| New User, Welcome! Login |
Next Page >>
applied
Attacking Infrastructures
* Exotic Network Attacks
* Telecom (from VoIP to SS7 to GSM & 3G RF hacks)
* Financial and Banking institutions
* SCADA and the industrial world, applied.
* Governmental firewall and their limits (Australia, French's HADOPI,
China, Iran, Danemark, Germany, ...)
* Satellites, Military, Intelligence data collection backbones ("I
hacked Echelon and I would like to share")
* Non-IP (SNA, ISO, make us dream...)
* Final papers due: Monday, August 17th, 2009
======================================================================
The annual ACM Computer and Communications Security Conference is a
leading international forum for information security researchers,
practitioners, developers, and users to explore cutting-edge ideas and
results, and to exchange techniques, tools, and experiences. The
conference seeks submissions from academia, government, and industry
presenting novel research on all practical and theoretical aspects of
computer and communications security, as well as case studies and
[*] Attacking Infrastructures
* Botnets and C&C abuses
* Exotic Network Attacks
* Telecom (from VoIP to SS7 to GSM & 3G/4G RF hacks)
* Financial and Banking institutions
* SCADA and the industrial world, applied.
* Governmental firewall and their limits (Australia, French's
HADOPI,
China, Iran, Denmark, Germany, ...)
* Law enforcement : how to / how to deceive / how to abuse.
* Satellites, Military, Intelligence data collection backbones
* Herbert Bos, Vrije Universiteit Amsterdam, The Netherlands
* Juan Caballero, IMDEA Software, Spain
* Lorenzo Cavallaro, Vrije Universiteit Amsterdam, The Netherlands
* Marco Cova, University of Birmingham, UK
* Sven Dietrich, Stevens Institute of Technology, USA
* Ulrich Flegel, Offenburg University of Applied Sciences, Germany
* Felix Freiling, University of Erlangen-Nurnberg, Germany
* Thorsten Holz, Ruhr-University Bochum, Germany
* Martin Johns, SAP Research, Germany
* Engin Kirda, Eurecom, France
* Christian Kreibich, International Computer Science Institute, USA
This advisory can be downloaded in PDF format from
http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you
will gain access to beforehand information on upcoming advisories,
presentations and new research projects from the Onapsis Research
Labs, as well as exclusive access to special promotions for upcoming
trainings and conferences.
1. Impact on Business
Onapsis Security Advisory 2011-002: SAP Management Console Information Disclosure
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
1. Impact on Business
=====================
---------------
The PST2011 International Conference on Privacy, Security and Trust (PST)
is being held in Montreal, Quebec, Canada, July 19-21, 2011. PST2011 is
the ninth such annual conference focusing on PST technologies. PST2011
provides a forum for researchers world-wide to unveil their latest work in
privacy, security and trust and to show how this research can be used to
enable innovation.
Easychair submission link of PST 2011:
---------------
The PST2011 International Conference on Privacy, Security and Trust (PST)
is being held in Montreal, Quebec, Canada, July 19-21, 2011. PST2011 is
the ninth such annual conference focusing on PST technologies. PST2011
provides a forum for researchers world-wide to unveil their latest work in
privacy, security and trust and to show how this research can be used to
enable innovation.
EasyChair submission link of PST 2011:
---------------
The PST2011 International Conference on Privacy, Security and Trust (PST)
is being held in Montreal, Quebec, Canada, July 19-21, 2011. PST2011 is
the ninth such annual conference focusing on PST technologies. PST2011
provides a forum for researchers world-wide to unveil their latest work in
privacy, security and trust and to show how this research can be used to
enable innovation.
EasyChair submission link of PST 2011:
Onapsis Security Advisory 2011-010: Oracle JD Edwards JDENET Remote Logging Deactivation
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
?
?1. Impact on Business
=====================
?
Onapsis Security Advisory 2011-005: SAP Enterprise Portal Path Disclosure
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
1. Impact on Business
=====================
Onapsis Security Advisory 2011-008: Oracle JD Edwards JDENET CallObjectKernel Remote Command Execution
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
?
1. Impact on Business
=====================
Onapsis Security Advisory 2011-011: Oracle JD Edwards JDENET Buffer Overflow
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well asexclusive access to special promotions for upcoming trainings and conferences.
?
?1. Impact on Business
=====================
Onapsis Security Advisory 2011-012: Oracle JD Edwards JDENET Firewall Bypass
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
?
?1. Impact on Business
=====================
??
Onapsis Security Advisory 2011-013: Oracle JD Edwards JDENET USRBROADCAST Denial of Service
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
?
?1. Impact on Business
=====================?
Onapsis Security Advisory 2011-006: Oracle JD Edwards JDENET Kernel Denial of Service
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
1. Impact on Business
=====================
Onapsis Security Advisory 2011-009: Oracle JD Edwards JDENET SawKernel Remote Password Disclosure
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
?
?1. Impact on Business
=====================
Onapsis Security Advisory 2011-007: Oracle JD Edwards JDENET Kernel Shutdown
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
?
1. Impact on Business
=====================
Onapsis Security Advisory 2011-004: SAP WebAS ITS Mobile Test Service Multiple Vulnerabilities
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
1. Impact on Business
=====================
Onapsis Security Advisory 2011-003: SAP WebAS ITS Mobile Start Service Multiple Vulnerabilities
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
1. Impact on Business
=====================
Onapsis Security Advisory: Oracle JD Edwards JDENET Arbitrary File Write
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well asexclusive access to special promotions for upcoming trainings and conferences.
1. Impact on Business
=====================
Onapsis Security Advisory: Oracle JD Edwards Security Kernel Remote Password Disclosure
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well asexclusive access to special promotions for upcoming trainings and conferences.
1. Impact on Business
=====================
Onapsis Security Advisory: Oracle JD Edwards SawKernel Arbitrary File Read
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
1. Impact on Business
=====================
Onapsis Security Advisory: Oracle JD Edwards SawKernel GET_INI Information Disclosure
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
1. Impact on Business
=====================
Onapsis Security Advisory: Oracle JD Edwards JDENET Multiple Information Disclosure
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
1. Impact on Business
=====================
Onapsis Security Advisory: Oracle JD Edwards JDENET Large Packets Denial of Service
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
1. Impact on Business
=====================
Onapsis Security Advisory: Oracle JD Edwards Security Kernel Information Disclosure
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
1. Impact on Business
=====================
Onapsis Security Advisory: Oracle JD Edwards SawKernel SET_INI Configuration Modification
This advisory can be downloaded in PDF format from http://www.onapsis.com/.
By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand information on upcoming advisories, presentations
and new research projects from the Onapsis Research Labs, as well as exclusive access to special promotions for upcoming trainings and conferences.
1. Impact on Business
=====================
different domains and any files stored on local filesystems.
The bug is related to a lack of enforcement of security policies
assigned to URL Security Zones [2] when content from the corresponding
zone is loaded and rendered from a local file. These issues have been
found in the way that security policies are applied when a URI is
specified in the UNC form (i.e., '\\MACHINE_NAME_OR_IP\PATH_TO_RESOURCE'):
1. When a remote site attempts to access a local resource, IE will
fail to enforce the Zone Elevation restrictions.
2. When browsing a remote site, IE will not properly enforce the
Details follow:
It was discovered that xine-lib did not correctly handle certain malformed
Ogg and Windows Media files. If a user or automated system were tricked into
opening a specially crafted Ogg or Windows Media file, an attacker could cause
xine-lib to crash, creating a denial of service. This issue only applied to
Ubuntu 6.06 LTS, 7.10, and 8.04 LTS. (CVE-2008-3231)
It was discovered that the MNG, MOD, and Real demuxers in xine-lib did not
correctly handle memory allocation failures. If a user or automated system were
tricked into opening a specially crafted MNG, MOD, or Real file, an attacker
Next Page>>
|
|
|
