SI6 Networks IPv6 Toolkit v1.3 released!

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Folks, We are pleased to release the SI6 Networks' IPv6 Toolkit v1.3: a security assessment and trouble-shooting toolkit for the IPv6 protocol suite. The toolkit is available at: http://www.si6networks.com/tools/ipv6toolkit, where you can find a the

[SECURITY] [DSA 2624-1] ffmpeg security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2624-1 secur...@debian.org http://www.debian.org/security/Moritz Muehlenhoff February 16, 2013

[SECURITY] [DSA 2626-1] lighttpd security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2626-1 secur...@debian.org http://www.debian.org/security/ Thijs Kinkhorst February 17, 2013

[SECURITY] [DSA 2627-1] nginx security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2627-1 secur...@debian.org http://www.debian.org/security/ Thijs Kinkhorst February 17, 2013

Sniffing HDCP crypto keys with a $30 Bus Pirate and a broken HDMI cable

HDCP has been broken for a long time, but I was curious as to how difficult it was to recover specific device keys. Turns out not very: http://adamsblog.aperturelabs.com/2013/02/hdcp-is-dead-long-live-hdcp-peek-into.html cheers, Adam -- Adam Laurie Tel: +44 (0) 20

Re: Scanning the IPv6 Internet with the scan6 tool (SI6 IPv6 toolkit)

And do add to this, this presentation: https://conference.hitb.org/hitbsecconf2012kul/materials/D1T2%20-%20Marc%20Heuse%20-%20IPv6%20Insecurity%20Revolutions.pdf gives in the 2nd half a step-by-step guide on how to identify and scan remote IPv6 networks. A second tool to perform remote scanning

Multiple Vulnerabilities in Netgear DGN2200B

Device Name: DGN2200B Vendor: Netgear Vulnerable Firmware Releases: Hardwareversion DGN2200B Firmwareversion V1.0.0.36_7.0.36 - 04/01/2011 Device Description: Infos:

[IA47] Photodex ProShow Producer v5.0.3297 PXT File title Value Handling Buffer Overflow

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION --- Product:Photodex ProShow Producer Vendor URL: www.photodex.com Type: Stack-based Buffer Overflow [CWE-121] Date found: 2013-02-16 Date published: 2013-02-16 CVSSv2 Score:

PHP-Fusion 7.02.05 SQL Injection

SQL Injection vulnerability exists in releases since 7.02.01 till 7.02.05 of PHP-Fusion CMS. The vulnerability allows the attacker to authenticate as an arbitrary user and act with its rights which might lead to the code execution. Because of exploitation simplicity, the potential risk is very

Re: Aastra IP Telephone encrypted .tuz configuration file leakage

nore...@aastra.com writes: Vulnerability fixed in August 2012 release of anacrypt V1.04 encryption tool. Available on the www.aastra.com website. IP Phone Configuration File Encryption Tool - Microsoft Windows (Version 1.04, 08/2012, gz) (English, 45.78 KB) IP Phone Configuration File

[SECURITY] [DSA 2628-1] nss-pam-ldapd security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - - Debian Security Advisory DSA-2628-1 secur...@debian.org http://www.debian.org/security/Moritz Muehlenhoff February 18, 2013

Reflective XSS in Marekkis Watermark-Plugin Cross-Site Scripting Vulnerability

# Exploit Title : Reflective XSS in Marekkis Watermark-Plugin Cross-Site Scripting Vulnerability Author: Aditya Balapure home: http://adityabalapure.blogspot.in/ Date: 18/02/13 software link: http://wordpress.org/extend/plugins/marekkis-watermark/ CVE Assigned -

Reflective/Stored XSS in Responsive Logo Slideshow Plugin Cross-Site Scripting Vulnerability

# Exploit Title : Reflective/Stored XSS in Responsive Logo Slideshow Plugin Cross-Site Scripting Vulnerability Author: Aditya Balapure home: http://adityabalapure.blogspot.in/ Date: 18/02/13 software link: