Hi everyone,
I've gotten reports from a couple of directions now regarding Metropolis
Hexor's directory traversal attack against thttpd 2.25b [1]. Since I'm
maintaining sthttpd, a fork of thttpd [2], I thought I'd better let
people know that the exploit does not affect sthttpd. Several
Hi all!
Mi name is David Tapia. I would like to disclose an XSS vulnerability in
images.samsung.com. I tried to warn them two months ago using their bug
bounty program, but they answered me saying that it is only available for
their Smart TVs . I totally agree with them but they could have fixed
We are really proud to announce the ninth edition of the ekoparty Security
Conference.
Once again, in this unique event, security specialist from all over Latin
America and the World will have the chance to get acquainted with the most
important researches of the year.
ekoparty has become the
If you are still using an old version of SketchUp(8M2) you should upgrade it.
Title: Sketchup MAC Pict Material Palette Stack Corruption
Product: Google SketchUp
Advisory ID: BINA-20111201
CVE ID: CVE-2013-3662
Class: Boundary Error Condition (Buffer Overflow)
Vulnerability class: Client side/
If you are still using a not so old version of SketchUp(8M3) you
should upgrade it...
Title: SketchUp BMP RLE8 Heap Overflow
Product: Google SketchUp
Advisory ID: BINA-20120523
CVE ID: CVE-2013-3663
Class: Boundary Error Condition (Buffer Overflow)
Vulnerability class: Client side/ file format
Well, you should upgrade SketchUp to the last version (2 bugs here).
=
=
Title: Sketchup MAC Pict Material Palette Stack Corruption
Product: Trimble SketchUp
Advisory
WCE v1.4beta x32/x64/universal has been released.
Download links:
http://www.ampliasecurity.com/research/wce_v1_4beta_universal.zip
http://www.ampliasecurity.com/research/wce_v1_4beta_x64.zip
http://www.ampliasecurity.com/research/wce_v1_4beta_x32.zip
Changelog:
version 1.4beta:
May 30, 2013
*