[FD] Aerohive Hive Manager and Hive OS Multiple Vulnerabilities

2014-08-28 Thread Disclosure
Hive Manager and HiveOS software. These vulnerabilities have been disclosed to the vendor on or before the 24th of April 2014. -- Hive Manager Arbitrary File Disclosure -- Leveraging directory traversal, a malicious user can retrieve arbitrary files from the Hive Manager file system. As the

[FD] Claymore Dual Gpu Miner <= 10.5 Format Strings Vulnerability

2018-02-02 Thread disclosure
uot;method":"%n"}' | nc 192.168.1.139 & printf "\n". Solution Upgrade to version 10.6 Vendor contact timeline: ---- 01/26/18 — Reported to dev 01/26/18 — Confirmed and immediately patched. 10.6 released

[FD] AMD Chipset Driver Information Disclosure Vulnerability [CVE-2021-26333]

2021-09-17 Thread disclosure
We recently discovered a critical information disclosure vulnerability that affected the AMD Platform Security Processor (PSP) chipset driver for multiple CPU architectures. The vulnerability allowed non-privileged users to read uninitialised physical memory pages, where the original data

[FD] usd AG Security Advisories 11/2021

2021-12-03 Thread Responsible Disclosure via Fulldisclosure
Hi all, this week usd AG disclosed the following advisories at https://herolab.usd.de/security-advisories/: * usd-2021-0032 | XSS in SUSE CVE Database (suse.com): https://herolab.usd.de

[FD] usd20210005: Privileged File Write in Check Point Identity Agent < R81.018.0000

2021-04-08 Thread Responsible Disclosure via Fulldisclosure
e updated in order to provide as accurate information as possible. ___ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/

[FD] Full disk encryption for OS X alternative to TrueCrypt

2014-05-29 Thread CIURANA EUGENE (pr3d4t0r - Full Disclosure)
/o Fuse. Cheers! pr3d -- ___ Sent through the Full Disclosure mailing list http://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/

Re: [FD] Full disk encryption for OS X alternative to TrueCrypt

2014-05-29 Thread CIURANA EUGENE (pr3d4t0r - Full Disclosure)
ven Prism and other disclosures, I don't trust their software to be safe. That's why OTR, TrueCrypt, and GPG/PGP are in my arsenal for secure storage and communications. Cheers! pr3d -- ___ Sent through the Full Disclosure mailing list htt

Re: [FD] TrueCrypt?

2014-05-29 Thread CIURANA EUGENE (pr3d4t0r - Full Disclosure)
r users. Cheers, pr3d ___ Sent through the Full Disclosure mailing list http://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/

Re: [FD] Full disk encryption for OS X alternative to TrueCrypt

2014-05-29 Thread CIURANA EUGENE (pr3d4t0r - Full Disclosure)
On 2014-05-29 14:46, Mike Cramer wrote: > You need to ask yourself a question: > > How well do you know coding and encryption handling to ensure that your > software doesn't have unintentional back doors and/or information > disclosure? This is a serious question because

Re: [FD] Full disk encryption for OS X alternative to TrueCrypt

2014-05-29 Thread CIURANA EUGENE (pr3d4t0r - Full Disclosure)
idea (hence looking into how Fuse works). Thanks very much for the advise; you've confirmed some 5,000' level assumptions I'd made, and showed me a better path when it comes to licensing. Cheers! pr3d ___ Sent through the Full Disclosu

[FD] TrueCrypt 7.1 repos on GitHub - forking starting point

2014-05-30 Thread CIURANA EUGENE (pr3d4t0r - Full Disclosure)
, figuring out if the files are OKi (in contact with the TrueCrypt Audit folks soon). Any C/C+ coders out there willing to give a hand? This is for OS X and Linux only. Cheers! pr3d ___ Sent through the Full Disclosure mailing list http://nmap.org/mailman