Threat Level: green Handler on Duty: Didier Stevens

SANS ISC Diaries by Keyword


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
DateAuthorTitle

BACKTRACK 5 R2

2012-04-12Guy Bruneauwicd Privilege Escalation 0day exploit for Backtrack 5 R2

BACKTRACK

2012-08-14/a>Rick WannerBacktrack 5 r3 released - http://www.backtrack-linux.org/downloads/
2012-04-12/a>Guy Bruneauwicd Privilege Escalation 0day exploit for Backtrack 5 R2
2011-05-10/a>Swa FrantzenBacktrack 5 released
2010-12-27/a>Johannes UllrichVarious sites "Owned and Exposed"
2010-01-11/a>Adrien de BeaupreBackTrack 4 final released http://www.remote-exploit.org/news.html http://www.backtrack-linux.org/downloads/

5

2015-04-15/a>Johannes UllrichMS15-034: HTTP.sys (IIS) DoS And Possible Remote Code Execution. PATCH NOW
2015-02-05/a>Johannes UllrichAdobe Flash Player Update Released, Fixing CVE 2015-0313
2015-01-27/a>Johannes UllrichNew Critical GLibc Vulnerability CVE-2015-0235 (aka GHOST)
2014-09-03/a>Johannes UllrichF5 BigIP Unauthenticated rsync Vulnerability
2014-07-10/a>Rob VandenBrinkCertificate Errors in Office 365 Today
2014-06-12/a>Johannes UllrichMetasploit now includes module to exploit CVE-2014-0195 (OpenSSL DTLS Fragment Vuln.)
2014-05-26/a>Tony CarothersNIST 800 Series Publications - New and Improved
2014-03-26/a>Johannes UllrichLet's Finally "Nail" This Port 5000 Traffic - Synology owners needed.
2014-03-06/a>Mark BaggettPort 5000 traffic and snort signature
2014-01-13/a>Johannes UllrichSpecial Webcast today: HTML5, Risky Business or Hidden Security Toolchest? https://www.sans.org/webcasts/html5-risky-business-hidden-security-tool-chest-mobile-web-app-authentication-97650
2013-10-30/a>Russ McReeSIR v15: Five good reasons to leave Windows XP behind
2013-09-17/a>John BambenekMicrosoft Releases Out-of-Band Advisory for all Versions of Internet Explorer
2013-08-28/a>Bojan ZdrnjaMS13-056 (false positive)? alerts
2013-08-16/a>Kevin ListonCVE-2013-2251 Apache Struts 2.X OGNL Vulnerability
2013-08-13/a>Swa FrantzenMicrosoft security advisories: RDP and MD5 deprecation in Microsoft root certificates
2013-06-01/a>Guy BruneauExploit Sample for Win32/CVE-2012-0158
2013-05-20/a>Guy BruneauSafe - Tools, Tactics and Techniques
2013-05-19/a>Kevin ShorttPort 51616 - Got Packets?
2013-04-18/a>John BambenekISC Handler Lenny Zeltser's REMnux v4 Reviewed on Hak5
2013-03-25/a>Johannes UllrichIPv6 Focus Month: IPv6 over IPv4 Preference
2013-02-22/a>Chris MohanPHP 5.4.12 and PHP 5.3.22 released http://www.php.net/ChangeLog-5.php
2013-01-09/a>Richard PorterThe 80's called - They Want Their Mainframe Back!
2012-10-30/a>Mark HofmanCyber Security Awareness Month - Day 30 - DSD 35 mitigating controls
2012-10-17/a>Rob VandenBrinkCyber Security Awareness Month - Day 17 - A Standard for Risk Management - ISO 27005
2012-09-21/a>Guy BruneauUpdate for Vulnerabilities in Adobe Flash Player in Internet Explorer 10 (2755801)
2012-08-28/a>Johannes UllrichFirefox 15 Released (includes silent future updates) http://www.mozilla.org/en-US/firefox/15.0/releasenotes/buglist.html
2012-06-18/a>Guy BruneauCVE-2012-1875 exploit is now available
2012-06-12/a>Swa FrantzenF5 ssh configuration goof
2012-05-16/a>Johannes UllrichGot Packets? Odd duplicate DNS replies from 10.x IP Addresses
2012-05-07/a>Guy BruneauiOS 5.1.1 Software Update for iPod, iPhone, iPad
2012-04-12/a>Guy BruneauHP ProCurve 5400 zl Switch, Flash Cards Infected with Malware
2012-04-12/a>Guy Bruneauwicd Privilege Escalation 0day exploit for Backtrack 5 R2
2012-04-02/a>Johannes UllrichSHA 1-2-3
2012-03-09/a>Guy BruneauNmap 5.61TEST5 released with 43 new scripts,improved OS & version detection, and more available for download - http://nmap.org/download.html
2012-02-24/a>Guy BruneauCisco Small Business SRP 500 Series Multiple Vulnerabilities - http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120223-srp500
2012-02-03/a>Guy BruneauPHP 5.3.10 Released, Fixes CVE-2012-0830 available for download http://www.php.net/archive/2012.php#id2012-02-02-1
2012-01-12/a>Rob VandenBrinkPHP 5.39 was release on the 10th, amongst other things, it addresses CVE-2011-4885 (prevents attacks based on hash collisions) and CVE-2011-4566 (integer overflow when parsing invalid exif header)
2011-12-22/a>Johannes UllrichFirefox 9 Security Fixes
2011-04-28/a>Guy BruneauVMware ESXi 4.1 Security and Firmware Updates
2011-04-21/a>Guy BruneauSilverlight Update Available
2010-10-30/a>Guy BruneauSecurity Update for Shockwave Player
2010-10-28/a>Manuel Humberto Santander PelaezCVE-2010-3654 - New dangerous 0-day authplay library adobe products vulnerability
2010-09-17/a>Robert DanfordCirca 2007 Linux Kernel Vulnerability Resurfaces (Was CVE-2007-4573, Now CVE-2010-3301)
2010-08-13/a>Guy BruneauShadowserver Binary Whitelisting Service
2010-07-24/a>Manuel Humberto Santander PelaezGnuPG gpgsm bug
2010-06-15/a>Manuel Humberto Santander PelaezMicrosoft Windows Help and Support Center vulnerability (CVE 2010-1885) exploit in the wild
2010-04-22/a>Guy BruneauMS10-025 Security Update has been Pulled
2010-03-03/a>Mark HofmanMS10-015 re-released
2010-02-19/a>Mark HofmanMS10-015 may cause Windows XP to blue screen (but only if you have malware on it)
2010-02-17/a>Rob VandenBrinkCisco ASA5500 Security Updates - cisco-sa-20100217-asa
2010-02-01/a>Rob VandenBrinkNMAP 5.21 - Is UDP Protocol Specific Scanning Important? Why Should I Care?
2009-12-24/a>Guy BruneauF5 BIG-IP ASM and PSM Remote Buffer Overflow
2009-10-23/a>Johannes UllrichLittle new tool: reversing md5/sha1 hashes http://isc.sans.org/tools/reversehash.html
2009-10-21/a>Pedro BuenoCyber Security Awareness Month - Day 21 - Port 135
2009-10-16/a>Adrien de BeaupreCyber Security Awareness Month - Day 16 - Port 1521 - Oracle TNS Listener
2009-10-15/a>Deborah HaleCyber Security Awareness Month - Day 15 - Ports 995, 465, and 993 - Secure Email
2009-10-08/a>Johannes UllrichCyber Security Awareness Month - Day 8 - Port 25 - SMTP
2009-09-07/a>Jim ClausingRequest for packets
2009-07-17/a>Stephen HallFirefox 3.5.1 has been released
2009-05-28/a>Stephen HallMicrosoft DirectShow vulnerability
2009-03-28/a>Rick WannerNew Beta release of Nmap
2009-03-05/a>Mark HofmanWhat's up with port 445?
2009-01-02/a>Mark HofmanBlocking access to MD5 signed certs
2008-12-30/a>Johannes UllrichMD5 SSL Summary
2008-12-17/a>donald smithTeam CYMRU's Malware Hash Registry
2008-08-22/a>Patrick NolanMS08-051 V2.0 Patch issued August 20, 2008
2008-05-26/a>Marcus SachsPort 1533 on the Rise
2006-09-19/a>Swa FrantzenYet another MSIE 0-day: VML
2006-09-15/a>Swa FrantzenMSIE DirectAnimation ActiveX 0-day update

R2

2012-04-12/a>Guy Bruneauwicd Privilege Escalation 0day exploit for Backtrack 5 R2