Next Page >>
Information Security
http://www.acis.org.co/index.php?id=1068
- Call for Papers-
National Computer and Information Security
Conferences ACIS 2008
Bogot, D.C - COLOMBIA
Luis Angel Arango Library
June 18, 19 and 20/2008
Name: Autocomplete Data Theft in Mozilla Firefox
Systems Affected: Mozilla Firefox 3.5, Mozilla Firefox 3.0
Severity: Moderate
Category: Data Leakage
Author: Context Information Security Ltd
Advisory: 4 November 2009
CVE: CVE-2009-3370
===============================ADVISORY===============================
Systems Affected: Microsoft Outlook Web Access 2003 and 2007
(Exchange Server 2003 SP2, Exchange Server 2007,
Exchange Server 2007 SP1)
Severity: High
Category: Cross Site Scripting, Cross Site Request Forgery
Author: Context Information Security Ltd
Reported to vendor: 10th January 2008
Advisory Issued: 10th July 2008
===============================ADVISORY===============================
Name Cross Site Scripting Vulnerability in Sophos Anti-Virus
Systems Affected Sophos Anti-Virus, version 6.5.4 R2
Severity Medium
Category Cross Site Scripting
Author Context Information Security Ltd
Advisory 6th September 2007
Description
-----------
Following the success of previous editions, the 5th edition of the you
Sh0t the Sheriff security conference will happen on May, 16th, 2011 in
Sao Paulo, Brazil. This is your chance to speak about that cool
research you’ve been working on, to those whom matter in the Brazilian
Information Security realm.
ABOUT THE CONFERENCE
you Sh0t the Sheriff is a very unique, one-day, event dedicated to
bringing cutting edge talks to the top-notch professionals of the
Link: http://paranoia.watchcom.no/index.php?page=40
Potential speakers are invited to submit topics and summary abstracts for the 6th annual PARANOIA conference in Oslo, Norway.
This one-day event attracts 600+ attendees and vendors providing opportunities for business and intellectual engagement among attendees on topics related to IT- and information security.
There is no registration fee for speakers of accepted topics.
Suggested topics for submission of papers are listed below (but not limited to):
• Cyber Warfare
QuahogCon will be held April 23rd-25th, 2010 at Hotel Providence in Providence, RI
Call for Papers Opens today!
Come one, come all! Screw up your courage and get up to talk in front of a room full of folks at QuahogCon! We're a new conference in Providence, RI, looking to give you a place in the Northeast to present your ideas on Information Security and Maker Culture. We're here to encourage the hacker ethic in all its forms.
Conference Format
QuahogCon has two tracks:
After 5 very successful editions we are off to the 6th edition of the
you Sh0t the Sheriff security conference and we are sending this off
so you send us the coolest stuff you've been working on.
The conference will happening on May, 7th, 2012 in Sao Paulo, Brazil.
This is your chance to speak about that cool research you’ve been
working on, to those whom matter in the Brazilian Information Security
realm.
ABOUT THE CONFERENCE
you Sh0t the Sheriff is a very unique, one-day, event dedicated to
Call for Papers and Workshops
http://www.athcon.org/cfp
From 3rd - 4th June AthCon, the first highly technical information
security conference in Greece will take place in Athens at the
Jockey's Country Club (http://www.jockeyscountryclub.gr)
* Day 1: Training (Thursday 03 Jun 2010)
* Day 2: Sessions (Friday 04 Jun 2010)
4.) Babak Javadi (TOOOL USA)
5.) Bruno Goncalves de Oliveira (Computer Engineer, iBLISS)
6.) Chris Evans (Information Security Engineer/Troublemaker/Chrome
Security, Google Corp)
7.) Damien Aumaitre (Sogeti)
8.) Daniele Bianco (Hardware Hacker, Inverse Path)
Bonsai Information Security - Advisory
http://www.bonsai-sec.com/research/
SQL Injection in CS-Cart
1. *Advisory Information*
Title: SQL Injection in CS-Cart
Advisory ID: BONSAI-2009-0100
Bonsai Information Security - Advisory
http://www.bonsai-sec.com/research/
SQL Injection in Achievo
1. *Advisory Information*
Title: SQL Injection in Achievo
Advisory ID: BONSAI-2009-0102
non-technical people can meet each other and share freely all kind of
information. The convention will be held in the Grand-Duchy of
Luxembourg in October 2009 (28-30.10.2009). The conference is three days
of active discussions, presentations and workshops for sharing
experience around new attacks, defensive techniques and information
security (including funky experiments). We would like to announce the
opportunity to submit papers, and/or lightning talk proposals for
selection by the hack.lu technical review committee. This year we will
be doing one hour talks, and some shorter talk sessions.
Call for Papers and Workshops
http://www.athcon.org/cfp
AthCon is the first highly technical information security conference
in Greece, first introduced in June 2010.
This year's AthCon will take place from 2nd - 3d June 2011, in Athens
at the Jockey's Country Club (http://www.jockeyscountryclub.gr)
Bonsai Information Security - Advisory
http://www.bonsai-sec.com/research/
Multiple XSS in Achievo
1. *Advisory Information*
Title: Multiple XSS in Achievo
Advisory ID: BONSAI-2009-0101
Advisory URL: http://www.bonsai-sec.com/research/vulnerabilities/achievo-multiple-xss-0101.txt
* Wireless Network and Security
* Attacks on Information Systems and/or Digital Information Storage
* Electronic Voting
* Free Software and Security
* Assessment of Computer, Electronic Devices and Information Systems
* Standards for Information Security
* Legal and Social Aspect of Information Security
* Software Engineering and Security
* Security in Information Retrieval
* Network Security
* Forensics and Anti-Forensics
* Wireless Network and Security
* Attacks on Information Systems and/or Digital Information Storage
* Electronic Voting
* Free Software and Security
* Assessment of Computer, Electronic Devices and Information Systems
* Standards for Information Security
* Legal and Social Aspect of Information Security
* Software Engineering and Security
* Security in Information Retrieval
* Network security
* Forensics and Anti-Forensics
* Wireless Network and Security
* Attacks on Information Systems and/or Digital Information Storage
* Electronic Voting
* Free Software and Security
* Assessment of Computer, Electronic Devices and Information Systems
* Standards for Information Security
* Legal and Social Aspect of Information Security
* Software Engineering and Security
* Security in Information Retrieval
* Network Security
* Forensics and Anti-Forensics
TOPICS
All paper submissions are expected to be written in and will be
reviewed in English. You are welcome to submit material, regardless of
your organisation. AthCon welcomes cutting edge information security
research from industry, researchers, professionals, academics,
government and the underground security community. As a guideline, the
following topics are rendered relevant for 2012:
• Android/iPhone/Windows Mobile research
Discovered and advised to Adobe in July 2008 by Paul Craig of Security-Assessment.com
======================== About Security-Assessment.com =================
Security-Assessment.com is Australasia's leading team of Information Security consultants
specialising in providing high quality Information Security services to clients throughout
the Asia Pacific region. Our clients include some of the largest globally recognised
companies in areas such as finance, telecommunications, broadcasting, legal and government.
Our aim is to provide the very best independent advice and a high level of technical
expertise while creating long and lasting professional relationships with our clients.
===============================ADVISORY===============================
Systems Affected: Citrix ICA Client
Severity: High
Category: Heap Offset Overflow
Author: Context Information Security Ltd
Reported to vendor: 20th February 2008
Advisory Issued: 4th August 2010
===============================ADVISORY===============================
Description
null is proud to announce the launch of it's security & hacking
conference nullcon Goa 2010 nullcon Goa 2010, India's first
'community' driven security & hacking conference will bring together
Security Researchers, security professionals, vendors, CXOs, Law
Enforcements agencies from all over the country to a common platform
to discuss latest research in field of Information Security and in
particular the major security threats faced by everyone today.
We are extremely thankful to SANS for providing us a free seat as a
prize for the hacking challenge winner at nullcon for their SEC 504:
Hacker Techniques, Exploits & Incident Handling class (worth USD 4095)
distribution and proper credit is given.
XI. About Talsoft S.R.L.
Talsoft S.R.L is a growing company with the mission to provide
solutions in the following areas:
+ Information Security
+ Technology administration
+ Open source solutions
+ Trainings and courses
Talsoft S.R.L. is also involved in many information security research projects.
========================================================
6) About Rewterz
Rewterz is a boutique Information Security company, committed to
consistently providing world class professional security services.
Our strategy revolves around the need to provide round-the-clock
quality information security services and solutions to our customers.
We maintain this standard through our highly skilled and professional
team, and custom-designed, customer-centric services and products.
very useful for testing web application scanners, and teaching
students how web application firewalls work. The beauty is that a user
may access the same vulnerable script using the three methods; which
helps a lot in the learning process.
This is the first contribution of Bonsai Information Security to the
w3af project. Many more contributions are on it's way,
More information about moth and the download link can be found here:
http://www.bonsai-sec.com/research/moth.php
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Bonsai Information Security - Advisory
http://www.bonsai-sec.com/research/
Multiple XSS in Apache OFBiz
1. *Advisory Information*
========================================================
6) About Rewterz
Rewterz is a boutique Information Security company, committed to
consistently providing world class professional security services.
Our strategy revolves around the need to provide round-the-clock
quality information security services and solutions to our customers.
We maintain this standard through our highly skilled and professional
team, and custom-designed, customer-centric services and products.
========================================================
6) About Rewterz
Rewterz is a boutique Information Security company, committed to
consistently providing world class professional security services.
Our strategy revolves around the need to provide round-the-clock
quality information security services and solutions to our customers.
We maintain this standard through our highly skilled and professional
team, and custom-designed, customer-centric services and products.
ISEC(Information Security Conference) 2008
(http://www.isecconference.org)
ISEC 2008 provides korea's largest security community, a place for sharing practical informaion and meeting newest technologies and products, so that security staff can build effective integrated information security systems.
After the success of ISEC 2007, a large number of network and security business practitioners will participate in ISEC 2008, which has the subhead of "Attack & Defence", providing a place for sharing the information and experience new technologies.
Date : Sep.1st~ 2nd, 2008 09:00~18:00
Venue : Grand Ballroom, COEX, Seoul, KOREA
Organized by : BOANNEWS,
Rocky Mountain Information Security Conference
Call for Papers
Friday, May 13, 2011
(PreConference Workshops on Thursday, May 12, 2011)
Sheraton Denver Downtown
Denver, CO 80202
DEADLINE FOR PAPER SUBMISSION: FEBRUARY 11, 2011
Go Here to Submit a Paper:
Next Page>>
|
