Posts Tagged ‘Vulnerability’

MBSA to Keep your Windows System up-to-date

January 20th, 2012 Mourad Ben Lakhoua

Keeping your system updated is very important to avoid new malwares and to fix vulnerabilities that allow a malicious user have a full control on your system, well I used to enable the automatic update on all Microsoft based systems as we have monthly the patch Tuesday tradition. Now this seems to be not enough [...]

Share
Posted in Software Security, Tools Tags: , , , , , , , No Comments »
SecTechno

2011 Top 10 Wine Posts

December 31st, 2011 Mourad Ben Lakhoua

As we are getting to the end of the year, here you can find the top 10 most attractive articles posted on SecTechno, this come in term of readership, information and adding value to the infosec community: 1- Hacking Exposed VoIP/SIP The first article is about VoIP hacking, many of us are using VoIP systems [...]

Share
Posted in InfoSec Tags: , , , , , , No Comments »

More Zero Days in SCADA Systems

October 11th, 2011 Mourad Ben Lakhoua

Italian security researcher recently revealed details of several vulnerabilities in the system supervisory control and data acquisition (SCADA) from multiple vendors. Luigi Auriemma has released details and proof of concept code for 6 vulnerabilities affecting popular SCADA systems. Most of the vulnerabilities allow remote code execution, many of them are easy to use,” – says [...]

Share
Posted in Vulnerabilities, Vulnerabilities & attacks Tags: , , , , No Comments »

Skype Vulnerable to HTML/(Javascript) Code Injection

August 22nd, 2011 Mourad Ben Lakhoua

New HTML Javascript Code Injection vulnerability have been discovered in Skype the flaw code and PoC are published on Noptrix website, affected software version is Skype 5.5.0.113 or older that are installed on windows XP , Vista or se7en. Skype suffers from a persistent code injection vulnerability due to a lack of input validation an [...]

Share
Posted in Vulnerabilities Tags: , , No Comments »

Cross Site Scripting Vulnerabilities in Elgg <= 1.7.9

July 30th, 2011 Mourad Ben Lakhoua

New vulnerability has been discovered in Elgg an open-source application that helps to create social networking engine, delivering the building blocks that enable businesses, schools, universities and associations to create their own fully-featured social networks and applications. Well-known Organizations with networks powered by Elgg include: Australian Government, British Government, Federal Canadian Government, MITRE, The World [...]

Share
Posted in Vulnerabilities, Vulnerabilities & attacks, Web Security Tags: , , , , 3 Comments »

Wireshark 1.6.1 Malformed IKE Packet DoS

July 28th, 2011 Mourad Ben Lakhoua

New vulnerability have been discovered in Wireshark 1.6.1 that affects IKEv1 protocol function proto_tree_add_item() this bug allow to conduct a denial of service attack. This is not the first vulnerability that has been discovered lately in wireshark as in the 18th of April Paul Makowski working for SEI/CERT discovered vulnerability allows a remote user that [...]

Share
Posted in Software Security, Vulnerabilities, Vulnerabilities & attacks Tags: , , , 4 Comments »

Microsoft Releases Advance Notification for Next Security Patches

July 9th, 2011 Mourad Ben Lakhoua

Microsoft about to release new patches for different windows operating systems, severity of these updates classified between important to critical for Windows XP, Windows Vista, Windows 7, Windows Server 2003, Windows Server 2008, and Microsoft Visio 2003. Organizations always focus on their business in the local activities and most of them not aware that if [...]

Share
Posted in Software Security, Vulnerabilities, Vulnerabilities & attacks Tags: , , , No Comments »
« Older Entries
Twitter Delicious Facebook Digg Stumbleupon Favorites More
Powered by WordPress | Designed by: Best SUV | Thanks to Toyota SUV, Ford SUV and Best Truck