdinger (Security Researcher) 12.) The Grugq (Anti Forensics Specialist)
Last 15 Postings to HITB Forum
 Real secure Virtualisation??? Re: mac autehntication and RADIUS Re: mac autehntication and RADIUS Re: mac autehntication and RADIUS mac autehntication and RADIUS Re: Best first language to learn before Assembly Re: Best first language to learn before Assembly Re: Best first language to learn before Assembly Re: I need some security audits done Re: I need some security audits done I need some security audits done Re: Best first language to learn before Assembly Re: Some Security Don'ts for Network Admins Re: A noob, but a dedicated noob Re: A noob, but a dedicated noob
Packet Storm Security Latest
· MDVSA-2010-060.txt
Mandriva Linux Security Advisory 2010-060 - The htcpHandleTstRequest function in htcp.c in Squid 2.x and 3.0 through 3.0.STABLE23 allows remote attackers to cause a denial of service (crash) via crafted packets to the HTCP port, which triggers a NULL pointer dereference. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue. · cookiemonster_v1.6.zip Cookie Monster is a cookie analysis tool written in Python. Cookie Monster will grab cookies from a host and assign each character a number. This number can be used to perform mathematical calculations on the differences in order to find a pattern and see if cookie prediction is possible. · super-vulns.tgz SUPERAntiSpyware and Super Ad Blocker have almost identical device drivers in order to set up hooks and perform other duties from kernel space. These device drivers suffer from lack of validation of parameters passed from user mode. Additionally, some of the functions accessible from user mode are inherently insecure and lead to easy privilege escalation. All vulnerabilities are applicable to both applications. Proof of concept code included with full advisory. · joomlaabout-sql.txt The Joomla About component suffers from a remote SQL injection vulnerability. · USN-908-1.txt Ubuntu Security Notice 908-1 - It was discovered that mod_proxy_ajp did not properly handle errors when a client doesn't send a request body. A remote attacker could exploit this with a crafted request and cause a denial of service. This issue affected Ubuntu 8.04 LTS, 8.10, 9.04 and 9.10. It was discovered that Apache did not properly handle headers in subrequests under certain conditions. A remote attacker could exploit this with a crafted request and possibly obtain sensitive information from previous requests. · MDVSA-2010-059.txt Mandriva Linux Security Advisory 2010-059 - Unspecified vulnerability in Guest Additions in Sun xVM VirtualBox 1.6.x and 2.0.x before 2.0.12, 2.1.x, and 2.2.x, and Sun VirtualBox before 3.0.10, allows guest OS users to cause a denial of service (memory consumption) on the guest OS via unknown vectors. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue. · dsa-2010-1.txt Debian Linux Security Advisory 2010-1 - Several local vulnerabilities have been discovered in kvm, a full virtualization system. · secunia-xnviewdicom.txt Secunia Research has discovered a vulnerability in XnView, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused due to an integer overflow when processing DICOM images with certain dimensions. This can be exploited to cause a heap-based buffer overflow by e.g. tricking a user into opening a specially crafted DICOM file. Version 1.97 is affected.
Topics
· All topics
· AMD News (Feb 23, 2010) · Apple News (Mar 11, 2010) · Articles (Mar 03, 2009) · Ask Us (Feb 01, 2003) · Audio/Video (Mar 11, 2010) · Encryption (Mar 10, 2010) · Games (Mar 09, 2010) · Hardware (Mar 04, 2010) · HITB News (Feb 09, 2010) · Industry News (Mar 11, 2010) · Intel News (Mar 11, 2010) · Law and Order (Mar 11, 2010) · Linux (Feb 25, 2010) · Microsoft (Mar 10, 2010) · Networking (Mar 10, 2010) · PDAs (Feb 09, 2007) · Privacy (Mar 11, 2010) · Red Hat (Mar 09, 2010) · Science (Mar 10, 2010) · Security (Mar 11, 2010) · Software & Programming (Mar 11, 2010) · Spam (Jan 26, 2010) · Technology (Mar 11, 2010) · Transmeta (Jul 07, 2007) · Viruses & Malware (Mar 09, 2010) · Wireless (Mar 03, 2010)
Follow us
Follow us on Twitter
Follow our RSS feed
HITB Affiliates
Warez Raid
Btscene Raid Network Rapidshare.net FullDownloadShare.com PlaystationHome.com TriniWarez Rapidsharedownload.net SCForum.info Pogoed Full Downloads Nitro Roms Gu1337 Twistys Download Ideal Torrent Egyptfans.net DirtyWarez.com RaidPIC Torrents Download RapidShareLink FreshDL Warez Linkers WarezFactor FullDDL.net Digital Vortex TorrentHub RealWarez Fullversion Search DreamDDL HackersNews.org Black-Zero MyPDACafe.com Guvenli.org Dark-Hack.net Dark Tavern HardlineNews.com ITDefence.ru Xatrix Computer Security shellcity.net EyeonSecurity HackerStickers.com Astalavista Go Hacking XSSed.com madirish.net Secumania.org Megapanzer If you own a PR4+ (Page Rank) network security or computer related website with 5,000 unique visits and would like to affiliate with HITB, email us. |
||
