-
```
http://www.ubuntu.com/usn/usn-2581-1/
---
Tavis Ormandy discovered that NetworkManager incorrectly filtered paths
when requested to read modem device contexts. A local attacker could
possibly use…
-
```
Date: Tue, 14 Apr 2015 06:30:41 -0700
From: Tavis Ormandy
To: oss-security@...ts.openwall.com
Subject: Problems in automatic crash analysis frameworks
Hello, this is CVE-2015-1318 and CVE-2015-1…
-
```
Avast will render the commonName of X.509 certificates into an HTMLLayout frame
when your MITM proxy detects a bad signature. Unbelievably, this means
CN="really?!?!?" actually works, and is pre…
-
```
The fusermount binary calls setuid(geteuid()) to reset the ruid when
it invokes /bin/mount so that it can use privileged mount options that
are normally restricted if ruid != euid. That's acceptab…
-
```
Date: Tue, 14 Apr 2015 06:30:41 -0700
From: Tavis Ormandy
To: oss-security@...ts.openwall.com
Subject: Problems in automatic crash analysis frameworks
Hello, this is CVE-2015-1318 and CVE-2015-1…
-
```
A component of Kaspersky Internet Security that’s enabled by default is
called the “Network Attack Blocker”, described as “protects the computer
against dangerous network activity”. I examined t…
-
```
When Kaspersky https inspection is enabled, temporary certificates are created
in %PROGRAMDATA% for validation. I observed that the naming pattern is
{CN}.cer.
I created a certificate with CN=…
-
```
http://www.ubuntu.com/usn/usn-2581-1/
---
Tavis Ormandy discovered that NetworkManager incorrectly filtered paths
when requested to read modem device contexts. A local attacker could
possibly use…
-
```
When you install TrendMicro Antivirus on Windows, by default a component called
Password Manager is also installed and automatically launched on startup.
http://www.trendmicro.com/us/home/produc…
-
```
A component of Kaspersky Internet Security that’s enabled by default is
called the “Network Attack Blocker”, described as “protects the computer
against dangerous network activity”. I examined t…