Telnetd exploit on FreeBSD 7

Monday, February 16th, 2009

A posting on the Full Disclosure mailing list has revealed what the FreeBSD Security team call a semi-remote root exploit for the telnetd service in FreeBSD 7, and later. By default, this service is disabled. To exploit the vulnerability, a maliciously crafted library must be placed on the victim system beforehand, ...

Posted in Coding, Linux, Security | No Comments

New DDoS attack based on deluge of dots

Sunday, February 15th, 2009

A technique for worsening the effects of a distributed denial-of-service-type attacks uses a feature in the DNS system that was once designed to be helpful. Patching it could involve reconfiguring millions of domain-name servers, or even rethinking how the system works. A DDoS attack, of course, involves bombarding a target site ...

Posted in Internet, Security | No Comments

How Attackers Use Your Metadata Against You

Saturday, February 14th, 2009

To steal your identity, a cybercriminal doesn't have to have direct access to your bank account or other personal information. Often, he collects information about you from a variety of seemingly innocuous sources, then uses that data to map out a strategy to crack your online defenses and drain your ...

Posted in Coding, Internet, Privacy, Security, Software | No Comments

KMIP – New Encryption Protocol

Friday, February 13th, 2009

A number of industry heavywights have unveiled the Key Management Interoperability Protocol (KMIP), a new specification jointly developed by Brocade, EMC, HP, IBM, LSI, Seagate and Thales. "Our customers' IT environments are growing in complexity and, at the same time, these companies are under extreme pressures to meet compliance regulations and ...

Posted in Coding, Internet, Privacy, Security | No Comments

Denial of Service using Partial GET Request in Mozilla Firefox 3.06

Thursday, February 12th, 2009

The Partial GET Request (HTTP 206 Status Code) of a WAV file results in a Denial of Service of the application. Last HTTP packet from Firefox before the DoS is listed below in RAW format: GET /fpaudio/footprints_waves.wav HTTP/1.1 Accept: */* User-Agent: NSPlayer/11.0.6001.7001 WMFSDK/11.0 UA-CPU: x86 Accept-Encoding: gzip, deflate Range: bytes=34848- Unless-Modified-Since: Mon, 09 Jul 2007 12:44:57 GMT If-Range: "4f0018-440f2-434d403204440" Host: ...

Posted in Coding, Internet, Linux, Security, Software, Windows | No Comments

Copyright 2008-2024 PC Sympathy - Entries (RSS) - Sitemap