Re: Netgear FVG318 is vunerable to DOS attack

2013-06-11 Thread No
I experience the same issue when I ran the same test. Firmware version is v2.1.2-67N.

Re: Re: Netgear FVG318 is vunerable to DOS attack

2013-06-11 Thread no
Firmware 2.1.2-67 is also affected.

Fail2ban 0.8.9, Denial of Service (Apache rules only)

2013-06-11 Thread Krzysztof Katowicz-Kowalewski
Version 0.8.9 (latest) of Fail2ban allows to perform remote denial of service for arbitrary chosen IP address. Address listed on Fail2ban's whitelist are not affected. The vulnerability exists in Apache rules and it is caused by improper validation of a log file by regular expression. Malicious

Bluetooth Chat Connect v1.0 iOS - Multiple Vulnerabilities

2013-06-11 Thread Vulnerability Lab
Title: == Bluetooth Chat Connect v1.0 iOS - Multiple Vulnerabilities Date: = 2013-05-31 References: === http://www.vulnerability-lab.com/get_content.php?id=960 VL-ID: = 960 Common Vulnerability Scoring System: 3.9 Introduction:

[SECURITY] [DSA 2703-1] subversion security update

2013-06-11 Thread Salvatore Bonaccorso
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 - - Debian Security Advisory DSA-2703-1 secur...@debian.org http://www.debian.org/security/ Salvatore Bonaccorso June 09, 2013

[SECURITY] [DSA 2704-1] mesa security update

2013-06-11 Thread Raphael Geissert
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2704-1 secur...@debian.org http://www.debian.org/security/ Raphael Geissert June 09, 2013

CVE-2013-3739 Local File Inclusion in Weathermap = 0.97C

2013-06-11 Thread Anthony Dubuissez
= WEBERA ALERT ADVISORY 01 - Discovered by: Anthony Dubuissez - Severity: high - CVE Request - 03/06/2013 - CVE Assign - 03/06/2013 - CVE Number - CVE-2013-3739 - Vendor notification - 03/06/2013 - Vendor reply - No reply - Public disclosure -

[SECURITY] [DSA 2705-1] pymongo security update

2013-06-11 Thread Giuseppe Iuculano
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2705-1 secur...@debian.org http://www.debian.org/security/ Giuseppe Iuculano June 10, 2013

[SECURITY] [DSA 2706-1] chromium-browser security update

2013-06-11 Thread Giuseppe Iuculano
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2706-1 secur...@debian.org http://www.debian.org/security/ Giuseppe Iuculano June 10, 2013

CFP: IEEE SafeConfig: 6th Symposium on Security Analytics and Automation

2013-06-11 Thread James Joshi
CALL FOR PAPERS IEEE SafeConfig 2013 6th Symposium on Security Analytics and Automation (www.safeconfig.org) (collocated with IEEE Conference on Communications and Network Security) Washington, D.C., USA October 14, 2013 Sponsors: IEEE (COMSOC). Important Dates

[security bulletin] HPSBHF02885 rev.1 - HP Integrated Lights-Out iLO3 and iLO4 using Single-Sign-On (SSO), Remote Unauthorized Access

2013-06-11 Thread security-alert
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c03787836 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03787836 Version: 1 HPSBHF02885

t2'13: Call for Papers 2013 (Helsinki / Finland)

2013-06-11 Thread Tomi Tuominen
# t2'13 - Call For Papers # Helsinki, Finland October 24 - 25, 2013 We are pleased to announce the annual t2'13 infosec conference, which will take place in Helsinki, Finland, from October 24 to 25, 2013. We are looking for original,

Re: WordPress 3.5.1, Denial of Service

2013-06-11 Thread Peter Bex
On Fri, Jun 07, 2013 at 06:29:48PM +0200, Krzysztof Katowicz-Kowalewski wrote: Version 3.5.1 (latest) of popular blogging engine WordPress suffers from remote denial of service vulnerability. The bug exists in encryption module (class-phpass.php). The exploitation of this vulnerability is