Re: Pro Chat Rooms v8.2.0 - Multiple Vulnerabilities

2014-09-01 Thread sales
Date: 12 Aug 2014 A software update for the Text Chat Room Audio/Video Chat Room (v8.2.0) is now available to download in the Pro Chat Rooms customer area that addresses this security issue. We would like to express our thanks to Mike Manzotti @ Dionach Ltd who assisted us with this update.

WordPress Slideshow Gallery 1.4.6 Shell Upload Vulnerability (CVE-2014-5460)

2014-09-01 Thread jesus . ramirez . pichardo
WordPress Slideshow Gallery plugin version 1.4.6 suffers from a remote shell upload vulnerability. Vendor Homepage: http://tribulant.com/ Software: Slideshow Gallery Version: 1.4.6 Software Link: http://downloads.wordpress.org/plugin/slideshow-gallery.1.4.6.zip Tested on: Windows 7 OS, Wordpress

WordPress Slideshow Gallery 1.4.6 Shell Upload Vulnerability (CVE-2014-5460)

2014-09-01 Thread jesus . ramirez . pichardo
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I found a serious security vulnerability in the Slideshow Gallery plugin. This bug allows an attacker to upload any php file remotely to the vulnerable website (administrator by default). I have tested and verified that having the current version

[SECURITY] [DSA 2987-2] openjdk-7 regression update

2014-09-01 Thread Florian Weimer
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2987-2 secur...@debian.org http://www.debian.org/security/Florian Weimer August 31, 2014

SSH host key fingerprint - through HTTPS

2014-09-01 Thread John Leo
This tool displays SSH host key fingerprint - through HTTPS. SSH is about security; host key matters a lot here; and you can know for sure by using this tool. It means you know precisely how to answer this question: The authenticity of host 'blah.blah.blah (10.10.10.10)' can't be established.

CFP Deadline Approaching - Third International Conference on Informatics Applications | Malaysia

2014-09-01 Thread liezelle
All registered papers will be included in SDIWC Digital Library, and in the proceedings of the conference. The Third International Conference on Informatics Applications (ICIA2014) October 8-10, 2014 - Kuala Terengganu, Malaysia | icia2...@sdiwc.net

Re: SSH host key fingerprint - through HTTPS

2014-09-01 Thread Micha Borrmann
Nice tool, but it is also possible, to use DNSSEC to validate SSH fingerprints, which is much more comfortable and more secure. Am 01.09.2014 um 06:41 schrieb John Leo: This tool displays SSH host key fingerprint - through HTTPS. SSH is about security; host key matters a lot here; and you can

Avira License Application - Cross Site Request Forgery Vulnerability

2014-09-01 Thread Vulnerability Lab
Document Title: === Avira License Application - Cross Site Request Forgery Vulnerability References (Source): http://www.vulnerability-lab.com/get_content.php?id=1302 Video: http://www.vulnerability-lab.com/get_content.php?id=1301 Release Date: =

Re: SSH host key fingerprint - through HTTPS

2014-09-01 Thread Chris Nehren
On Mon, Sep 01, 2014 at 12:41:17 +0800, John Leo wrote: This tool displays SSH host key fingerprint - through HTTPS. SSH is about security; host key matters a lot here; and you can know for sure by using this tool. It means you know precisely how to answer this question: The authenticity of

WWW File Share Pro v7.0 - Denial of Service Vulnerability

2014-09-01 Thread Vulnerability Lab
Document Title: === WWW File Share Pro v7.0 - Denial of Service Vulnerability References (Source): http://www.vulnerability-lab.com/get_content.php?id=1310 Video: http://www.vulnerability-lab.com/get_content.php?id=1309