science and technology Adobe Plagued By 16-Month-Old XSS Bug By packetstormsecurity.com Published On :: Thu, 14 May 2009 08:22:15 GMT Full Article adobe xss
science and technology Mozilla Tackles XSS Vulnerabilities With New Technology By packetstormsecurity.com Published On :: Mon, 22 Jun 2009 16:29:11 GMT Full Article mozilla xss
science and technology MoD Website Outflanked By XSS Flaws By packetstormsecurity.com Published On :: Mon, 10 Aug 2009 02:30:05 GMT Full Article flaw xss
science and technology RubyOnRails XSS Vulnerability Claims Twitter, Basecamp And My Confidence By packetstormsecurity.com Published On :: Thu, 03 Sep 2009 14:57:22 GMT Full Article xss twitter
science and technology Facebook App Flaws Create Trojan Download Risk By packetstormsecurity.com Published On :: Mon, 21 Sep 2009 16:04:03 GMT Full Article trojan flaw facebook xss
science and technology Reddit Swiftly Squishes XSS Worm By packetstormsecurity.com Published On :: Mon, 28 Sep 2009 04:42:36 GMT Full Article worm xss
science and technology XSS Vulnerabilities In 8 Million Flash Files By packetstormsecurity.com Published On :: Tue, 22 Dec 2009 09:16:16 GMT Full Article adobe xss
science and technology IE 8 XSS Filter Exposes Sites To XSS Attacks By packetstormsecurity.com Published On :: Mon, 19 Apr 2010 19:23:01 GMT Full Article microsoft xss
science and technology Microsoft To Fix IE8 Cross-Site Scripting Problem, Again By packetstormsecurity.com Published On :: Tue, 20 Apr 2010 21:45:20 GMT Full Article microsoft xss
science and technology Serious XSS Flaw Haunts Microsoft SharePoint By packetstormsecurity.com Published On :: Thu, 29 Apr 2010 04:24:15 GMT Full Article microsoft flaw xss
science and technology Anti-Virus Vendor Trio Plug Website Flaws By packetstormsecurity.com Published On :: Mon, 04 Oct 2010 10:06:13 GMT Full Article virus flaw xss
science and technology Adobe Updates Flash Player To Fix XSS Flaw By packetstormsecurity.com Published On :: Tue, 07 Jun 2011 03:23:00 GMT Full Article headline adobe xss
science and technology Patchy App Development Security Slammed By packetstormsecurity.com Published On :: Thu, 08 Dec 2011 16:29:13 GMT Full Article headline flaw xss csrf
science and technology Postcards From The Post-XSS World By packetstormsecurity.com Published On :: Wed, 21 Dec 2011 21:49:38 GMT Full Article headline flaw xss
science and technology XSS Flaw Discovered In Skype's Shop, User Accounts Targeted By packetstormsecurity.com Published On :: Fri, 24 Feb 2012 23:57:20 GMT Full Article headline flaw identity theft skype social xss
science and technology Abusing Password Managers With XSS By packetstormsecurity.com Published On :: Wed, 25 Apr 2012 19:00:23 GMT Full Article headline hacker flaw xss
science and technology FreeBSD Security Advisory - FreeBSD-SA-18:13.nfs By packetstormsecurity.com Published On :: Wed, 28 Nov 2018 18:04:28 GMT FreeBSD Security Advisory - Insufficient and improper checking in the NFS server code could cause a denial of service or possibly remote code execution via a specially crafted network packet. A remote attacker could cause the NFS server to crash, resulting in a denial of service, or possibly execute arbitrary code on the server. Full Article
science and technology FreeBSD Security Advisory - FreeBSD-SA-18:14.bhyve By packetstormsecurity.com Published On :: Thu, 06 Dec 2018 02:19:30 GMT FreeBSD Security Advisory - Insufficient bounds checking in one of the device models provided by bhyve(8) can permit a guest operating system to overwrite memory in the bhyve(8) processing possibly permitting arbitrary code execution. A guest OS using a firmware image can cause the bhyve process to crash, or possibly execute arbitrary code on the host as root. Full Article
science and technology FreeBSD Intel SYSRET Privilege Escalation By packetstormsecurity.com Published On :: Thu, 07 Mar 2019 02:01:26 GMT This Metasploit module exploits a vulnerability in the FreeBSD kernel, when running on 64-bit Intel processors. By design, 64-bit processors following the X86-64 specification will trigger a general protection fault (GPF) when executing a SYSRET instruction with a non-canonical address in the RCX register. However, Intel processors check for a non-canonical address prior to dropping privileges, causing a GPF in privileged mode. As a result, the current userland RSP stack pointer is restored and executed, resulting in privileged code execution. Full Article
science and technology FreeBSD Security Advisory - FreeBSD-SA-19:03.wpa By packetstormsecurity.com Published On :: Wed, 15 May 2019 15:30:08 GMT FreeBSD Security Advisory - Multiple vulnerabilities exist in the hostapd(8) and wpa_supplicant(8) implementations. Full Article
science and technology FreeBSD Security Advisory - FreeBSD-SA-19:07.mds By packetstormsecurity.com Published On :: Wed, 15 May 2019 15:47:43 GMT FreeBSD Security Advisory - On some Intel processors utilizing speculative execution a local process may be able to infer stale information from microarchitectural buffers to obtain a memory disclosure. An attacker may be able to read secret data from the kernel or from a process when executing untrusted code (for example, in a web browser). Full Article
science and technology FreeBSD rtld execl() Privilege Escalation By packetstormsecurity.com Published On :: Wed, 22 May 2019 00:51:22 GMT This Metasploit module exploits a vulnerability in the FreeBSD run-time link-editor (rtld). The rtld unsetenv() function fails to remove LD_* environment variables if __findenv() fails. This can be abused to load arbitrary shared objects using LD_PRELOAD, resulting in privileged code execution. Full Article
science and technology Linux / FreeBSD TCP-Based Denial Of Service By packetstormsecurity.com Published On :: Tue, 18 Jun 2019 15:50:02 GMT Netflix has identified several TCP networking vulnerabilities in FreeBSD and Linux kernels. The vulnerabilities specifically relate to the minimum segment size (MSS) and TCP Selective Acknowledgement (SACK) capabilities. The most serious, dubbed _"SACK Panic_," allows a remotely-triggered kernel panic on recent Linux kernels. There are patches that address most of these vulnerabilities. If patches can not be applied, certain mitigations will be effective. Full Article
science and technology macOS Kernel wait_for_namespace_event() Race Condition / Use-After-Free By packetstormsecurity.com Published On :: Wed, 18 Dec 2019 14:08:33 GMT In the macOS kernel, the XNU function wait_for_namespace_event() in bsd/vfs/vfs_syscalls.c releases a file descriptor for use by userspace but may then subsequently destroy that file descriptor using fp_free(), which unconditionally frees the fileproc and fileglob. This opens up a race window during which the process could manipulate those objects while they're being freed. Exploitation requires root privileges. Full Article
science and technology Anonymous Hacker Exposed After Dropping USB Drive While Throwing Molotov Cocktail By packetstormsecurity.com Published On :: Mon, 24 Jun 2019 16:43:35 GMT Full Article headline hacker government anonymous
science and technology Hacktivism Activity And Chatter Has Markedly Dropped Since 2016 By packetstormsecurity.com Published On :: Tue, 27 Aug 2019 13:25:32 GMT Full Article headline hacker government anonymous
science and technology Hammond Summoned To Testify Before Federal Grand Jury By packetstormsecurity.com Published On :: Tue, 03 Sep 2019 15:57:02 GMT Full Article headline hacker government usa data loss anonymous
science and technology Hammond Held In Contempt For Refusing To Answer Questions By packetstormsecurity.com Published On :: Mon, 14 Oct 2019 14:29:52 GMT Full Article headline hacker government usa data loss anonymous military
science and technology US Navy Captures Suspected Pirates After Gunbattle By packetstormsecurity.com Published On :: Thu, 01 Apr 2010 06:08:00 GMT Full Article usa africa
science and technology US Marines Capture Ship Hijacked By Pirates Off Somalia By packetstormsecurity.com Published On :: Thu, 09 Sep 2010 15:09:33 GMT Full Article usa africa
science and technology Nigerian Airline Ticket Fraudster Gets 8 Years By packetstormsecurity.com Published On :: Mon, 25 Oct 2010 01:09:44 GMT Full Article fraud africa scam
science and technology Hacker Almost Derailed Mandela Election In South Africa By packetstormsecurity.com Published On :: Wed, 27 Oct 2010 12:19:03 GMT Full Article hacker africa
science and technology Anonymous Attacks Zimbabwe By packetstormsecurity.com Published On :: Fri, 31 Dec 2010 16:40:55 GMT Full Article headline government africa
science and technology Kenya's Treasury Website Attacked By Hackers By packetstormsecurity.com Published On :: Thu, 06 Jan 2011 16:41:58 GMT Full Article headline hacker africa
science and technology Hackers Shut Down NDDC Website Over Presidential Inauguration By packetstormsecurity.com Published On :: Fri, 27 May 2011 13:41:54 GMT Full Article headline hacker africa
science and technology Medvet Board To Investigate Privacy Breach By packetstormsecurity.com Published On :: Tue, 19 Jul 2011 03:05:25 GMT Full Article headline data loss africa
science and technology Nigerian Scams Are Hyper-Efficient Idiot Finders By packetstormsecurity.com Published On :: Thu, 21 Jun 2012 15:23:35 GMT Full Article headline cybercrime fraud africa scam
science and technology Megaupload Sequel Faces Gabon's Suspension Order Setback By packetstormsecurity.com Published On :: Thu, 08 Nov 2012 00:49:22 GMT Full Article headline government usa africa riaa mpaa new zealand
science and technology Dexter Payment Card Malware Strikes South Africa By packetstormsecurity.com Published On :: Wed, 16 Oct 2013 15:27:10 GMT Full Article headline malware bank cybercrime fraud africa
science and technology Ebola Outbreak Used To Trick Users Into Downloading Malware By packetstormsecurity.com Published On :: Fri, 24 Oct 2014 15:51:26 GMT Full Article headline malware cybercrime fraud africa
science and technology Kenya Breaks Chinese-Run Cyber Crime Network By packetstormsecurity.com Published On :: Thu, 04 Dec 2014 16:23:39 GMT Full Article headline hacker china cybercrime fraud africa cyberwar
science and technology Can Africa Fight Cybercrime And Preserve Human Rights? By packetstormsecurity.com Published On :: Fri, 10 Apr 2015 14:25:53 GMT Full Article headline government cybercrime fraud africa
science and technology Nigerian Prince Swaps The Sweet Talk For Keyloggers And Exploits By packetstormsecurity.com Published On :: Wed, 22 Jul 2015 14:52:24 GMT Full Article headline fraud africa scam
science and technology Hack Attacks Cut Internet Access In Liberia By packetstormsecurity.com Published On :: Fri, 04 Nov 2016 17:03:07 GMT Full Article headline hacker denial of service africa cyberwar
science and technology 3 Nigerians Get 235 Years For Online Scams By packetstormsecurity.com Published On :: Fri, 26 May 2017 13:19:22 GMT Full Article headline bank fraud africa scam
science and technology Ebola Outbreak Reaches City Of 1 Million Residents By packetstormsecurity.com Published On :: Sat, 15 Dec 2018 14:26:52 GMT Full Article headline africa science
science and technology Ransomware Hits Johannesburg Electricity Supply By packetstormsecurity.com Published On :: Fri, 26 Jul 2019 15:54:36 GMT Full Article headline government malware cybercrime fraud africa cyberwar cryptography
science and technology Huawei Africa Spying Claims Denied By packetstormsecurity.com Published On :: Fri, 16 Aug 2019 16:22:30 GMT Full Article headline government china africa spyware facebook
science and technology Kenya Court Halts Biometric ID Over Data Fears By packetstormsecurity.com Published On :: Fri, 31 Jan 2020 15:28:36 GMT Full Article headline government privacy africa
science and technology Spanish Brothel Chain Leaves Internal Database Exposed Online By packetstormsecurity.com Published On :: Thu, 08 Aug 2019 14:23:51 GMT Full Article headline privacy database data loss spain