Threat Level: green Handler on Duty: Daniel Wesemann

SANS ISC InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Ubuntu privilege escalation via PAM

Published: 2010-07-08
Last Updated: 2010-07-08 20:01:17 UTC
by Kyle Haugsness (Version: 1)
0 comment(s)

Ubuntu has released a security advisory and update that fixes PAM.  The vulnerable code would allow any user with local login privileges to escalate to root.  http://www.ubuntu.com/usn/usn-959-1  It is recommended to upgrade immediately.

-Kyle Haugsness

Keywords: ubuntu
0 comment(s)

Pirate Bay account database compromised

Published: 2010-07-08
Last Updated: 2010-07-08 19:56:50 UTC
by Kyle Haugsness (Version: 1)
1 comment(s)

Juha-Matti was the first to write in with this article from Brian Krebs.  The article explains how the Pirate Bay user database was compromised via SQL injection.  http://krebsonsecurity.com/2010/07/pirate-bay-hack-exposes-user-booty/

Of course, I am sure that none of our readers would have an account at the Pirate Bay except for the rare "I'm doing security research" purpose only.  But you may want to drop a helpful hint to your "friends". 

-Kyle Haugsness

Keywords: pirate bay
1 comment(s)

New poll on MSRC

Published: 2010-07-08
Last Updated: 2010-07-08 19:45:09 UTC
by Kyle Haugsness (Version: 1)
0 comment(s)

As more people seem to be releasing 0day vulnerabilities against Microsoft products, I posted a new poll on the "Microsoft-Spurned Researcher Collective".  Give us your opinions.  http://isc.sans.edu/poll.html?pollid=295

Keywords: MSRC
0 comment(s)
Diary Archives