jetlib.sec » Tags » protection

Feeds

133445 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

49 items tagged "protection"

Related tags: emc [+], denial of service [+], vulnerability [+], panda [+], global protection [+], global [+], sophos [+], endpoint [+], unfiltered [+], symantec [+], server versions [+], server version [+], server [+], proofpoint [+], oracle data [+], oracle [+], memory protection [+], information disclosure [+], data server [+], configuration file [+], arbitrary code execution [+], usa [+], sparc versions [+], space layout [+], security [+], rop [+], randomization [+], protection laws [+], potential security vulnerability [+], plus [+], new security architecture [+], linux x86 [+], linux distributions [+], linux [+], hacks [+], data protection [+], bypassing [+], aslr [+], armor protection [+], data [+], web protection [+], voltage protection [+], voltage [+], virtual pc [+], virtual [+], tutorial [+], threat environment [+], survey respondents [+], survey [+], setdlldirectory [+], service vulnerability [+], secure browsing [+], safer use [+], research [+], protection mechanisms [+], protection law [+], protection circuits [+], protection chief [+], protection authority [+], privilege escalation vulnerability [+], power [+], poc [+], pinhead [+], pc hypervisor [+], password protection [+], password [+], p fet [+], null pointer [+], news [+], new threat [+], mobile os [+], misc [+], minimal power [+], memory [+], master key [+], man in the middle attack [+], malware [+], malicious users [+], mac os x [+], mac os [+], mac [+], local privilege escalation [+], leaked [+], laws [+], landscape report [+], jon [+], irish data [+], irish [+], ios [+], intel [+], information disclosure vulnerability [+], hdcp [+], google [+], fragmented [+], feature functionality [+], facebook [+], european data protection [+], european [+], europe [+], eu commission [+], enterprise products [+], enterprise product [+], enterprise [+], dmitry sklyarov [+], digital content protection [+], data breaches [+], congress [+], compliance problem [+], code execution [+], classic [+], browsing [+], brings [+], blue smoke [+], binary [+], b trojan [+], attackers [+], arbitrary code [+], apple [+], anti malware [+], ambitious [+], afroman [+], abu dhabi [+]

• May 23, 2012
• 0:00

  Vuln: Symantec Endpoint Protection Local Privilege Escalation Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Symantec Endpoint Protection Local Privilege Escalation Vulnerability

  Tags:  endpoint protection symantec privilege-escalation-vulnerability local-privilege-escalation  

• May 16, 2012
• 0:00

  Vuln: EMC Data Protection Advisor NULL Pointer Dereference Denial of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  EMC Data Protection Advisor NULL Pointer Dereference Denial of Service Vulnerability

  Tags:  protection emc data service-vulnerability null-pointer denial-of-service  

• April 19, 2012
• 12:22

  Oracle Data Lock Account Protection

   » ‎ Packet Storm Security Advisories
  Team SHATTER Security Advisory - Oracle Data Server versions 10gR1, 10gR2 (10.2.0.5 and previous patchsets) and 11gR1 (11.1.0.7 and previous patchsets) suffer from incomplete protection of locked accounts.

  Tags:  protection oracle data oracle-data server-versions data-server  

• 12:22

  Oracle Data Lock Account Protection

   » ‎ Packet Storm Security Recent Files
  Team SHATTER Security Advisory - Oracle Data Server versions 10gR1, 10gR2 (10.2.0.5 and previous patchsets) and 11gR1 (11.1.0.7 and previous patchsets) suffer from incomplete protection of locked accounts.

  Tags:  protection oracle data oracle-data server-versions data-server  

• 12:22

  Oracle Data Lock Account Protection

   » ‎ Packet Storm Security Misc. Files
  Team SHATTER Security Advisory - Oracle Data Server versions 10gR1, 10gR2 (10.2.0.5 and previous patchsets) and 11gR1 (11.1.0.7 and previous patchsets) suffer from incomplete protection of locked accounts.

  Tags:  protection oracle data oracle-data server-versions data-server  

• 5:12

  EMC Data Protection Advisor Denial Of Service

   » ‎ Packet Storm Security Advisories
  EMC Data Protection Advisor (DPA) contains vulnerabilities that can potentially be exploited by malicious users to cause denial of service.

  Tags:  protection emc data denial-of-service malicious-users  

• April 16, 2012
• 15:45

  Bypassing Address Space Layout Randomization

   » ‎ Packet Storm Security Recent Files
  Most modern day Operating Systems include some form of memory protection such as DEP and ASLR. This article focuses on ASLR, its implementation, limitations and finally various techniques which can be used to circumvent the protection.

  Tags:  bypassing aslr protection memory-protection space-layout randomization  

• 15:45

  Bypassing Address Space Layout Randomization

   » ‎ Packet Storm Security Misc. Files
  Most modern day Operating Systems include some form of memory protection such as DEP and ASLR. This article focuses on ASLR, its implementation, limitations and finally various techniques which can be used to circumvent the protection.

  Tags:  bypassing aslr protection memory-protection space-layout randomization  

• March 28, 2012
• 22:24

  Facebook Password Protection Law Shot Down By Congress

   » ‎ Packet Storm Security Headlines
  Facebook Password Protection Law Shot Down By Congress

  Tags:  facebook protection password password-protection congress protection-law  

• March 02, 2012
• 7:25

  European Data Protection Chief Warns Google Over Privacy

   » ‎ Packet Storm Security Headlines
  European Data Protection Chief Warns Google Over Privacy

  Tags:  european protection data protection-chief google european-data-protection  

• February 12, 2012
• 8:29

  Wi-Fi Security With Wi-Fi Protection Plus

   » ‎ Packet Storm Security Recent Files
  Whitepaper called Wi-Fi Security with Wi-Fi Protection Plus. Wi-Fi P+ is a new security architecture proposed by the authors.

  Tags:  protection plus security new-security-architecture  

• 8:29

  Wi-Fi Security With Wi-Fi Protection Plus

   » ‎ Packet Storm Security Misc. Files
  Whitepaper called Wi-Fi Security with Wi-Fi Protection Plus. Wi-Fi P+ is a new security architecture proposed by the authors.

  Tags:  protection plus security new-security-architecture  

• February 01, 2012
• 21:41

  [Slides] Evolution of iOS Data Protection and iPhone Forensics: from iPhoneOS to iOS 5

   » ‎ SecDocs
  Authors: Andrey Belenko Dmitry Sklyarov
  Tags: forensic iPhone
  Event: Black Hat Abu Dhabi 2011
  Abstract: iOS 5 is the latest and most advanced mobile OS from Apple. Besides tweaking UI and UX, Apple has made some changes to Data Protection mechanisms that were introduced in iOS 4. Those changes provide better security for users, but they also impose additional hurdles for mobile phone forensic process. This talk will provide detailed discussion of iOS Data Protection, focusing on both technical description of defenses and on circumventing certain protections to provide forensic access to the data stored on the iOS devices. iOS versions from iOS 3 (iPhoneOS 3) to iOS 5 will be covered.

  Tags:  ios protection data abu-dhabi dmitry-sklyarov protection-mechanisms mobile-os  

• January 04, 2012
• 11:01

  Power protection circuit tutorial

   » ‎ Hack a Day
  Building your first circuit is empowering, but make sure it’s not too empowering. [Jon] sent in a great tutorial of power protection circuits to make sure you don’t release the mystical blue smoke that make electronics work. There’s an in-depth tutorial of the classic series diode that’s the simplest of all power protection circuits. There’s not much to [...]

  Tags:  tutorial power protection jon protection-circuits blue-smoke classic hacks  

• December 22, 2011
• 11:57

  Irish Data Protection Authority Rules On Facebook

   » ‎ Packet Storm Security Headlines
  Irish Data Protection Authority Rules On Facebook

  Tags:  protection irish data irish-data protection-authority  

• December 09, 2011
• 6:56

  Leaked EU Data Protection Draft SHALL. NOT. PASS.

   » ‎ Packet Storm Security Headlines
  Leaked EU Data Protection Draft SHALL. NOT. PASS.

  Tags:  protection leaked data data-protection  

• December 06, 2011
• 12:31

  Reverse voltage protection with a P-FET

   » ‎ Hack a Day
  [Afroman's] latest video shows you how to add reverse voltage protection with minimal power loss. At some point, one of your electronic concoctions will turn out to be very useful. You want to make sure that a battery plugged in the wrong way, or a polarity mistake with your bench PSU doesn’t damage that hardware. [...]

  Tags:  p-fet voltage protection voltage-protection minimal-power afroman misc hacks  

• December 04, 2011
• 15:00

  Sophos Brings Industry-First Complete Endpoint Protection

   » ‎ Sophos security news
  Fully integrated patch assessment, comprehensive web protection & filtering and encryption for the new threat environment

  Tags:  protection brings sophos web-protection threat-environment new-threat  

• November 30, 2011
• 16:01

  HDCP falls to FPGA-based man-in-the-middle attack

   » ‎ Hack a Day
  It’s been a little while since we talked about HDCP around here, but recent developments in the area of digital content protection are proving very interesting. You might remember that the Master Key for HDCP encryption was leaked last year, just a short while after Intel said that the protection had been cracked. While Intel [...]

  Tags:  intel protection hdcp digital-content-protection man-in-the-middle-attack master-key news  

• September 25, 2011
• 15:00

  Sophos Recognized as "Champion" in Endpoint Anti-Malware Vendor Landscape Report

   » ‎ Sophos security news
  Sophos Endpoint Security & Data Protection Commended for Providing the Greatest Feature-Functionality of Any Endpoint Protection Product on the Market Today

  Tags:  endpoint protection sophos landscape-report feature-functionality anti-malware  

• September 15, 2011
• 1:39

  [Paper] Payload already inside: data re-use for ROP exploits

   » ‎ SecDocs
  Authors: Long Le
  Tags: exploiting
  Event: Black Hat USA 2010
  Abstract: Return-oriented programming (ROP) is one of the buzzing advanced exploitation techniques these days to bypass NX. There are several practical works using ROP techniques for exploitations on Windows, iPhoneOS to bypass DEP and code signing but no any practical ROP work for modern Linux distributions so far. Main issues for ROP exploitations on Linux x86 include ASCII-Armor address protection which maps libc address starting with NULL byte and Address Space Layout Randomization (ASLR). In this presentation we will show how we can extend an old return-into-libc technique to a stage-0 loader that can bypass ASCII-Armor protection and make ROP on Linux x86 become a reality. In addition, by reusing not only codes but also data from the binary itself, we can build any chained ret2libc calls or ROP calls to bypass ASLR protection. A new ROP tool to build and search for ROP instructions will be released in the presentation.

  Tags:  rop protection linux usa linux-x86 armor-protection linux-distributions  

• 1:39

  [Slides] Payload already inside: data re-use for ROP exploits

   » ‎ SecDocs
  Authors: Long Le
  Tags: exploiting
  Event: Black Hat USA 2010
  Abstract: Return-oriented programming (ROP) is one of the buzzing advanced exploitation techniques these days to bypass NX. There are several practical works using ROP techniques for exploitations on Windows, iPhoneOS to bypass DEP and code signing but no any practical ROP work for modern Linux distributions so far. Main issues for ROP exploitations on Linux x86 include ASCII-Armor address protection which maps libc address starting with NULL byte and Address Space Layout Randomization (ASLR). In this presentation we will show how we can extend an old return-into-libc technique to a stage-0 loader that can bypass ASCII-Armor protection and make ROP on Linux x86 become a reality. In addition, by reusing not only codes but also data from the binary itself, we can build any chained ret2libc calls or ROP calls to bypass ASLR protection. A new ROP tool to build and search for ROP instructions will be released in the presentation.

  Tags:  rop protection linux usa linux-x86 armor-protection linux-distributions  

• August 15, 2011
• 21:00

  [dos / poc] - F-secure Browsing Protection (fsgkiapi.dll) Plugin Terminate POC

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [dos / poc] - F-secure Browsing Protection (fsgkiapi.dll) Plugin Terminate POC

  Tags:  poc protection browsing secure-browsing  

• July 27, 2011
• 23:32

  EMC Data Protection Advisor Information Disclosure

   » ‎ Packet Storm Security Advisories
  A vulnerability exists in EMC Data Protection Advisor versions prior to 5.8.1 in which sensitive information may be exposed in clear text in the configuration file.

  Tags:  protection emc data information-disclosure configuration-file  

• 23:32

  EMC Data Protection Advisor Information Disclosure

   » ‎ Packet Storm Security Recent Files
  A vulnerability exists in EMC Data Protection Advisor versions prior to 5.8.1 in which sensitive information may be exposed in clear text in the configuration file.

  Tags:  protection emc data information-disclosure configuration-file  

• 23:32

  EMC Data Protection Advisor Information Disclosure

   » ‎ Packet Storm Security Misc. Files
  A vulnerability exists in EMC Data Protection Advisor versions prior to 5.8.1 in which sensitive information may be exposed in clear text in the configuration file.

  Tags:  protection emc data information-disclosure configuration-file  

• 11:00

  Bugtraq: ESA-2011-021: EMC Data Protection Advisor sensitive information disclosure vulnerability

   » ‎ SecurityFocus Vulnerabilities
  ESA-2011-021: EMC Data Protection Advisor sensitive information disclosure vulnerability

  Tags:  protection emc data information-disclosure-vulnerability  

• May 17, 2011
• 0:00

  Sophos Introduces New and Enhanced Enterprise Products for Complete Protection Anywhere

   » ‎ Sophos security news
  Sophos announces the availability of a number of new and enhanced enterprise product lines that together offer complete protection anywhere and on any device.

  Tags:  protection sophos enterprise enterprise-products enterprise-product  

• May 04, 2011
• 8:32

  Proofpoint Protection Server 5.5.5 Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  Proofpoint Protection Server version 5.5.5 suffers from a cross site scripting vulnerability.

  Tags:  server protection proofpoint server-version vulnerability  

• 8:32

  Proofpoint Protection Server 5.5.5 Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  Proofpoint Protection Server version 5.5.5 suffers from a cross site scripting vulnerability.

  Tags:  server protection proofpoint server-version vulnerability  

• 8:32

  Proofpoint Protection Server 5.5.5 Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  Proofpoint Protection Server version 5.5.5 suffers from a cross site scripting vulnerability.

  Tags:  server protection proofpoint server-version vulnerability  

• March 25, 2011
• 10:50

  EMC Data Protection Advisor Collector Arbitrary Code Execution

   » ‎ Packet Storm Security Recent Files
  EMC Data Protection Advisor Collector for Solaris SPARC contains a potential security vulnerability that can be exploited to execute malicious code with elevated privileges on the affected system. EMC Data Protection Advisor Collector for Solaris SPARC versions 5.7 earlier than build 5833 and 5.7.1 earlier than build 5833 are affected.

  Tags:  protection emc data arbitrary-code-execution potential-security-vulnerability sparc-versions  

• 10:50

  EMC Data Protection Advisor Collector Arbitrary Code Execution

   » ‎ Packet Storm Security Misc. Files
  EMC Data Protection Advisor Collector for Solaris SPARC contains a potential security vulnerability that can be exploited to execute malicious code with elevated privileges on the affected system. EMC Data Protection Advisor Collector for Solaris SPARC versions 5.7 earlier than build 5833 and 5.7.1 earlier than build 5833 are affected.

  Tags:  protection emc data arbitrary-code-execution potential-security-vulnerability sparc-versions  

• 9:00

  Bugtraq: ESA-2011-010: EMC Data Protection Advisor Collector arbitrary code execution with elevated privileges vulnerability

   » ‎ SecurityFocus Vulnerabilities
  ESA-2011-010: EMC Data Protection Advisor Collector arbitrary code execution with elevated privileges vulnerability

  Tags:  protection emc data arbitrary-code-execution vulnerability  

• February 17, 2011
• 20:15

  Symantec Endpoint Protection Manager Reporting Server fw_charts.php Remote Execution Vulnerability

   » ‎ SecuriTeam
  This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Endpoint Protection.

  -

  Make your website safer. Use external penetration testing service. First report ready in one hour!

  Tags:  endpoint protection symantec safer-use arbitrary-code attackers  

• January 21, 2011
• 13:04

  Panda Global Protection 2010 Local Denial Of Service With Unfiltered wcscpy()

   » ‎ Packet Storm Security Exploits
  Panda Global Protection 2010 version 3.01.00 local denial of service exploit with unfiltered wcscpy().

  Tags:  global protection panda global-protection denial-of-service unfiltered  

• 13:04

  Panda Global Protection 2010 Local Denial Of Service With Unfiltered wcscpy()

   » ‎ Packet Storm Security Recent Files
  Panda Global Protection 2010 version 3.01.00 local denial of service exploit with unfiltered wcscpy().

  Tags:  global protection panda global-protection denial-of-service unfiltered  

• 13:04

  Panda Global Protection 2010 Local Denial Of Service With Unfiltered wcscpy()

   » ‎ Packet Storm Security Misc. Files
  Panda Global Protection 2010 version 3.01.00 local denial of service exploit with unfiltered wcscpy().

  Tags:  global protection panda global-protection denial-of-service unfiltered  

• 13:02

  Panda Global Protection 2010 Local Denial Of Service

   » ‎ Packet Storm Security Exploits
  Panda Global Protection 2010 version 3.01.00 local denial of service exploit.

  Tags:  global protection panda global-protection denial-of-service  

• 13:02

  Panda Global Protection 2010 Local Denial Of Service

   » ‎ Packet Storm Security Recent Files
  Panda Global Protection 2010 version 3.01.00 local denial of service exploit.

  Tags:  global protection panda global-protection denial-of-service  

• 13:02

  Panda Global Protection 2010 Local Denial Of Service

   » ‎ Packet Storm Security Misc. Files
  Panda Global Protection 2010 version 3.01.00 local denial of service exploit.

  Tags:  global protection panda global-protection denial-of-service  

• December 23, 2010
• 0:00

  Vuln: Symantec Endpoint Protection Reporting Module 'fw_charts.php' Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Symantec Endpoint Protection Reporting Module 'fw_charts.php' Remote Code Execution Vulnerability

  Tags:  endpoint protection symantec code-execution vulnerability  

• October 27, 2010
• 0:00

  Breaking The SetDllDirectory Protection Against Binary Planting

   » ‎ Packet Storm Security Headlines
  Breaking The SetDllDirectory Protection Against Binary Planting

  Tags:  protection setdlldirectory binary  

• October 11, 2010
• 0:00

  Research Highlights Growing Data Protection Compliance Problem

   » ‎ Packet Storm Security Headlines
  Research Highlights Growing Data Protection Compliance Problem

  Tags:  research protection data compliance-problem  

• July 19, 2010
• 3:44

  Data protection laws too lax, Sophos survey reveals

   » ‎ Sophos security news
  87% of survey respondents say organisations should be forced to disclose data breaches.

  Tags:  survey data protection survey-respondents data-breaches protection-laws  

• July 16, 2010
• 0:00

  EU Data Protection Laws Too Fragmented, Says EU Commission

   » ‎ Packet Storm Security Headlines
  EU Data Protection Laws Too Fragmented, Says EU Commission

  Tags:  fragmented protection data laws eu-commission protection-laws  

• June 18, 2010
• 3:14

  Apple secretly updates Mac malware protection, Sophos reveals

   » ‎ Sophos security news
  Mac OS X 10.6.4 includes limited protection against Pinhead-B Trojan.

  Tags:  malware sophos protection mac-os apple mac b-trojan mac-os-x pinhead  

• April 30, 2010
• 0:00

  Europe Must Be More Ambitious On Data Protection

   » ‎ Packet Storm Security Headlines
  Europe Must Be More Ambitious On Data Protection

  Tags:  protection ambitious data europe data-protection  

• March 17, 2010
• 9:00

  Bugtraq: CORE-2009-0803: Virtual PC Hypervisor Memory Protection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  CORE-2009-0803: Virtual PC Hypervisor Memory Protection Vulnerability

  Tags:  protection memory virtual pc-hypervisor memory-protection virtual-pc vulnerability