Static analysis tool exposition (SATE) V Call for participation

2013-05-21 Thread aure
NIST is preparing the fifth Static Analysis Tool Exposition (SATE V). Briefly, participating tool makers run their static analyzer on a set of programs. Researchers led by NIST analyze the tool reports and present the results and experiences at a workshop. A detailed plan is available at:

Defense in depth -- the Microsoft way

2013-05-21 Thread Stefan Kanthak
Hi @ll, the Microsoft Installer creates for applications installed via an .MSI the following uninstall information in the Windows registry (see http://msdn.microsoft.com/library/aa372105.aspx): [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall] UninstallString=MsiExec.Exe

CVE-2013-3496. Local privilege escalation vulnerability in Infotecs products (ViPNet Client\Coordinator, SafeDisk, Personal Firewall)

2013-05-21 Thread chudakovma
CVE-2013-3496. Local privilege escalation vulnerability in Infotecs products (ViPNet Client\Coordinator, SafeDisk, Personal Firewall) CVE reference: CVE-2013-3496 Credit: Maksim Chudakov (@MChudakov) Andrey Kurtasanov(andreykurtasa...@gmail.com) Severity: Medium Local\Remote: Local

Sony PS3 Firmware v4.31 - Code Execution Vulnerability

2013-05-21 Thread Vulnerability Lab
Title: == Sony PS3 Firmware v4.31 - Code Execution Vulnerability Date: = 2013-05-12 References: === http://www.vulnerability-lab.com/get_content.php?id=767 VL-ID: = 767 Common Vulnerability Scoring System: 6.5 Introduction:

[slackware-security] kernel (SSA:2013-140-01)

2013-05-21 Thread Slackware Security Team
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 [slackware-security] kernel (SSA:2013-140-01) New Linux kernel packages are available for Slackware 13.37 and 14.0 to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: +--+