“The Americans should concentrate on maintaining security and not doing missionary work.”

continue reading.....

At BrainShare 2008 in March, Novell introduced a set of Linux certifications for administrators. Rather than being directed at higher-end Linux managers, like the Red Hat Certified Engineer (RHCE) or Novell’s own Novell Linux Certified Engineer (NLCE)…

continue reading.....

It’s nice — really nice — to see via Distrowatch that development is continuing on low-spec favorite DeLi Linux.

continue reading.....

continue reading.....

continue reading.....

CMSimple Multiple Input Validation Vulnerabilities

continue reading.....

PsychoStats Multiple SQL Injection Vulnerabilities

continue reading.....

BP Blog Multiple SQL Injection Vulnerabilities

continue reading.....

Social Site Generator Multiple SQL Injection Vulnerabilities

continue reading.....

Opencosmo VisualSentinel User Agent HTML Injection Vulnerability

continue reading.....

continue reading.....

The Open Source Health Information Platform (OSHIP) project is now public. It is a Python[http://www.python.org] implementation of the openEHR[http://www.openehr.org] specifications Release 1.0.1. OSHIP is not a clinical application. It is a Python framework for quickly building future-proof, inter-operable healthcare applications based on a multi-level modeling principle [http://www.openehr.org/201-OE] that has already been proven in implementations.

continue reading.....

continue reading.....

continue reading.....

continue reading.....

A couple of weeks ago we blogged about mass SQL injections. After that it went quiet but the attacks have now started again, this time pointing to several different domains.

During the last few days we’ve seen the same type of encoded SQL script as in the previous case being inserted into ASP/ASP.NET pages. The scripts point to the following domains:

   yl18.net
   www.bluell.cn
   www.kisswow.com.cn
   www.ririwow.cn
   winzipices.cn

All of the domains above are pointing to IP addresses in China.

Just like last time the scripts attempt to use several exploits to infect the user’s computer.

On 10/05/08 At 12:24 AM

continue reading.....

continue reading.....

Adding photos to Flickr using web browser can be a very annoying procedure. Thus, the better solution is to use tools, which enable us to maintain our Flickr account directly from the file manager or desktop application. Linux users may choose several solutions.

continue reading.....

continue reading.....

Critical:
Less critical
Impact: Spoofing
Where: From remote
Solution Status: Vendor Patch

Software: IDrive…

continue reading.....

Critical:
Highly critical
Impact: System access
Where: From remote
Solution Status: Unpatched

Software: Hi…

continue reading.....

Critical:
Less critical
Impact: Cross Site Scripting
Where: From remote
Solution Status: Vendor Patch

Soft…

continue reading.....

Critical:
Highly critical
Impact: Security Bypass
Cross Site Scripting
Exposure of system information
Exposure…

continue reading.....

Critical:
Extremely critical
Impact: System access
Where: From remote
Solution Status: Vendor Patch

Softwa…

continue reading.....

Critical:
Highly critical
Impact: System access
Where: From remote
Solution Status: Unpatched

Software: Mu…

continue reading.....

Critical:
Highly critical
Impact: System access
Where: From remote
Solution Status: Unpatched

Software: Au…

continue reading.....

Critical:
Highly critical
Impact: System access
Where: From remote
Solution Status: Unpatched

Software: Cr…

continue reading.....

Critical:
Moderately critical
Impact: Manipulation of data
Where: From remote
Solution Status: Unpatched

S…

continue reading.....

Critical:
Highly critical
Impact: System access
Where: From remote
Solution Status: Unpatched

Software: Ea…

continue reading.....

Critical:
Highly critical
Impact: System access
Where: From remote
Solution Status: Unpatched

Software: To…

continue reading.....