| New User, Welcome! Login |
new generation
Microsoft has released a fix for this vulnerability, see http://technet.microsoft.com/security/bulletin/MS11-074 for further information.
=======
VI. Credit
=======
The vulnerability was automatically discovered by Seeker® - New generation application security testing solution, utilizing ground breaking BRITE™ technology (Behavioral Runtime Intelligent Testing Engine).
Further research and publication was performed by Irene Abezgauz, Product Manager, Seeker Security.
For more information please visit www.seekersec.com
======================================================================
3) Vendor's Description of Software
"Orbit Downloader, leader of download manager revolution, is devoted
to new generation web (web2.0) downloading, such as video/music/
streaming media from Myspace, YouTube, Imeem, Pandora, Rapidshare,
support RTMP. And to make general downloading easier and faster.".
Product Link: http://www.orbitdownloader.com/
1) Introduction
===============
From vendor's homepage:
"PcVue is a new generation of SCADA software. It is characterised by
modern ergonomics and by tools based on object technology to reduce and
optimise applications development."
#######################################################################
- Critical infrastructures. Protection architectures, redundancy and
replication, scalability issues...
Track 3: New Technologies & services
------------------------------------
- New generation Internet, Post IP and IPv6
- NGN architectures, protocols and services management and delivery
- Web 2.0 applications and IMS (IP Multimedia Subsystems)
- Next generation systems & Service-oriented techniques
- IPTV and content distribution networks
- User-centric networking and services
======================================================================
3) Vendor's Description of Software
"Orbit Downloader, leader of download manager revolution, is devoted
to new generation web (web2.0) downloading, such as
video/music/streaming media from Myspace, YouTube, Imeem, Pandora,
Rapidshare, support RTMP. And to make general downloading easier and
faster.".
Product Link:
- Critical infrastructures. Protection architectures, redundancy and
replication, scalability issues...
Track 3: New Technologies & services
------------------------------------
- New generation Internet, Post IP and IPv6
- NGN architectures, protocols and services management and delivery
- Web 2.0 applications and IMS (IP Multimedia Subsystems)
- Next generation systems & Service-oriented techniques
- IPTV and content distribution networks
- User-centric networking and services
Kaspersky Lab Multiple Products Local Privilege Escalation Vulnerability
BACKGROUND
Due to its high level of professionalism and dedication, Kaspersky Lab has become a market leader in the development of antivirus protection. The company’s main product, Kaspersky Anti-Virus, regularly receives top awards in tests conducted by respected international research centers and IT publications. Kaspersky Lab was the first to develop many technological standards in the antivirus industry, including full-scale solutions for Linux, Unix and NetWare, a new-generation heuristic analyzer designed to detect newly emerging viruses, effective protection against polymorphic and macro viruses, continuously updated antivirus databases and a technique for detecting viruses in archived files.
Source: http://www.kaspersky.com
VULNERABLE PRODUCTS
malice and out of sheer incompetence.
To give this exploit a little of that "je ne sais quoi", we need to come up
with a good attack vector. Now we're going to show you how Apple didn't just
unearth a decade-old vulnerability and make it viable again a la Microsoft, it
actually becomes more viable to exploit in this new generation than it was at
the time of its inception. When cross-protocol scripting was born, Javascript
was pretty young. There wasn't a whole lot you could do with it then--any bits
of Javascript now called AJAX wouldn't be a cross-browser standard until 2004.
So I looked at this integer overflow and I thought to myself what exactly I'd
=======
VI. Credit
=======
The vulnerability was automatically discovered by Seeker(r) - New
generation application security testing solution, utilizing ground
breaking BRITE(tm) technology (Behavioral Runtime Intelligent Testing
Engine).
Further research and publication was performed by Irene Abezgauz,
Product Manager, Seeker Security.
For more information please visit www.seekersec.com
I know it's been a while, but I've been busy etc. etc. :)
After 3 years, I've finally got around to a full release number! Here is
version 1.0a, in which I've started integrating Nick von Dadelszen's
libnfc (http://www.libnfc.org/) wrapper so we can support the new
generation of usb stick readers which are practically given away with
digital cash products such as Snapper
(http://www.snapper.co.nz/index.html). I've also done a lot of tidying
up of the Mifare key handling code (the KeyA and KeyB stuff was probably
some of the earliest code I wrote on this project, and was pretty
broken!), as I'm starting to see a lot of live security issues with
|
|
|
