Threat Level: Infocon green

ISC Diary

Refresh Latest Diaries



advertisement
Diary Advertisement
Use Discount Code SANSFIREISC10 when registering to get a 10% discount!!

Ubuntu privilege escalation via PAM

Published: 2010-07-08,
Last Updated: 2010-07-08 20:01:17 UTC
by Kyle Haugsness (Version: 1)

0 comment(s)

Ubuntu has released a security advisory and update that fixes PAM.  The vulnerable code would allow any user with local login privileges to escalate to root.  http://www.ubuntu.com/usn/usn-959-1  It is recommended to upgrade immediately.

-Kyle Haugsness

Keywords: ubuntu
0 comment(s)
Top of page

Pirate Bay account database compromised

Published: 2010-07-08,
Last Updated: 2010-07-08 19:56:50 UTC
by Kyle Haugsness (Version: 1)

1 comment(s)

Juha-Matti was the first to write in with this article from Brian Krebs.  The article explains how the Pirate Bay user database was compromised via SQL injection.  http://krebsonsecurity.com/2010/07/pirate-bay-hack-exposes-user-booty/

Of course, I am sure that none of our readers would have an account at the Pirate Bay except for the rare "I'm doing security research" purpose only.  But you may want to drop a helpful hint to your "friends". 

-Kyle Haugsness

Keywords: pirate bay
1 comment(s)
Top of page

New poll on MSRC

Published: 2010-07-08,
Last Updated: 2010-07-08 19:45:09 UTC
by Kyle Haugsness (Version: 1)

0 comment(s)

As more people seem to be releasing 0day vulnerabilities against Microsoft products, I posted a new poll on the "Microsoft-Spurned Researcher Collective".  Give us your opinions.  http://isc.sans.edu/poll.html?pollid=295

Keywords: MSRC
0 comment(s)
Top of page

Comments

Please choose a specific diary above to comment

Diary Archives

Top of page
site/port/ip search:

Announcement!

IPv6 Support Added

Our iptables client now supports submitting IPv6 firewall logs.

Get ISC Swag!!

Advertisement

Security News Feeds

InternetStormCenter
SANS Newsbites
SANS @Risk

Diary Archives

Ubuntu Package available to submit firewall logs to DShield - by: Johannes Ullrich (2013-05-20)

Safe - Tools, Tactics and Techniques - by: Guy Bruneau (2013-05-20)

Port 51616 - Got Packets? - by: Kevin Shortt (2013-05-19)

View Diary Archives

Search Diaries:

SANS Institute

View our Privacy Policy

Contact Us

Phone: (757) SANS-ISC (726-7472) - Voice Mail Only
Web Contact: handlers@isc.sans.edu
Report Bugs: Sourceforge Project
Debug Info: Browser Debug Info

"The experiences gained in the SANS Technology Institute program have helped me advance in IBM, taking a more public facing role."
- Jerome Radcliffe, SANS Technology Institute Student

"SANS is a 'giving back to the community factory.' SANS encourages and fosters growing security awareness and growing the security community."
- Rob VandenBrink, Alumni of SANS Technology Institute