SecurityRatty: tag: vulnerable

Is Your Amazon Machine Image Vulnerable to SSH Spoofing Attacks?

2008-07-14 16:26:40 by Craig Balding in Cloud Security

...vulnerable to a man in the middle attack against the SSH protocol, but only *if* you manually verify the host SSH key during your initial SSH connection. OK, but I created my AMI before June 23rd - am I vulnerable According to Amazon, yes. Every EC2 instance copied from a public AMI will have the same SSH host keys as the original AMI. The...

Tags: ssh, limit ssh access, ssh host keys, host keys, ssh user keys, amazon, host ssh keys, amazon machine image, initial ssh connection

European Backup Services Vulnerable to Attack

2008-06-11 11:49:32 by Editor in IT Security - The IT Security Industry's Web Resource

...vulnerable to a man in the middle attack, even though it uses SSL to secure the connection Tests by heise Security show that four of the six services tested were vulnerable to attack While all of the tested systems encrypt communication with the backup server using SSL, external attackers can sniff the access code as plain text by acting as...

Tags: vulnerable, attack, client software, software, services, vulnerable systems, data loss, backup servers, middle attack

1&1 Internet Customers Vulnerable to XSS

2007-12-30 21:15:23 by RSnake in ha.ckers.org web application security lab

...vulnerable to XSS . The technique is simple, but it comes from the way in which they present ads based on detection of a file not found. They pop up an iframe based on file name which you can jump out of pretty easily. Not so good. Im not sure what sort of customers 1&1 Internet provides service for but Id be unhappy if I were a customer...

Tags: customers, xss, internet, dom based xss, file, john smith, predictable location, pretty easily, ads based

Boeing Dreamliner could be vulnerable to hackers

2008-01-07 00:00:00 by HASH0x8470a00 in Network World on Security

The electronics of Boeing's new 787 Dreamliner jet could be vulnerable to hackers due to the way critical flight systems are linked with those used by passengers, the U.S. Federal Aviation Administration has warned

Tags: federal aviation administration, critical flight systems, dreamliner jet, hackers due, vulnerable, passengers, electronics

Encryption could make you more vulnerable, warn experts

2008-02-08 00:00:00 by HASH0x8b3bfec in Network World on Security

The use of data encryption could make organizations vulnerable to new risks and threats, a panel of security experts warned today

Tags: security experts, organizations vulnerable, data encryption, risks, panel, threats

Chip & PIN terminals vulnerable to simple attacks

2008-02-26 20:33:32 by Saar Drimer in Light Blue Touchpaper

...vulnerable to a tapping attack using a paper clip, a needle and a small recording device. This allows us to record the data exchanged between the card and the PEDs processor without triggering tamper proofing mechanisms, and in clear violation of their supposed security properties. This attack can capture the cards PIN because UK banks have...

VLC Player Vulnerable to Remote Hijack

2008-03-19 17:41:57 by Editor in Digg / Security

VLC Player, one of the best and most widely used media players has found to be vulnerable to a remote hijack. The reported vulnerability makes it possible for a malicious user to run arbitrary code, potentially taking remote control of the host machine

Tags: remote hijack, vlc player, arbitrary code, remote control, media players, host machine, malicious user, vulnerable, widely

Windows XP SP3 includes vulnerable Flash Player

2008-06-02 13:00:00 by Editor in Computerworld Security News

Microsoft's Windows XP Service Pack 3 (SP3) ships with an older version of Adobe's Flash Player that's vulnerable to recently-spotted attacks

Tags: flash player, sp3, windows, service pack, vulnerable, attacks, version, adobe, ships

Windows XP SP3 includes vulnerable Flash Player

2008-06-03 00:00:00 by HASH0x84736cc in Network World on Security

Microsoft's Windows XP Service Pack 3 (SP3) ships with an out-of-date version of Adobe's Flash Player that's vulnerable to recently-spotted attacks, according to Microsoft's support documentation

Tags: flash player, windows, support documentation, microsoft, sp3, service pack, vulnerable, attacks, version

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo