New User, Welcome!     Login

Recurity Labs GmbH

TCP/IP Orphaned Connections Vulnerability

publish the following advisory:

http://www.recurity-labs.com/content/pub/Microsoft_Windows_CVE-2009-1926_MS09-048.txt

regards,
Fabian "fabs" Yamaguchi, Recurity Labs GmbH

________________________________________________________________________

Recurity Labs GmbH
http://www.recurity-labs.com

Cisco Security Advisory: Cisco Secure Access Control Server for Windows User-Changeable Password Vulnerabilities

=======

Two sets of vulnerabilities were discovered in the Cisco Secure
Access Control Server (ACS) for Windows User-Changeable Password
(UCP) application and reported to Cisco by Felix 'FX' Lindner, 
Recurity Labs GmbH.

The first set of vulnerabilities address several buffer overflow
conditions in the UCP application that could result in remote
execution of arbitrary code on the host system where UCP is
installed.

Cisco CUCM - Multiple Vulnerabilities

________________________________________________________________________

Recurity Labs GmbH
http://www.recurity-labs.com
entomology@recurity-labs.com
Date: 08.11.2011
________________________________________________________________________

Vendor:             Cisco Systems
Product:            CUCM Environment

Re: IOS Rookit: the sky isn't falling (yet)

cheers
FX

-- 
Recurity Labs GmbH           | Felix 'FX' Lindner 
http://www.recurity-labs.com | fx@recurity-labs.com 
Wrangelstrasse 4             | Fon: +49 30 69539993-0
10997 Berlin                 | PGP: A740 DE51 9891 19DF 0D05  
Germany                      |      13B3 1759 C388 C92D 6BBB
HRB 105213 B, Amtsgericht Charlottenburg, GF Felix Lindner

Re: Oracle 11g Password algorithm revealed

Different people identified the algorithm at the same time.

Recurity Labs GmbH (Tnx to Thorsten Schrder and Fx) did the research for us. A very interesting analysis about the 11g password algorithm can be found at the following URL:

http://www.phenoelit.net/lablog/oracle.sl


Regards

 Alexander Kornbrust

Re: [Full-disclosure] The Death of Defence in Depth ? - An invitation to Hack.lu

cheers
FX

-- 
Recurity Labs GmbH           | Felix 'FX' Lindner 
http://www.recurity-labs.com | fx@recurity-labs.com 
Wrangelstrasse 4             | Fon: +49 30 69539993-0
10997 Berlin                 | PGP: A740 DE51 9891 19DF 0D05  
Germany                      |      13B3 1759 C388 C92D 6BBB
HRB 105213 B, Amtsgericht Charlottenburg, GF Felix Lindner

Cisco ACS UCP Remote Pre-Authentication Buffer Overflows

cheers
FX

-- 
Recurity Labs GmbH           | Felix 'FX' Lindner 
http://www.recurity-labs.com | fx@recurity-labs.com 
Wrangelstrasse 4             | Fon: +49 30 69539993-0
10997 Berlin                 | PGP: A740 DE51 9891 19DF 0D05  
Germany                      |      13B3 1759 C388 C92D 6BBB
HRB 105213 B, Amtsgericht Charlottenburg, GF Felix Lindner


Copyright © 1995-2012 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!