Chercher :
Newsletter :  


Revues :
- Presse
- Presse FR
- Vidéos
- Twitter
- Secuobs





Sommaires :
- Tendances
- Failles
- Virus
- Concours
- Reportages
- Acteurs
- Outils
- Breves
- Infrastructures
- Livres
- Tutoriels
- Interviews
- Podcasts
- Communiques
- USBsploit
- Commentaires


Revue Presse:
- Tous
- Francophone
- Par mot clé
- Par site
- Le tagwall


Top bi-hebdo:
- Ensemble
- Articles
- Revue
- Videos
- Twitter
- Auteurs


Articles :
- Par mot clé
- Par auteur
- Par organisme
- Le tagwall


Videos :
- Toutes
- Par mot clé
- Par site
- Le tagwall


Twitter :
- Tous
- Par mot clé
- Par compte
- Le tagwall


Commentaires :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques


RSS/XML :
- Articles
- Commentaires
- Revue
- Revue FR
- Videos
- Twitter


RSS SecuObs :
- sécurité
- exploit
- windows
- attaque
- outil
- réseau


RSS Revue :
- security
- microsoft
- windows
- hacker
- attack
- network


RSS Videos :
- curit
- security
- biomet
- metasploit
- biometric
- cking


RSS Twitter :
- security
- linux
- botnet
- attack
- metasploit
- cisco


RSS Comments :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques


RSS OPML :
- Français
- International











Revue de presse francophone :
- Vigilance - Junos Cross Site Scripting de J-Web, analysé le 09 04 2014
- Vigilance - Drupal Revisioning obtention d'information, analysé le 09 04 2014
- Vigilance - Drupal SimpleCorp Cross Site Scripting, analysé le 09 04 2014
- Vigilance - Drupal Skeleton Cross Site Scripting, analysé le 09 04 2014
- Vigilance - Joomla Com_inneradmission injection SQL, analysé le 09 04 2014
- Vigilance - Junos déni de service via IGMP, analysé le 09 04 2014
- Vigilance - Junos Cross Site Scripting de J-Web, analysé le 09 04 2014
- Vigilance - Junos déni de service via Dynamic IPsec VPN, analysé le 09 04 2014
- Vigilance - Junos déni de service via MPC, analysé le 09 04 2014
- Vigilance - Junos déni de service via EWF, analysé le 09 04 2014
- Vigilance - Drupal BlueMasters Cross Site Scripting, analysé le 09 04 2014
- Bitdefender et Point Service Mobiles s associent pour améliorer la sécurité des utilisateurs Android
- Hitachi Data Systems annonce de nouvelles avancées logicielles et matérielles
- Numergy a été retenue par Mégalis Bretagne pour participer à la rénovation de sa plateforme régionale de services d'administration numérique
- Emerson Network Power, entreprise d'Emerson lance Trellis Process Manager

Dernier articles de SecuObs :
- Les russes ont-ils pwn le système AEGIS ?
- Le ministère de l'intérieur censure une conférence au Canada
- Saut d'air gap, audit de firmware et (in)sécurité mobile au programme de Cansecwest 2014
- GCHQ: Le JTRIG torpille Anonymous qui torpille le JTRIG (ou pas)
- #FIC2014: Entrée en territoire inconnu
- Le Sénat investit dans les monnaies virtuelles
- #LPM2013: Un nouvel espoir ?
- L'ANSSI durcit le ton
- Assises 2013: Nouvel élan de jeunesse
- OWASP Framework Security Project, répertorier et fixer les contrôles de sécurité manquants

Revue de presse internationale :
- Microsoft s commitment to the Core Infrastructure Initiative
- Here we go again Viber mobile messenger app leaves user data unencrypted
- Microsoft Earns Less, But Beats Expectations
- Responding to New SSL Cybersecurity Threats Gartner Featured Research
- Experts warn not to assume you are safe from Heartbleed
- ISC StormCast for Friday, April 25th 2014 http isc.sans.edu podcastdetail.html id 3951, Thu, Apr 24th
- Covert Bitcoin miner found stashed in malicious Google Play apps
- IWP74 Thomas Fennel on the Windows Notification Platform Inside Windows Phone
- Bank of England to hire penetration testers to attack financial firms
- NUnit and Visual Studio Online
- D.C. physicians swept up in tax ID theft scam
- AOL Mail Service Hacked, Compromised Emails Used To Send Spam
- Reconnect to Azure Virtual Machine
- Cloud Security in 2014 Virtual Walls
- Legacy and Cloud IAM solutions The need to co-exist

Annuaire des videos
- FUZZING ON LINE PART THREE
- Official Maltego tutorial 5 Writing your own transforms
- Official Maltego tutorial 6 Integrating with SQL DBs
- Official Maltego tutorial 3 Importing CSVs spreadsheets
- install zeus botnet
- Eloy Magalhaes
- Official Maltego tutorial 1 Google s websites
- Official Maltego tutorial 4 Social Networks
- Blind String SQL Injection
- backdoor linux root from r57 php shell VPS khg crew redc00de
- How To Attaque Pc With Back Track 5 In Arabique
- RSA Todd Schomburg talks about Roundup Ready lines available in 2013
- Nessus Diagnostics Troubleshooting
- Panda Security Vidcast Panda GateDefender Performa Parte 2 de 2
- MultiPyInjector Shellcode Injection

Revue Twitter
- RT @fpalumbo: Cisco consistently leading the way ? buys vCider to boost its distributed cloud vision #CiscoONE
- @mckeay Looks odd... not much to go on (prob some slideshow/vid app under Linux)
- [SuggestedReading] Using the HTML5 Fullscreen API for Phishing Attacks
- RT @BrianHonan: Our problems are not technical but cultural. OWASP top 10 has not changed over the years @joshcorman #RSAC
- RT @mikko: Wow. Apple kernels actually have a function called PE_i_can_has_debugger:
- [Blog Spam] Metasploit and PowerShell payloads
- PinkiePie Strikes Again, Compromises Google Chrome in Pwnium Contest at Hack in the Box: For the second time thi...
- @mikko @fslabs y'all wldn't happen to have lat/long data sets for other botnets, wld you? Doing some research (free/open info rls when done)
- RT @nickhacks: Want to crash a remote host running Snow Leopard? Just use: nmap -P0 -6 --script=targets-ipv6-multicast-mld #wishiwaskidding
- An inexpensive proxy service called is actually a front for #malware distribution -

Mini-Tagwall
Revue de presse : security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone

+ de mots clés pour la revue de presse

Annuaires des videos : curit, security, biomet, metasploit, biometric, cking, password, windows, botnet, defcon, tutorial, crypt, xploit

+ de mots clés pour les videos

Revue Twitter : security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall

+ de mots clés pour la revue Twitter

Top bi-hebdo des articles de SecuObs
- [IDS Snort Windows – Partie 2] Installation et configuration
- [Ettercap – Partie 2] Ettercap par l'exemple - Man In the Middle et SSL sniffing
- #FIC2014: Entrée en territoire inconnu
- Les russes ont-ils pwn le système AEGIS ?
- [IDS Snort Windows – Partie 4] Conclusion et webographie
- [IDS Snort Windows – Partie 3] Exemple de fichier de configuration
- Powerpreter, un nouveau module Powershell de post-exploitation pour Nishang 0.3
- Le ministère de l'intérieur censure une conférence au Canada
- WPA Cracker un cluster en ligne de 400 CPU et un dictionnaire de 135 millions d'entrées pour casser, ou pas, WPA/WPA2-PSK en 20 minutes
- USBDumper 2 nouvelle version nouvelles fonctions !

Top bi-hebdo de la revue de presse
- INSIDE Secure acquiert Metaforic
- Using masscan to scan for heartbleed vulnerability
- Introducing the rsyslog config builder tool
- 1,103 Megaupload Servers Gather Dust at Virginia Warehouse
- RS485 Arduino Network showandtell adafruit6secs
- Move Active Directory users to a group with PowerShell
- L ANSSI s attèle aux décrets d application de la LPM portant sur la protection des opérateurs d importance vitale
- Windows Zero-Day Vulnerability Researched by Microsoft
- Implementing SCADA Protocols Simulating IEC104
- toolsmith EMET 4.0 These Aren t the Exploits You re Looking For

Top bi-hebdo de l'annuaire des videos
- Tutorial 14 Pfsense OpenVpn RoadWarrior VPN
- Tutorial 15 pfSense Squid Squidguard Content filtering
- Backtrack 5r3 Armitage Metasploit
- Comment Pirater Un Ordinateur Avec Ubuntu Metasploit
- Hak5 1408 1 Reviewing Kali Linux and USB Rubber Ducky Payload Generator
- Comment creer un server botnet!!!!(Réseau de pc zombies)
- Tutoriel Supprimer Cacaoweb Botnet
- Bbkeyswin WPA d une Bbox en 2 min sous Windows
- Avoir des donuts illimit s sur le jeu Simpsons Springfield
- configuration in gns3 dual wan setup and vmware pfsense 2 0 lusca cache

Top bi-hebdo de la revue Twitter
- Zombies are attacking America – researchers: Banking sector DDoSers 'used botnets', say security boffins. Hackers re…
- @mikko @fslabs y'all wldn't happen to have lat/long data sets for other botnets, wld you? Doing some research (free/open info rls when done)
- [Blog Spam] Metasploit and PowerShell payloads
- [SuggestedReading] Using the HTML5 Fullscreen API for Phishing Attacks
- Zombies are attacking America – researchers - Banking sector DDoSers 'used botnets', say security boffins Hackers re...
- PinkiePie Strikes Again, Compromises Google Chrome in Pwnium Contest at Hack in the Box: For the second time thi...
- #networksecurity #cloud Expert QA: Cloud computing, HIE will be the 'new normal' - Ken Ong: The National Institute ...
- RT @mikko: Wow. Apple kernels actually have a function called PE_i_can_has_debugger:
- An inexpensive proxy service called is actually a front for #malware distribution -
- RT @helpnetsecurity: Proxy service users download malware, unknowingly join botnet //How ironic.

Top des articles les plus commentés
- [Metasploit 2.x – Partie 1] Introduction et présentation
- Microsoft !Exploitable un nouvel outil gratuit pour aider les développeurs à évaluer automatiquement les risques
- Webshag, un outil d'audit de serveur web
- Les navigateurs internet, des mini-systèmes d’exploitation hors de contrôle ?
- Yellowsn0w un utilitaire de déblocage SIM pour le firmware 2.2 des Iphone 3G
- CAINE un Live[CD|USB] pour faciliter la recherche légale de preuves numériques de compromission
- Nessus 4.0 placé sous le signe de la performance, de l'unification et de la personnalisation
- [Renforcement des fonctions de sécurité du noyau Linux – Partie 1] Présentation
- [IDS Snort Windows – Partie 1] Introduction aux IDS et à SNORT
- Origami pour forger, analyser et manipuler des fichiers PDF malicieux



[Message Precedent sur la mailing][Message Suivant sur la mailing][Precedent dans le fil][Prochain dans le fil][Index par Date][Index par fil] [SA20942] Debian update for xine-lib



Reverse Engineer Wanted

Secunia offers a Security Specialist position with emphasis on
reverse engineering of software and exploit code, auditing of
source code, and analysis of vulnerability reports.

link://[click]

TITLE: Debian update for xine-lib

SECUNIA ADVISORY ID: SA20942

VERIFY ADVISORY: link://[click]

CRITICAL: Not critical

IMPACT: DoS

WHERE: From remote

OPERATING SYSTEM: Debian GNU/Linux unstable alias sid link://[click] Debian GNU/Linux 3.0 link://[click] Debian GNU/Linux 3.1 link://[click]

DESCRIPTION: Debian has issued an update for xine-lib. This fixes a weakness, which can be exploited by malicious people to crash certain applications on a user's system.

For more information: SA20369 SOLUTION: Apply updated packages.

-- Debian GNU/Linux 3.0 alias woody -- Source archives: link://[click] Size/MD5 checksum: 761 113ef134a39e2f37bc6395dc2e43b538 link://[click] Size/MD5 checksum: 2339 194c32b8c93f5e85c873454412f63552 link://[click] Size/MD5 checksum: 1766178 d8fc9b30e15b50af8ab7552bbda7aeda Alpha architecture: link://[click] Size/MD5 checksum: 261022 3314df47933eadc0af5b5cf4a36afdfe link://[click] Size/MD5 checksum: 816024 897664eee06d09f43375f5320be1f17b ARM architecture: link://[click] Size/MD5 checksum: 302960 9dee75c3d13aabb5e83978e0d75ec4ce link://[click] Size/MD5 checksum: 671494 dafc6c14181802dd56c887583bbf5140 Intel IA-32 architecture: link://[click] Size/MD5 checksum: 260788 3a98e4d713d1c341fe69a717c8de0072 link://[click] Size/MD5 checksum: 807996 1dd6e453aa93c420a145dd5397ee99bd Intel IA-64 architecture: link://[click] Size/MD5 checksum: 260864 46ae5bb7b3256421dd7291e7c8898369 link://[click] Size/MD5 checksum: 953654 887b267a44c50e00f8bf9e2190852ca8 HP Precision architecture: link://[click] Size/MD5 checksum: 260968 aa1ee745d7c5c6b9a8271c64f0a587a0 link://[click] Size/MD5 checksum: 846792 60ed39365a0c67db2d4fba67d2ba1583 Motorola 680x0 architecture: link://[click] Size/MD5 checksum: 292718 2a87b508bcc610a01abf8c9c3773d40d link://[click] Size/MD5 checksum: 617706 67075fef400071473fa948e5dd89b8fc Big endian MIPS architecture: link://[click] Size/MD5 checksum: 299478 5b0c49b3745472f71725dd052b60d712 link://[click] Size/MD5 checksum: 653086 0044bef2d6ebeb01385d1a20a716046a Little endian MIPS architecture: link://[click] Size/MD5 checksum: 299568 79851707d297d94d74b613d5abaa6b3a link://[click] Size/MD5 checksum: 655030 0868f2d006c6b5282c8880a8460fed77 PowerPC architecture: link://[click] Size/MD5 checksum: 261278 fc16e5e2889afdd2c73491714575d53f link://[click] Size/MD5 checksum: 742454 6c2be22417b910c45c0bb113a4f7707b IBM S/390 architecture: link://[click] Size/MD5 checksum: 302404 9d54d7d12b431358f99fe688e2999cb5 link://[click] Size/MD5 checksum: 662920 5da8cbae8d02f579e8150dde1b07c4f8 Sun Sparc architecture: link://[click] Size/MD5 checksum: 261104 30717fe03e13e5dfbd5adbf4dafd93eb link://[click] Size/MD5 checksum: 803816 fe08139ea1b35f3e7d5b7bcb8de20dd3 -- Debian GNU/Linux 3.1 alias sarge -- Source archives: link://[click] Size/MD5 checksum: 1062 998afa8ddece7f06aac69cb8787b8bea link://[click] Size/MD5 checksum: 3230 6b65bdac09c698d6dcfc9c01f417714b link://[click] Size/MD5 checksum: 7774954 9be804b337c6c3a2e202c5a7237cb0f8 Alpha architecture: link://[click] Size/MD5 checksum: 107646 53ba83cd587bed30cdbd5dd96a241e43 link://[click] Size/MD5 checksum: 4829370 83e8d3ed71f20b06d4edcd1a97247903 AMD64 architecture: link://[click] Size/MD5 checksum: 107640 9be42e567a232db85ade634a8875cea1 link://[click] Size/MD5 checksum: 3933392 03aaaf4b88fd5cc99ab7048e386a81eb ARM architecture: link://[click] Size/MD5 checksum: 107698 857f520bcc947238b6a1732239508e29 link://[click] Size/MD5 checksum: 3878442 e505d7fd20cff3d6965e0e55640e5da0 Intel IA-32 architecture: link://[click] Size/MD5 checksum: 107702 56fb77a0b6f0d01b3eb7cff160b7fc2e link://[click] Size/MD5 checksum: 4204886 3fb1c5b93a8bd2857f8da12f95a0c144 Intel IA-64 architecture: link://[click] Size/MD5 checksum: 107648 e5540cc5bbe66e9565fc412d7d37a23d link://[click] Size/MD5 checksum: 5620728 800474cd0356d391f8ac843104de8057 HP Precision architecture: link://[click] Size/MD5 checksum: 107676 8f22e952357456fe6f92217a6305a54b link://[click] Size/MD5 checksum: 3600400 aff888a7efd1cc00072cc3bdd1c88a70 Motorola 680x0 architecture: link://[click] Size/MD5 checksum: 107720 97d1027b157b256611e234ce20c76337 link://[click] Size/MD5 checksum: 3175260 ee6cef5deb75f0396b13013602f30b90 Big endian MIPS architecture: link://[click] Size/MD5 checksum: 107654 639d0ee2c65047864b5c726dfba30fcf link://[click] Size/MD5 checksum: 4066606 b7beb0cb4615f6ca98b4fbff3be16c06 Little endian MIPS architecture: link://[click] Size/MD5 checksum: 107678 ba9bb94702fcf451db6dde218e23bc21 link://[click] Size/MD5 checksum: 4125476 fc4b6816829beff3ba2fbd175e7e1384 PowerPC architecture: link://[click] Size/MD5 checksum: 107686 0ce2a02a85fd72b5bb24213fc025f864 link://[click] Size/MD5 checksum: 4305544 68c2be929520c8a45439d36ef8d0a2ca IBM S/390 architecture: link://[click] Size/MD5 checksum: 107652 63c9659dc1e004412faf09d9feafee08 link://[click] Size/MD5 checksum: 3880838 b747276fe66ef57341430e10adc32fee Sun Sparc architecture: link://[click] Size/MD5 checksum: 107666 045189d3cd49c72f4e4bf26ea391fec1 link://[click] Size/MD5 checksum: 4360438 15333a715e57287c63f2f2f36b40ec80 -- Debian GNU/Linux unstable alias sid -- Fixed in version 1.1.1-2.

PROVIDED AND/OR DISCOVERED BY: Federico L. Bossi Bonin

ORIGINAL ADVISORY: link://[click] OTHER REFERENCES: SA20369: link://[click]

About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

Subscribe: link://[click]

Definitions: (Criticality, Where etc.) link://[click]

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link.

Secunia NEVER sends attached files with advisories.

Secunia does not advise people to install third party patches, only use those supplied by the vendor.




Archives de la liste de diffusion Secunia
Archives de la liste de diffusion Full Disclosure





SecuToolBox :

Mini-Tagwall des articles publiés sur SecuObs :

Mini-Tagwall de l'annuaire video :

Mini-Tagwall des articles de la revue de presse :

Mini-Tagwall des Tweets de la revue Twitter :