Next Page >>
Network Protocol
. Run Internet Explorer with Protected Mode [3] turned ON if it is
supported by the operating system. This is default setting for the
Internet security zone on Windows Vista, Windows 7 and Windows Server
2008. Note that there may be specific scenarios where protected mode may
need to be turned off [4]
. Use Internet Explorer's Network Protocol Lockdown feature control
to restrict the 'file:' protocol to prevent HTML content from UNC paths
from running scripting or ActiveX controls. Note that Network Protocol
Lockdown may affect the functionality of Web applications that rely on
relaxed security configurations of IE.
. Set the Security Level setting to High for the Internet and Local
# UMTS, HSDPA, GPRS and CDMA Security
# Security of Wimax, WLAN, Bluetooth, GPS and other wireless technology
# Analysis of network and security vulnerabilities
# Firewall and Intrusion detection technology
# Data Recovery and Incident Response
# Network Protocol and Analysis
# Analysis of malicious code
# Applications of cryptographic techniques
# Analysis of attacks against networks and machines
# File system security
# Apple / OS X security vulnerabilities
# SS7/Backbone telephony networks
# VoIP security
# Data Recovery, Forensics and Incident Response
# HSDPA / CDMA Security / WIMAX Security
# Network Protocol and Analysis
# Smart Card and Physical Security
# Virus and Worms
# WLAN, GPS, HAM Radio, Satellite, RFID and Bluetooth Security
# Analysis of malicious code
# Applications of cryptographic techniques
# Firewall technologies
# Intrusion detection
# Data Recovery, Forensics and Incident Response
# HSDPA and CDMA Security
# Identification and Entity Authentication
# Network Protocol and Analysis
# Smart Card and Physical Security
# Virus and Worms
# WLAN, RFID and Bluetooth Security
# Analysis of malicious code
# Applications of cryptographic techniques
# Intrusion detection
# Data Recovery, Forensics and Incident Response
# HSDPA and CDMA Security
# WIMAX Security
# Identification and Entity Authentication
# Network Protocol and Analysis
# Smart Card and Physical Security
# Virus and Worms
# WLAN, GPS, HAM Radio, Satellite, RFID and Bluetooth Security
# Analysis of malicious code
# Applications of cryptographic techniques
is loaded, local users can gain elevated privileges via the sendmsg() system
call.
CVE-2010-3873
Dan Rosenberg reported an issue in the X.25 network protocol. Local users
can cause heap corruption, resulting in a denial of service (kernel panic).
CVE-2010-3874
Dan Rosenberg discovered an issue in the Control Area Network (CAN)
Software Description:
- linux-ti-omap4: Linux kernel for OMAP4 devices
Details:
Dan Rosenberg discovered that the RDS network protocol did not correctly
check certain parameters. A local attacker could exploit this gain root
privileges. (CVE-2010-3904)
Nelson Elhage discovered several problems with the Acorn Econet protocol
driver. A local user could cause a denial of service via a NULL pointer
# UMTS, HSDPA, GPRS and CDMA Security
# Security of Wimax, WLAN, Bluetooth, GPS and other wireless technology
# Analysis of network and security vulnerabilities
# Firewall and Intrusion detection technology
# Data Recovery and Incident Response
# Network Protocol and Analysis
# Analysis of malicious code
# Applications of cryptographic techniques
# Analysis of attacks against networks and machines
# File system security
Kees Cook discovered that the ethtool interface did not correctly clear
kernel memory. A local attacker could read kernel heap memory, leading to a
loss of privacy. (CVE-2010-3861)
Thomas Pollet discovered that the RDS network protocol did not check
certain iovec buffers. A local attacker could exploit this to crash the
system or possibly execute arbitrary code as the root user. (CVE-2010-3865)
Dan Rosenberg discovered that the Linux kernel X.25 implementation
incorrectly parsed facilities. A remote attacker could exploit this to
# Intrusion detection
# Data Recovery, Forensics and Incident Response
# HSDPA and CDMA Security
# WIMAX Security
# Identification and Entity Authentication
# Network Protocol and Analysis
# Smart Card and Physical Security
# Virus and Worms
# WLAN, GPS, HAM Radio, Satellite, RFID and Bluetooth Security
# Analysis of malicious code
# Applications of cryptographic techniques
# HSDPA / CDMA Security / WIMAX Security
# Apple / OS X security vulnerabilities
# Next generation attacks and exploits
# Smart Card and Physical Security
# SS7/Backbone telephony networks
# Network Protocol and Analysis
# File system security
# Exploit Analysis
# Cloud Security
# VoIP security
interest include, but are not limited to:
* * Vista, Linux, OSX Security
* * E/I-Voting Case-Studies, Attacks, Weaknesses
* * Mobile Security
* * Network Protocol Analysis
* * AJAX/Web2.0/Javascript Security
* * Secure Software Development
* * VoIP
* * Perimeter Defense / Firewall Technology
* * Digital Forensics
Background
==========
MIT Kerberos 5 is a suite of applications that implement the Kerberos
network protocol. kadmind is the MIT Kerberos 5 administration daemon,
KDC is the Key Distribution Center.
Affected packages
=================
for the remote execution of arbitrary code and a Denial of Service.
Background
==========
Wireshark is a network protocol analyzer with a graphical front-end.
Affected packages
=================
-------------------------------------------------------------------
Background
==========
MIT Kerberos 5 is a suite of applications that implement the Kerberos
network protocol.
Affected packages
=================
-------------------------------------------------------------------
Wireshark.
Background
==========
Wireshark is a network protocol analyzer with a graphical front-end.
Affected packages
=================
-------------------------------------------------------------------
Wireshark.
Background
==========
Wireshark is a network protocol analyzer with a graphical front-end.
Affected packages
=================
-------------------------------------------------------------------
encoding of HTML content on outbound messages, thus a malicious attacker
with the ability to bypass outbound HTML filtering can send any type of
HTML content to other IM clients.
A handful of publicly available and well-known IM clients permit to send
un-sanitized data to any other client that supports the same
communications protocol including the vulnerable AIM 6.1, AIM 6.2, AIM Pro
and AIM Lite clients.
Second, although there are some defensive mechanisms implemented in the
vulnerable clients these are insufficient to properly handle messages with
potentially malicious content. Input validation of inbound messages
appears to be taking place but can be easily circumvented by an attacker.
for the remote execution of arbitrary code and a Denial of Service.
Background
==========
Wireshark is a network protocol analyzer with a graphical front-end.
Affected packages
=================
-------------------------------------------------------------------
I. BACKGROUND
The snoop command line utility is installed by default on Solaris. It is
used to capture and display network traffic, similar to the widely used
tcpdump program. Server Message Block (SMB), is a network protocol used
for Microsoft Windows file sharing. More information can be found on the
vendor's website at the following URL.
http://docs.sun.com/app/docs/doc/816-0211/6m6nc677k?a=view
It was discovered that KVM did not correctly initialize certain CPU
registers. A local attacker could exploit this to crash the system, leading
to a denial of service. (CVE-2010-3698)
Thomas Pollet discovered that the RDS network protocol did not check
certain iovec buffers. A local attacker could exploit this to crash the
system or possibly execute arbitrary code as the root user. (CVE-2010-3865)
Vasiliy Kulikov discovered that the Linux kernel X.25 implementation did
not correctly clear kernel memory. A local attacker could exploit this to
Kees Cook discovered that the ethtool interface did not correctly clear
kernel memory. A local attacker could read kernel heap memory, leading to a
loss of privacy. (CVE-2010-3861)
Dan Rosenberg discovered that the RDS network protocol did not correctly
check certain parameters. A local attacker could exploit this gain root
privileges. (CVE-2010-3904)
Kees Cook and Vasiliy Kulikov discovered that the shm interface did not
clear kernel memory correctly. A local attacker could exploit this to read
Background
==========
MIT Kerberos 5 is a suite of applications that implement the Kerberos
network protocol. kadmind is the MIT Kerberos 5 administration daemon,
KDC is the Key Distribution Center.
Affected packages
=================
Topics of special interest include:
* OS Security (XP, Vista, GNU/Linux, OS X, ...)
* E/I-Voting Case-Studies, Attacks, Weaknesses
* Mobile and PAN Security
* Network Protocol Analysis
* AJAX/Web2.0/Javascript Security
* Secure Software Development
* VoIP
* Perimeter Defense / Firewall Technology
* Digital Forensics
for Denial of Service.
Background
==========
Wireshark is a versatile network protocol analyzer.
Affected packages
=================
-------------------------------------------------------------------
for Denial of Service (application crash) or remote code execution.
Background
==========
Wireshark is a versatile network protocol analyzer.
Affected packages
=================
-------------------------------------------------------------------
USN-1080-1 fixed vulnerabilities in the Linux kernel. This update provides
the corresponding updates for the Linux kernel for use with EC2.
Original advisory details:
Thomas Pollet discovered that the RDS network protocol did not check
certain iovec buffers. A local attacker could exploit this to crash the
system or possibly execute arbitrary code as the root user. (CVE-2010-3865)
Vasiliy Kulikov discovered that the Linux kernel X.25 implementation did
not correctly clear kernel memory. A local attacker could exploit this to
code.
Background
==========
A suite of applications that implement the Kerberos 5 network protocol
from MIT.
Affected packages
=================
Kees Cook discovered that the ethtool interface did not correctly clear
kernel memory. A local attacker could read kernel heap memory, leading to a
loss of privacy. (CVE-2010-3861)
Dan Rosenberg discovered that the RDS network protocol did not correctly
check certain parameters. A local attacker could exploit this gain root
privileges. (CVE-2010-3904)
Kees Cook and Vasiliy Kulikov discovered that the shm interface did not
clear kernel memory correctly. A local attacker could exploit this to read
Ionix MPLS Management Suite (Ionix MPLS) 4.0.0 and earlier
Ionix Multicast Manager (Ionix MCAST) 2.1 and earlier
Ionix Network Protocol Management Suite (Ionix NPM) 3.1 and earlier
Ionix Optical Transport Management Suite (Ionix OTM) 5.1 and earlier
Ionix Server Manager (EISM) 3.0 and earlier
Next Page>>
|
