Home > Uncategorized > Security News #0x18

Security News #0x18

It has been a quiet week on the security front. I wonder if something big is on the horizon?

  • Here is a nice piece on a MITM attack type that goes after Windows. Apparently Windows can use automatic methods to determine if there is a proxy on the local network that should be used for web traffic, and it is this process itself that is vulnerable to attack.
  • Here is a short description of some of the various features of nmap.
  • Don’t forget- you can no longer use direct database output in current versions of snort.
  • Metasploit now has a new module for Linux privilege escalation based on the older CVE 2009-2692 sendpage vulnerability. The module affects kernels with versions 2.4.4 -2.4.37.4 and 2.6.0 – 2.6.30.4.
  • One of my favorite tools, ModSecurity is coming to IIS and Nginx!
Advertisements
Categories: Uncategorized
  1. No comments yet.
  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: