Buffalo TeraStation TS-Series multiple vulnerabilities

2013-01-31 Thread Andrea Fabrizi
** Title: Buffalo TeraStation TS-Series multiple vulnerabilities Version affected: firmware version = 1.5.7 Vendor: http://www.buffalotech.com/products/network-storage Discovered by: Andrea Fabrizi Email: andrea.fabr...@gmail.com Web:

OWASP Zed Attack Proxy 2.0.0

2013-01-31 Thread psiinon
Hi folks, The OWASP Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to

marc4dasm - Atmel MARC microprocessor disassembler published

2013-01-31 Thread Adam Laurie
For what it's worth, I've published a disassembler for the Atmel MARC4 (a 4 bit Harvard micro): https://github.com/AdamLaurie/marc4dasm Enjoy! cheers, Adam -- Adam Laurie Tel: +44 (0) 20 7993 2690 Suite 117 Fax: +44 (0) 20 7691 7776 61

DefenseCode Security Advisory: Broadcom UPnP Remote Preauth Root Code Execution Vulnerability

2013-01-31 Thread DefenseCode
DefenseCode Security Advisory http://www.defensecode.com/ Broadcom UPnP Remote Preauth Root Code Execution Vulnerability Advisory ID: DC-2013-01-003 Advisory Title: Broadcom UPnP Remote Preauth Root Code Execution Vulnerability Advisory URL:

Released: rompar - Semi-automation tool for data extraction of microscopic Masked ROM images

2013-01-31 Thread Major Malfunction
As promised at DC4420, here is the first cut (extremely beta!) of the image processing software for semi-automating the task of extracting data from images of Masked ROMs: http://www.aperturelabs.com/tools.html Fuller description/blog here: