Home > Uncategorized > Security News #0x0B

Security News #0x0B

  • Metasploit has a new module to exploit MS12-027. This flaw affects MS Office 2007 and 2010, including Word and Excel.
  • Multiple vulnerabilities were noted in WordPress 3.3.1. See also the Spider Labs blog entry.
  • One of the speakers at NCCDC introduced us all to the joyfulness and righteousness of process hacker.
  • CVE 2012-2110 is a flaw in the commonly deployed OpenSSL library. Apparently the first released patch did not fix the vulnerability.
  • Two more useful links from the Penetration Testing Lab:
    • Since Exercise 3 will feature firewalls with network address translation, wouldn’t it be nice to know how to use metasploit for port forwarding?
    • Did you know metasploit has an autopwn feature for web browser attacks?
  • All right says the crowd- enough about attacks on television sets. Hmmm. What about video cameras? Luigi Auriemma has released a handful of attacks on Samsung network cameras.
Advertisements
Categories: Uncategorized
  1. No comments yet.
  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: