eGlibc Signedness Code Execution Vulnerability
>> CATEGORY: exploit
eGlibc Signedness Code Execution Vulnerability
Joomla com_niceajaxpoll
Dr. Web Control Center 6.00.3.201111300 XSS Vulnerability
Sysax Multi-Server 5.64 Create Folder Buffer Overflow
httpdx
Transferable State Attack on Iterated Hashing Functions
Secunia Security Advisory – Multiple vulnerabilities have been reported in Apple Safari for Mac OS X, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, disclose sensitive information, bypass certain security restrictions, and compromise a user’s system.
Secunia Security Advisory – A weakness and a vulnerability have been reported in Apple Xcode, which can be exploited by malicious people to disclose potentially sensitive information, hijack a user’s session, and bypass certain security restrictions.
This is a MobileSubstrate extension to disable certificate validation within NSURLConnection in order to facilitate black-box testing of iOS Apps. Once installed on a jailbroken device, iOS SSL Kill Switch patches NSURLConnection to override and disable the system’s default certificate validation as well as any kind of custom certificate validation (such as certificate pinning).
Apple Security Advisory 2012-07-25-2 – Xcode 4.4 is now available and addresses SSL and keychain access vulnerabilities.