«
Expand/Collapse
75 items tagged "platform"
Related tags:
security advisory [+],
application platform [+],
vulnerability [+],
robots [+],
xss [+],
security [+],
web [+],
platform preview [+],
eden [+],
arduino [+],
web platform [+],
version [+],
tv platform [+],
tool [+],
security vulnerabilities [+],
satellite [+],
read [+],
privilege escalation vulnerability [+],
misc [+],
microcontrollers [+],
math [+],
jboss application server [+],
jain slee [+],
ip multimedia subsystems [+],
intelligent network applications [+],
extension [+],
digital satellite tv [+],
cpu clock speed [+],
communications [+],
clock source [+],
clock [+],
cisco application [+],
android [+],
red hat security [+],
txt [+],
source [+],
security mechanisms [+],
security enforcement [+],
rpc requests [+],
propeller [+],
platform version [+],
magento [+],
linguistic [+],
landing [+],
kurtz [+],
jesse burns [+],
jesse [+],
hacking [+],
external entities [+],
ecommerce platform [+],
ecommerce [+],
darknet [+],
cisco security advisory [+],
cisco security [+],
ben kurtz [+],
application extension [+],
Tools [+],
jboss [+],
year [+],
wowwee [+],
workarounds [+],
wii remote [+],
wenzel [+],
webserver [+],
web application security assessment [+],
web application security [+],
wearable [+],
weapon of choice [+],
virtualization [+],
video [+],
vega [+],
valentin [+],
unix platform [+],
unix knowledge [+],
unix [+],
turtle [+],
truck [+],
tribot [+],
tiny apartment [+],
testing [+],
switch [+],
swarm robotics [+],
suite v1 [+],
suite [+],
stove [+],
shields [+],
serious [+],
security model [+],
scale [+],
sampling rate [+],
safer use [+],
ros [+],
robust framework [+],
robotics [+],
robotic platform [+],
robotic [+],
robot platform [+],
robot car [+],
robot [+],
ride [+],
quadcopter [+],
prototyping hardware [+],
prototyping board [+],
programming hardware [+],
privilege [+],
preview [+],
predator costume [+],
predator [+],
polycarbonate [+],
polarity [+],
pinguino [+],
ping pong ball [+],
phillip torrone [+],
phil burgess [+],
permanent magnet [+],
penetration [+],
pegboard [+],
patenomics [+],
paper [+],
open source platform [+],
nick [+],
nanosecond [+],
multi [+],
moving target [+],
modular tools [+],
michael [+],
meet [+],
maple [+],
magical world [+],
madagascar hissing cockroach [+],
madagascar [+],
mac malware [+],
mac [+],
logic [+],
linux os [+],
linux environment [+],
linux [+],
leaf labs [+],
landing pad [+],
landing deck [+],
kickstarter [+],
kelty [+],
karl engelbert [+],
jon [+],
jerome kelty [+],
jeenode [+],
jean pierre mandon [+],
instructable [+],
inexpensive robot [+],
inexpensive components [+],
inexpensive [+],
hiccups [+],
hall effect sensor [+],
giant madagascar [+],
gangster [+],
freesoc [+],
free software updates [+],
floating platform [+],
flip [+],
exploit [+],
encryption [+],
electric turtle [+],
double pole [+],
digital logic analyzer [+],
development platform [+],
development [+],
day [+],
costume [+],
concept [+],
compact layout [+],
cockroach [+],
christmas tree [+],
chaos communication congress [+],
cad files [+],
burp [+],
blogbird [+],
blank slate [+],
becoming [+],
base [+],
backdoor [+],
audio [+],
apple platform [+],
apple [+],
amit klein [+],
amit [+],
advisory [+],
Interviews [+],
Hardware [+],
jboss enterprise application platform [+],
hacks [+],
enterprise [+],
red hat enterprise [+],
application [+]
-
-
21:36
»
Packet Storm Security Advisories
Red Hat Security Advisory 2012-1594-01 - JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. This release serves as a replacement for JBoss Enterprise Application Platform 6.0.0, and includes bug fixes and enhancements.
-
21:36
»
Packet Storm Security Recent Files
Red Hat Security Advisory 2012-1594-01 - JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. This release serves as a replacement for JBoss Enterprise Application Platform 6.0.0, and includes bug fixes and enhancements.
-
21:36
»
Packet Storm Security Misc. Files
Red Hat Security Advisory 2012-1594-01 - JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. This release serves as a replacement for JBoss Enterprise Application Platform 6.0.0, and includes bug fixes and enhancements.
-
21:36
»
Packet Storm Security Advisories
Red Hat Security Advisory 2012-1591-01 - JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. This release serves as a replacement for JBoss Enterprise Application Platform 6.0.0, and includes bug fixes and enhancements.
-
21:36
»
Packet Storm Security Recent Files
Red Hat Security Advisory 2012-1591-01 - JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. This release serves as a replacement for JBoss Enterprise Application Platform 6.0.0, and includes bug fixes and enhancements.
-
21:36
»
Packet Storm Security Misc. Files
Red Hat Security Advisory 2012-1591-01 - JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. This release serves as a replacement for JBoss Enterprise Application Platform 6.0.0, and includes bug fixes and enhancements.
-
21:34
»
Packet Storm Security Advisories
Red Hat Security Advisory 2012-1592-01 - JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. This release serves as a replacement for JBoss Enterprise Application Platform 6.0.0, and includes bug fixes and enhancements.
-
21:34
»
Packet Storm Security Recent Files
Red Hat Security Advisory 2012-1592-01 - JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. This release serves as a replacement for JBoss Enterprise Application Platform 6.0.0, and includes bug fixes and enhancements.
-
21:34
»
Packet Storm Security Misc. Files
Red Hat Security Advisory 2012-1592-01 - JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. This release serves as a replacement for JBoss Enterprise Application Platform 6.0.0, and includes bug fixes and enhancements.
-
-
21:26
»
SecDocs
Tags:
UNIX Event:
Chaos Communication Congress 18th (18C3) 2001 Abstract: Binary encryption is the process of obfuscating and protecting a binary executeable, while still allowing the operating system to execute the binary. We will explain the current situation and problems when analyzing hostile binaries on the UNIX platform. Then we will demonstrate and explain some techniques to protect your UNIX ELF binary against reverse engineering, unauthorized use and analysis. The speech covers the basic details of the ELF executeable format, only basic UNIX knowledge is required. While th e speech itself is more practically orientied, it will be accompanied by a detailed paper for the interested readers.
-
-
7:31
»
Hack a Day
Like many of us, [Jon] began his journey through the magical world of microcontrollers with an Arduino. For a beginner, the Arduino is a wonderful tool, but [Jon] quickly found himself limited by the platform. There are too few pins on the Arduino, and and the platform doesn’t really lend itself to extremely complex projects. [...]
-
-
21:55
»
Packet Storm Security Recent Files
Magento eCommerce platform uses a vulnerable version of Zend framework which is prone to XML eXternal Entity Injection attacks. The SimpleXMLElement class of Zend framework (SimpleXML PHP extension) is used in an insecure way to parse XML data. External entities can be specified by adding a specific DOCTYPE element to XML-RPC requests. By exploiting this vulnerability an application may be coerced to open arbitrary files and/or TCP connections.
-
21:55
»
Packet Storm Security Misc. Files
Magento eCommerce platform uses a vulnerable version of Zend framework which is prone to XML eXternal Entity Injection attacks. The SimpleXMLElement class of Zend framework (SimpleXML PHP extension) is used in an insecure way to parse XML data. External entities can be specified by adding a specific DOCTYPE element to XML-RPC requests. By exploiting this vulnerability an application may be coerced to open arbitrary files and/or TCP connections.
-
10:01
»
Hack a Day
[Valentin] used a simple concept to build this auto-reversing rotating platform. The concept is extremely simple, the leads for the motor are attached to a double-pole double-throw switch which allow the polarity to be reversed. Flip the switch in one direction and it spins clockwise. Flip it in the other direction and it spins counter-clockwise. [...]
-
-
18:55
»
Packet Storm Security Advisories
Red Hat Security Advisory 2012-0078-01 - The JBoss Communications Platform is an open source VoIP platform certified for JAIN SLEE 1.1 and SIP Servlets 1.1 compliance. JBCP serves as a high performance core for Service Delivery Platforms and IP Multimedia Subsystems by leveraging J2EE to enable the convergence of data and video in Next-Generation Intelligent Network applications. This JBoss Communications Platform 5.1.3 release serves as a replacement for JBoss Communications Platform 5.1.2, and includes various bug fixes.
-
18:55
»
Packet Storm Security Recent Files
Red Hat Security Advisory 2012-0078-01 - The JBoss Communications Platform is an open source VoIP platform certified for JAIN SLEE 1.1 and SIP Servlets 1.1 compliance. JBCP serves as a high performance core for Service Delivery Platforms and IP Multimedia Subsystems by leveraging J2EE to enable the convergence of data and video in Next-Generation Intelligent Network applications. This JBoss Communications Platform 5.1.3 release serves as a replacement for JBoss Communications Platform 5.1.2, and includes various bug fixes.
-
18:55
»
Packet Storm Security Misc. Files
Red Hat Security Advisory 2012-0078-01 - The JBoss Communications Platform is an open source VoIP platform certified for JAIN SLEE 1.1 and SIP Servlets 1.1 compliance. JBCP serves as a high performance core for Service Delivery Platforms and IP Multimedia Subsystems by leveraging J2EE to enable the convergence of data and video in Next-Generation Intelligent Network applications. This JBoss Communications Platform 5.1.3 release serves as a replacement for JBoss Communications Platform 5.1.2, and includes various bug fixes.
-
-
7:01
»
Hack a Day
For a number of children born of geek parents, the WowWee Tribot is sure to make an appearance underneath a Christmas tree this year. By New Year’s, though, this toy will surely make its way to the back of a closet to sit unused until spring cleaning. It’s a shame to let such an interesting [...]
-
-
17:19
»
Packet Storm Security Advisories
Red Hat Security Advisory 2011-1806-01 - The Enterprise Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform intended for mid-size workloads with light and rich Java applications. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Web Platform 5.1.2 release serves as a replacement for JBoss Enterprise Web Platform 5.1.1. This update includes bug fixes and enhancements. JBoss Enterprise Web Platform is a subset of JBoss Enterprise Application Platform. Users are directed to the JBoss Enterprise Application Platform 5.1.2 Release Notes for information on the most significant of these changes.
-
17:19
»
Packet Storm Security Recent Files
Red Hat Security Advisory 2011-1806-01 - The Enterprise Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform intended for mid-size workloads with light and rich Java applications. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Web Platform 5.1.2 release serves as a replacement for JBoss Enterprise Web Platform 5.1.1. This update includes bug fixes and enhancements. JBoss Enterprise Web Platform is a subset of JBoss Enterprise Application Platform. Users are directed to the JBoss Enterprise Application Platform 5.1.2 Release Notes for information on the most significant of these changes.
-
17:19
»
Packet Storm Security Misc. Files
Red Hat Security Advisory 2011-1806-01 - The Enterprise Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform intended for mid-size workloads with light and rich Java applications. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Web Platform 5.1.2 release serves as a replacement for JBoss Enterprise Web Platform 5.1.1. This update includes bug fixes and enhancements. JBoss Enterprise Web Platform is a subset of JBoss Enterprise Application Platform. Users are directed to the JBoss Enterprise Application Platform 5.1.2 Release Notes for information on the most significant of these changes.
-
16:36
»
Packet Storm Security Advisories
Red Hat Security Advisory 2011-1805-01 - JBoss Enterprise Application Platform is a platform for Java applications, which integrates the JBoss Application Server with JBoss Hibernate and JBoss Seam. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Application Platform 5.1.2 release serves as a replacement for JBoss Enterprise Application Platform 5.1.1, and includes bug fixes and enhancements.
-
16:36
»
Packet Storm Security Recent Files
Red Hat Security Advisory 2011-1805-01 - JBoss Enterprise Application Platform is a platform for Java applications, which integrates the JBoss Application Server with JBoss Hibernate and JBoss Seam. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Application Platform 5.1.2 release serves as a replacement for JBoss Enterprise Application Platform 5.1.1, and includes bug fixes and enhancements.
-
16:36
»
Packet Storm Security Misc. Files
Red Hat Security Advisory 2011-1805-01 - JBoss Enterprise Application Platform is a platform for Java applications, which integrates the JBoss Application Server with JBoss Hibernate and JBoss Seam. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Application Platform 5.1.2 release serves as a replacement for JBoss Enterprise Application Platform 5.1.1, and includes bug fixes and enhancements.
-
16:36
»
Packet Storm Security Advisories
Red Hat Security Advisory 2011-1804-01 - The Enterprise Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform intended for mid-size workloads with light and rich Java applications. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Web Platform 5.1.2 release for Red Hat Enterprise Linux 4 serves as a replacement for JBoss Enterprise Web Platform 5.1.1. These updated packages include bug fixes and enhancements. JBoss Enterprise Web Platform is a subset of JBoss Enterprise Application Platform. Users are directed to the JBoss Enterprise Application Platform 5.1.2 Release Notes for information on the most significant of these changes.
-
16:36
»
Packet Storm Security Recent Files
Red Hat Security Advisory 2011-1804-01 - The Enterprise Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform intended for mid-size workloads with light and rich Java applications. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Web Platform 5.1.2 release for Red Hat Enterprise Linux 4 serves as a replacement for JBoss Enterprise Web Platform 5.1.1. These updated packages include bug fixes and enhancements. JBoss Enterprise Web Platform is a subset of JBoss Enterprise Application Platform. Users are directed to the JBoss Enterprise Application Platform 5.1.2 Release Notes for information on the most significant of these changes.
-
16:36
»
Packet Storm Security Misc. Files
Red Hat Security Advisory 2011-1804-01 - The Enterprise Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform intended for mid-size workloads with light and rich Java applications. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Web Platform 5.1.2 release for Red Hat Enterprise Linux 4 serves as a replacement for JBoss Enterprise Web Platform 5.1.1. These updated packages include bug fixes and enhancements. JBoss Enterprise Web Platform is a subset of JBoss Enterprise Application Platform. Users are directed to the JBoss Enterprise Application Platform 5.1.2 Release Notes for information on the most significant of these changes.
-
16:06
»
Packet Storm Security Advisories
Red Hat Security Advisory 2011-1803-01 - The Enterprise Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform intended for mid-size workloads with light and rich Java applications. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Web Platform 5.1.2 release for Red Hat Enterprise Linux 5 serves as a replacement for JBoss Enterprise Web Platform 5.1.1. These updated packages include bug fixes and enhancements. JBoss Enterprise Web Platform is a subset of JBoss Enterprise Application Platform. Users are directed to the JBoss Enterprise Application Platform 5.1.2 Release Notes for information on the most significant of these changes.
-
16:06
»
Packet Storm Security Recent Files
Red Hat Security Advisory 2011-1803-01 - The Enterprise Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform intended for mid-size workloads with light and rich Java applications. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Web Platform 5.1.2 release for Red Hat Enterprise Linux 5 serves as a replacement for JBoss Enterprise Web Platform 5.1.1. These updated packages include bug fixes and enhancements. JBoss Enterprise Web Platform is a subset of JBoss Enterprise Application Platform. Users are directed to the JBoss Enterprise Application Platform 5.1.2 Release Notes for information on the most significant of these changes.
-
16:06
»
Packet Storm Security Misc. Files
Red Hat Security Advisory 2011-1803-01 - The Enterprise Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform intended for mid-size workloads with light and rich Java applications. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Web Platform 5.1.2 release for Red Hat Enterprise Linux 5 serves as a replacement for JBoss Enterprise Web Platform 5.1.1. These updated packages include bug fixes and enhancements. JBoss Enterprise Web Platform is a subset of JBoss Enterprise Application Platform. Users are directed to the JBoss Enterprise Application Platform 5.1.2 Release Notes for information on the most significant of these changes.
-
16:00
»
Packet Storm Security Advisories
Red Hat Security Advisory 2011-1802-01 - The Enterprise Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform intended for mid-size workloads with light and rich Java applications. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Web Platform 5.1.2 release for Red Hat Enterprise Linux 6 serves as a replacement for JBoss Enterprise Web Platform 5.1.1. These updated packages include bug fixes and enhancements. JBoss Enterprise Web Platform is a subset of JBoss Enterprise Application Platform. Users are directed to the JBoss Enterprise Application Platform 5.1.2 Release Notes for information on the most significant of these changes.
-
16:00
»
Packet Storm Security Recent Files
Red Hat Security Advisory 2011-1802-01 - The Enterprise Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform intended for mid-size workloads with light and rich Java applications. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Web Platform 5.1.2 release for Red Hat Enterprise Linux 6 serves as a replacement for JBoss Enterprise Web Platform 5.1.1. These updated packages include bug fixes and enhancements. JBoss Enterprise Web Platform is a subset of JBoss Enterprise Application Platform. Users are directed to the JBoss Enterprise Application Platform 5.1.2 Release Notes for information on the most significant of these changes.
-
16:00
»
Packet Storm Security Misc. Files
Red Hat Security Advisory 2011-1802-01 - The Enterprise Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform intended for mid-size workloads with light and rich Java applications. OpenID4Java allows you to implement OpenID authentication in your Java applications. OpenID4Java is a Technology Preview. This JBoss Enterprise Web Platform 5.1.2 release for Red Hat Enterprise Linux 6 serves as a replacement for JBoss Enterprise Web Platform 5.1.1. These updated packages include bug fixes and enhancements. JBoss Enterprise Web Platform is a subset of JBoss Enterprise Application Platform. Users are directed to the JBoss Enterprise Application Platform 5.1.2 Release Notes for information on the most significant of these changes.
-
-
9:01
»
Hack a Day
[Phillip Torrone] from Make recently sat down with [Jean-Pierre Mandon] and [Tsvetan Usunov], creators of the Pinguino, to hear more about their product. While the name might not sound familiar, we’re pretty sure you’ll be seeing more of this development platform as time goes on. Essentially created by makers for makers, the Pinguino is a [...]
-
-
0:38
»
SecDocs
Authors:
Jesse Burns Tags:
phone Android Event:
Hashdays 2010 Abstract: Jesse Burns, an Android security expert who has been working with the Android platform since before it was released, explains some of the most interesting parts of Android Security. Discussing how Android's powerful security model offers to protect users, and the new types of vulnerabilities that can cause. How Android mechanisms like Binder can act like capabilities or be used to enforce permissions. Jesse will describe android's security enforcement points, discuss experiments in making the platform more flexible, and how several of the key security mechanisms in the platform tend to fail, especially when developers don't properly understand them. Jesse will also discuss some common Android security misconceptions, and make some suggestions about how Android could be further improved, hopefully without adding gross over-complexity. This will include a discussion of a tool that attempts to repackage Android applications with user, rather than developer specified permissions.
-
0:38
»
SecDocs
Authors:
Jesse Burns Tags:
phone Android Event:
Hashdays 2010 Abstract: Jesse Burns, an Android security expert who has been working with the Android platform since before it was released, explains some of the most interesting parts of Android Security. Discussing how Android's powerful security model offers to protect users, and the new types of vulnerabilities that can cause. How Android mechanisms like Binder can act like capabilities or be used to enforce permissions. Jesse will describe android's security enforcement points, discuss experiments in making the platform more flexible, and how several of the key security mechanisms in the platform tend to fail, especially when developers don't properly understand them. Jesse will also discuss some common Android security misconceptions, and make some suggestions about how Android could be further improved, hopefully without adding gross over-complexity. This will include a discussion of a tool that attempts to repackage Android applications with user, rather than developer specified permissions.
-
-
4:05
»
Hack a Day
This electric turtle bot instructable describes a fairly simple turtle-style robot meant to be laser cut out of acrylic (although other materials such as aluminum, MDF, or polycarbonate should work just as well). This frame is also optionally for sale, which should appeal to those that would like a mechanical robotics platform to play with, [...]
-
-
9:01
»
Hack a Day
[Patenomics] has had some trouble finding a suitable place to work on projects in his tiny apartment. Lately he’s taken to using the stove top as a soldering platform and was looking for ways to protect the stove while adding functionality. He built this soldering platform from a couple chunks of pegboard and some hardware store parts. [...]
-
-
4:01
»
Hack a Day
Swarm robotics is really starting to produce some interesting results. This image is from the video embedded after the break that show a group of five robots creating a landing platform for a quadrotor helicopter. The four that actually make up the platform are not in contact with each other, but instead following commands from [...]
-
-
19:16
»
Packet Storm Security Advisories
Red Hat Security Advisory 2011-0945-01 - The Enterprise Web Platform is for mid-size workloads, focusing on light and rich Java applications. Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform. This JBoss Enterprise Web Platform 5.1.1 release for Red Hat Enterprise Linux 4, 5, and 6 serves as a replacement for JBoss Enterprise Web Platform 5.1.0. These updated packages include the bug fixes detailed in the release notes, which are linked to from the References section of this erratum. Various other issues were also addressed.
-
19:16
»
Packet Storm Security Recent Files
Red Hat Security Advisory 2011-0945-01 - The Enterprise Web Platform is for mid-size workloads, focusing on light and rich Java applications. Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform. This JBoss Enterprise Web Platform 5.1.1 release for Red Hat Enterprise Linux 4, 5, and 6 serves as a replacement for JBoss Enterprise Web Platform 5.1.0. These updated packages include the bug fixes detailed in the release notes, which are linked to from the References section of this erratum. Various other issues were also addressed.
-
19:16
»
Packet Storm Security Misc. Files
Red Hat Security Advisory 2011-0945-01 - The Enterprise Web Platform is for mid-size workloads, focusing on light and rich Java applications. Web Platform is a slimmed down profile of the JBoss Enterprise Application Platform. This JBoss Enterprise Web Platform 5.1.1 release for Red Hat Enterprise Linux 4, 5, and 6 serves as a replacement for JBoss Enterprise Web Platform 5.1.0. These updated packages include the bug fixes detailed in the release notes, which are linked to from the References section of this erratum. Various other issues were also addressed.
-
-
16:01
»
Hack a Day
Once [Ruan] over at AndroidClone heard that Android devices were capable of running a full Linux environment, he started contemplating all of the things he might be able to do with a full Linux OS in his pocket. He decided that a portable penetration testing platform would be great to have on hand, so he [...]
-
-
6:17
»
Hack a Day
[Wulfden's] new gadget is a 28 channel 3.3 volt digital logic analyzer. Powered by a Parallax Propeller running at 100MHz (permitting a 10 nanosecond sampling rate), using all though hole parts, and open design so it is possible to whip up your own. Data is collected and sent to a host computer running Propalyzer which [...]
-
-
7:07
»
Hack a Day
Meet Bilibot, a modular robot that aims to lower the cost of entry for robotic tinkerers. It combines the Kinect, the iRobot Create, and an Ubuntu box running ROS using some laser cut mounting brackets. These are relatively inexpensive components but the most exciting thing is that there’s already a slew of example out there [...]
-
-
10:29
»
Hack a Day
Above you see a solenoid being used as a digital scale. The magnetic field from the coil in the base levitates the platform above, where a load to be measured is place. This floating platform has a permanent magnet in it, hovering above a hall effect sensor in the base. As the distance between that [...]
-
-
4:12
»
Packet Storm Security Advisories
The IE9 (platform preview) Javascript Math.random implementation is vulnerable to seed reconstruction. The seed reveals the computer's boot time (and on Windows 7 - also CPU clock speed). These can be used to finger-print computers and track users within the same Windows session even if they close and open their IE9 (platform preview) browser multiple times. Interestingly enough, this technique also provides some information regarding the client hardware (namely clock source and possibly CPU clock speed), and may be used to detect virtualized machines "over the web". Additionally, the Math.random implementation is flawed in such way that it returns non-uniform values (this holds for IE9 beta as well).
-
4:12
»
Packet Storm Security Recent Files
The IE9 (platform preview) Javascript Math.random implementation is vulnerable to seed reconstruction. The seed reveals the computer's boot time (and on Windows 7 - also CPU clock speed). These can be used to finger-print computers and track users within the same Windows session even if they close and open their IE9 (platform preview) browser multiple times. Interestingly enough, this technique also provides some information regarding the client hardware (namely clock source and possibly CPU clock speed), and may be used to detect virtualized machines "over the web". Additionally, the Math.random implementation is flawed in such way that it returns non-uniform values (this holds for IE9 beta as well).
-
4:12
»
Packet Storm Security Misc. Files
The IE9 (platform preview) Javascript Math.random implementation is vulnerable to seed reconstruction. The seed reveals the computer's boot time (and on Windows 7 - also CPU clock speed). These can be used to finger-print computers and track users within the same Windows session even if they close and open their IE9 (platform preview) browser multiple times. Interestingly enough, this technique also provides some information regarding the client hardware (namely clock source and possibly CPU clock speed), and may be used to detect virtualized machines "over the web". Additionally, the Math.random implementation is flawed in such way that it returns non-uniform values (this holds for IE9 beta as well).
-
-
12:00
»
SecurityFocus Vulnerabilities
New paper by Amit Klein (Trusteer): "Detecting virtualization over the web with IE9 (platform preview) and Semi-permanent computer fingerprinting and user tracking in IE9 (platform preview)"
-
-
10:07
»
Hack a Day
This Predator costume has an animatronic element in the shoulder cannon. It tracks the movement of the mask, aiming wherever the Predator gazes. [Jerome Kelty] was asked by a friend to help develop the costume and he ended up with an animatronics platform which can be adapted for many different uses. Starting with an Arduino [...]
-
-
9:00
»
Hack a Day
[Nick] over at Gadget Gangster has a new version of his prototyping hardware for Propeller microcontrollers, called the Propeller Platform USB. A little more than a year ago we looked at the last version which was larger, used a DIP processor, and came unassembled. The new version does come assembled because of the migration to [...]
-
-
20:23
»
SecuriTeam
A privilege escalation vulnerability was identified in Cisco Application Extension Platform.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!
-
-
12:52
»
Hack a Day
The Arduino platform should be perfect for throwing together a lightweight webserver because of the availability of quality shields that take care of the hardware for you. As [Ovidiu Predescu] found, there are a few hiccups along the way and he’s put together a guide that covers the workarounds. Specifically, using an Ethernet shield and [...]
-
-
3:01
»
Packet Storm Security Advisories
Cisco Security Advisory - The Cisco Application Extension Platform contains a privilege escalation vulnerability in the tech support diagnostic shell that may allow an authenticated user to obtain administrative access to a vulnerable Cisco Application Extension Platform module. Cisco has released free software updates that address this vulnerability. There is no workaround for this vulnerability.
-
-
13:00
»
Hack a Day
This giant Madagascar hissing cockroach rides proudly atop his three-wheeled robotic platform. This project from several years ago is new to us and our reaction to the video after the break is mixed. We find ourselves creeped out, delighted, amazed, and saddened. The cockroach controlled robot uses a trackball type input. A ping-pong ball is [...]
-
-
8:00
»
Hack a Day
[Karl-Engelbert Wenzel] developed a UAV capable of taking off and landing on a moving platform autonomously. The platform operates aircraft-carrier-style by driving around the room in circles. The quadcopter tracks a grid of IR LEDs at the front of the landing deck by using the IR camera from a Wii remote. The best part is [...]
-
-
13:00
»
Hack a Day
Leaf Labs is now shipping the Maple R3 boards. [Phil Burgess] gave the platform a look just before launch last fall and the high-powered prototyping board is now even better. New features come in both hardware and software varieties. The bootloader can now be upgraded without additional programming hardware, there’s hardware SPI and I2C interfaces, [...]
-
-
7:16
»
Hack a Day
It is basically a nice compact layout for an Atmel Atmega 328 with a wireless module. Fully compatible with the Arduino IDE. The JeeNode is available in kit form, but also all schematics and CAD files are available to download. It looks like they are mainly using it for home monitoring and control. So far we’ve seen [...]
-
-
13:15
»
Hack a Day
[Michael] sent us a link to his RC robotic platform. He started with the same RC toy as the iPhone Robot (CAR) but ended up with a blank slate waiting for more features. What he has is an Arduino with a motor driver, three bump switches for the front and rear, and a XBee module. [...]
0day.today (was: 1337day, Inj3ct0r, 1337db)
OSVDB Vulnerabilities
Exploit-DB
Bugtraq
XSSed
Sophos security news
Penetration Testing
BackTrack Linux Forums
Threatpost
carnal0wnage.attackresearch.com
Carnal0wnage
Darknet
The Exploitant
Wirevolution