Americans Support Mandatory Labeling of Food That Contains DNA

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 25, 2015

HughPickens.com writes Jennifer Abel writes at the LA times that according to a recent survey over 80% of Americans says they support “mandatory labels on foods containing DNA,” roughly the same number that support the mandatory labeling of GMO foods “produced with genetic engineering.” Ilya Somin, writing approximately the survey at the Washington Post, suggested[…]

Europe and China Will Team Up For a Robotic Space Mission

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 25, 2015

Taco Cowboy writes with this excerpt from Space.com: On Monday (Jan. 19), the Chinese Academy of Sciences (CAS) & the European Space Agency (ESA) issued a call for proposals for a robotic space mission that the two organizations will develop jointly. “The goal of the present Call is to define a scientific space mission to[…]

Doomsday Clock Moved Two Minutes Forward, To 23:57

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 25, 2015

An anonymous reader writes As reported by CNN & Time, the Bulletin of the Atomic Scientists has moved their famed Doomsday Clock two minutes closer to midnight. Now at 23:57, this clock attempts to personify humanity’s closeness to a global catastrophe (as caused by either climate alter or nuclear war). According to the Bulletin of[…]

Twitter Moves To Curb Instagram Links

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 25, 2015

Hammeh writes According to a report on Mashable, Twitter have sent out messages to some of their high profile users prompting them to share images using Twitter’s own service rather than Instagram links. The news comes 2 years since Instagram pulled support for Twitter cards & has been part of the continuing battle between the[…]

#1337day Joomla Component com_contushdvideoshare – Arbitrary File Download Vulnerability [#0day #Exploit]

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 25, 2015

View Source

In Addition To Project Spartan, Windows 10 Will Include Internet Explorer

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 25, 2015

An anonymous reader writes After unveiling its new Project Spartan browser for Windows 10, Microsoft is now offering more details. The company confirmed that Windows 10 will moreover include Internet Explorer for enterprise sites, though it didn’t say how exactly this will work. Spartan comes with a new rendering engine, which doesn’t rely on the[…]

OpenSSL 1.0.2 Released

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

kthreadd writes The OpenSSL project has released its second feature release of the OpenSSL 1.0 series, version 1.0.2 which is ABI compatible with the 1.0.0 & 1.0.1 series. Major new features in this release include Suite B support for TLS 1.2 & DTLS 1.2 & support for DTLS 1.2. selection. Other major changes include TLS[…]

Bomb Threats Via Twitter Partly Shut Down Atlanta’s Hartsfield Airport

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

The Atlanta Journal-Constitution reports that “Credible” bomb threats were made Saturday against two flights bound for Atlanta, an airport spokesman said. The flights landed safely after being escorted into Atlanta by military fighter jets. Hartsfield-Jackson International Airport spokesman Reese McCrainie told The Atlanta Journal-Constitution at 3 p.m. that both flights — Delta 1156 & Southwest[…]

#1337day Cisco Ironport Appliances Privilege Escalation Exploit [remote #exploits #0day #Exploit]

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

View Source

Ask Slashdot: Where Can You Get a Good 3-Button Mouse Today?

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

guises writes Ever since mouse wheels were introduced the middle mouse button has been sidelined to an inadequate click-wheel function, or in some cases ditched altogether. This has never sat well with me, a proper middle button is invaluable for pasting, games, & navigation. More than that, my hand categorically rejects two button mice —[…]

NVIDIA Responds To GTX 970 Memory Bug

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

Vigile writes Over the past week or so, owners of the GeForce GTX 970 have found several instances where the GPU was unable or unwilling to address memory capacities over 3.5GB despite having 4GB of on-board frame buffer. Specific benchmarks were written to demonstrate the issue & users even found ways to configure games to[…]

Bjarne Stroustrup Awarded 2015 Dahl-Nygaard Prize

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

mikejuk writes Bjarne Stroustrup, the creator of C++, is the 2015 recipient of the Senior Dahl-Nygaard Prize, considered the most prestigious prize in object-oriented computer science. Established in 2005 it honors the pioneering work on object-orientation of Ole-Johan Dahl & Kristen Nygaard who, designed Simula, the original object-oriented language & are remembered as “colorful characters”.[…]

UHD Spec Stomps on Current Blu-ray Spec, But Will Consumers Notice?

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

An anonymous reader writes Details have emerged on the new UHD Blu-ray spec & players set to start shipping this summer. UHD promises resolutions 4X greater than Blu-ray 1080p as well as much higher data rates, enhanced color space & more audio options. But, will consumers care, & will they be willing to upgrade their[…]

Winklevoss Twins Plan Regulated Bitcoin Exchange

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

itwbennett writes They of the square jaws & famous dispute with Mark Zuckerberg over the origins of Facebook, are moreover believed to be among the largest holders of Bitcoin in the world. Now they want to launch a regulated Bitcoin exchange—named Gemini, of course. To bolster confidence, they said they have formed a relationship with[…]

WhatsApp vs. WhatsApp Plus Fight Gets Ugly For Users

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

BarbaraHudson writes WhatsApp is locking out users for 24 hours who use WhatsApp Plus to access the service. The company claims they brought in the temporary ban to make users aware that they are not using the correct version & their privacy could be comprised using the unofficial WhatsApp Plus. “Starting today, we are taking[…]

Linus Fixes Kernel Regression Breaking Witcher 2

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

jones_supa writes There has been quite a debate around the Linux version of The Witcher 2: Assassins of Kings & the fact that it wasn’t really a port. A special kind of wrapper was used to make the Windows version of the game run on Linux systems, similar to Wine. The performance on Linux systems[…]

Government Recommends Cars With Smarter Brakes

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

mrspoonsi writes The National Highway Traffic Safety Administration is adding crash imminent braking & dynamic braking support to its list of recommended advanced safety features for new cars. The former uses sensors to activate the brakes if a crash is imminent & the driver already hasn’t. Dynamic braking support, on the other hand, increases stopping[…]

Smartphones, Tablets and EBay Send SkyMall To Chapter 11

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

alphadogg writes SkyMall, the quirky airline catalog, looks as though it may be grounded before long. Parent company Xhibit has filed for Chapter 11 bankruptcy protection & seeks to sell its assets. In an SEC filing, Xhibit explains that it has fallen victim to an “intensely competitive” direct marketing retail industry that now includes the[…]

By the Numbers: The Highest-Paying States For Tech Professionals

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

Nerval’s Lobster writes The average technology professional made $89,450 in 2014, according to Dice’s latest salary survey. When it comes to salaries, however, not all states & cities are created equal. Those tech pros living & working in Silicon Valley are the highest-paid in the country, with an average annual salary of $112,610—but that salary[…]

Made-In-Nigeria Smart Cards To Extend Financial Services To the Poor

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

jfruh (300774) writes “A new factory producing smart cards opened in Lagos this week, promising to open up access to financial services to many poor Africans & other inhabitants of the Global South. The cards can be used by people without traditional bank accounts to access the worldwide credit card & smart phone infrastructure.” From[…]

China Cuts Off Some VPNs

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

jaa101 writes The Register (UK) & the Global Times (China) report that foreign VPN services are unavailable in China. A quote sourced to “one of the founders of an overseas website which monitors the Internet in China” claimed ‘The Great Firewall is blocking the VPN on the protocol level. It means that the firewall does[…]

At Oxford, a Battery That’s Lasted 175 Years — So Far

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

sarahnaomi writes There sits, in the Clarendon Laboratory at Oxford University, a bell that has been ringing, nonstop, for at least 175 years. It’s powered by a single battery that was installed in 1840. Researchers would love to know what the battery is made of, yet they are afraid that opening the bell would ruin[…]

#1337day ManageEngine ServiceDesk 9.0 SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

View Source

#1337day ManageEngine ServiceDesk Plus 9.0 Privilege Escalation Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

View Source

#1337day ManageEngine ServiceDesk 9.0 User Enumeration Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

View Source

#1337day ferretCMS 1.0.4-alpha Cross Site Scripting / SQL Injection Vulnerabilities [#0day #Exploit]

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

View Source

#1337day ecommerceMajor SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

View Source

Google Just Made It Easier To Run Linux On Your Chromebook

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 24, 2015

TechCurmudgeon writes A story in PCWorld’s “World beyond Windows” column outlines coming improvements in Chrome OS that will enable easily running Linux directly from a USB stick: “Have you ever installed a full desktop Linux system on your Chromebook? It isn’t all [that] hard, yet it is a bit more complex than it should be.[…]

#1337day libpng 1.6.15 Heap Overflow Exploit CVE-2015-0973 [remote #exploits #0day #Exploit]

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

View Source

Ask Slashdot: Best Anti-Virus Software In 2015? Free Or Paid?

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

CryoKeen writes: I received a new laptop recently after trading in my old laptop for store credit. While I was waiting to check out, the sales man just handed me some random antivirus software (Trend Micro) that was included with the purchase. I don’t think he or I realized at the time that the CD/DVD[…]

ManageEngine ServiceDesk 9.0 SQL Injection

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

ManageEngine ServiceDesk version 9.0 prior to build 9031 suffers from a remote SQL injection vulnerability. View Source

ManageEngine ServiceDesk Plus 9.0 Privilege Escalation

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

ManageEngine ServiceDesk Plus version 9.0 prior to build 9031 suffers from a remote privilege escalation vulnerability due to improper access controls. View Source

ManageEngine ServiceDesk 9.0 User Enumeration

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

ManageEngine ServiceDesk version 9.0 prior to build 9031 suffers from a remote user enumeration vulnerability. View Source

‘Never Miss Another Delivery’ – if You Have a TrackPIN (Video)

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

The company is called TrackPIN, as is the product. Its creator, Mark Hall, showed it off at CES. Timothy pointed his camcorder at Mark as he explained how his product would let you obtain package deliveries safely when you aren’t home by giving the UPS or FedEx (or other) delivery person access to your garage,[…]

Hack In The Box 2015 AMS Call For Papers

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

The Hack In The Box 2015 AMS Call For Papers closes at the end of January. It will be held May 26th through the 29th, 2015 at De Beurs van Berlage, Amsterdam. View Source

10 New Rosetta Images Reveal Comet 67P In All Its Glory

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

sciencehabit writes: The first scientific results from Rosetta at comet 67P have been published, & they detail a surprising diversity of features on the 4-kilometer-long duck-shaped comet. The discoveries include images from Rosetta’s main science camera, OSIRIS, which reveal 67P to be a far more varied place than anyone expected. The article summarizes a trove[…]

Verizon About To End Construction of Its Fiber Network

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

WheezyJoe writes: If you’ve been holding out hope that FiOS would rescue you from your local cable monopoly, it’s probably time to donate up. Making satisfactory on their statements five years ago, Verizon announced this week it is nearing “the end” of its fiber construction & is reducing wireline capital expenditures while spending more on[…]

Behind the MOOC Harassment Charges That Stunned MIT

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

An anonymous reader writes: The complainant in a sexual harassment case has come forward & told her story approximately what happened when she was a student in a MOOC led by a rockstar professor. “It would take almost a year before Harbi, with the assist of MIT’s investigators, said she came to understand that Lewin’s[…]

U.S. Gas Stations Vulnerable To Internet Attacks

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

itwbennett writes: Automated tank gauges (ATGs), which are used by gas stations in the U.S. to monitor their fuel tank levels can be manipulated over the Internet by malicious attackers, according to security firm Rapid7. “An attacker with access to the serial port interface of an ATG may be able to shut down the station[…]

Local Motors Looks To Disrupt the Auto Industry With 3D-Printed Car Bodies

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

An anonymous reader writes: Local Motors solicits design ideas through crowdsourcing, allows anyone to use open source software to contribute ideas, & then 3D prints car bodies according to the chosen specs in a matter of days. To prove they mean business, Local Motors 3D-printed a car on the floor of the Detroit Auto Show[…]

Disney Turned Down George Lucas’s Star Wars Scripts

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

ageoffri writes: When Star Wars fans learned that George Lucas was making the prequels, most were filled with excitement & anticipation. When Episodes 1-3 were actually released, many found them unsatisfying, & became disillusioned with Lucas’s writing. Now, it appears Disney felt the same way. Though they bought Lucasfilm & began production on Episode 7,[…]

Scientists Slow the Speed of Light

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

lightbox32 sends news that scientists have found a way to slow individual photons within a beam of light. Their work was published today in Science Express (abstract, pre-print). The researchers liken a light beam to a team of cyclists — while the group as a whole moves at a constant speed, individual riders may occasionally[…]

New Nicotine Vaccine May Succeed Where Others Have Failed

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

Zothecula writes: If you’re a smoker who’s trying to quit, you may recall hearing approximately vaccines designed to cause the body’s immune system to treat nicotine like a foreign invader, producing antibodies that trap & remove it before it’s able to reach receptors in the brain. It’s a fascinating idea, yet according to scientists at[…]

Data Encryption On the Rise In the Cloud and Mobile

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

dkatana writes: Overall, demand for encryption is growing. Cloud encryption services provider CipherCloud recently received a $50 million investment by Deutsche Telekom, which the company said positions it for “explosive growth” this year. The services are designed to allow corporations to benefit from the cost savings & elasticity of cloud-based data storage, while ensuring that[…]

Surface RT Devices Won’t Get Windows 10

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

whoever57 writes: In its announcement of Windows 10, Microsoft indicated not all devices would obtain the updated operating system. Now, Microsoft says its Surface devices running Windows RT won’t be receiving full updates, though it does plan to roll some new functionality into them. “Given that Windows RT & RT 8.1 were designed for power[…]

Rare Astronomical Event Will See Triple Moon Shadows On Jupiter

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

hypnosec writes Stargazers are in for a treat: they will be able to witness a rare astronomical event early tomorrow morning (January 24, 2015) where shadows of three of Jupiter’s largest moons — Io, Europa, & Callisto — will fall upon Jupiter simultaneously. Griffith Observatory in Los Angeles will provide a live online broadcast on[…]

Eric Schmidt: Our Perception of the Internet Will Fade

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

Esra Erimez writes: Google executive chairman Eric Schmidt on Thursday predicted a alter in how we perceive the internet. Schmidt says, “There will be so many IP addresses, so many devices, sensors, things that you are wearing, things that you are interacting with that you won’t even sense it. It will be part of your[…]

Should Disney Require Its Employees To Be Vaccinated?

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

HughPickens.com writes According to Joanna Rothkopf Disneyland is already a huge petri dish of disease with tired children wiping their snot faces on Goofy & then riding log flumes through mechanized rivers filled with the backwash of thousands of other sweaty, unwashed, weeping toddlers. Now John Tozzi reports at Businessweek that five workers at Disneyland[…]

Microsoft Announces Office 2016 and Office For Windows 10 Coming Later This Year

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

An anonymous reader writes At its Windows 10 event yesterday, Microsoft unveiled the touch-optimized version of Office. Today, the company offered more details approximately that version, & then snuck in another announcement: the next desktop version is under development, it is called Office 2016, & it will be generally available “in the second half of[…]

Apple Agrees To Chinese Security Audits of Its Products

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

itwbennett writes According to a story in the Beijing News, Apple CEO Tim Cook has agreed to let China’s State Internet Information Office to run security audits on products the company sells in China in an effort to counter concerns that other governments are using its devices for surveillance. “Apple CEO Tim Cook agreed to[…]

Quantum Computing Without Qubits

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

An anonymous reader shares this interview with quantum computing pioneer Ivan Deutsch. “For more than 20 years, Ivan H. Deutsch has struggled to design the guts of a working quantum computer. He has not been alone. The quest to harness the computational might of quantum weirdness continues to occupy hundreds of researchers around the world.[…]

#1337day Facebook Linkshim Bypass Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

View Source

Dish Network Violated Do-Not-Call 57 Million Times

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

lightbox32 writes Dish Network has been found guilty of violating the Do Not Call list on 57 million separate occasions. They were moreover found liable for abandoning or causing telemarketers to abandon nearly 50 million outbound telephone calls, in violation of the abandoned-call provision of the Federal Trade Commission’s Telemarketing Sales Rule. Penalties for infringing[…]

ferretCMS 1.0.4-alpha Cross Site Scripting / SQL Injection

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

ferretCMS version 1.0.4-alpha suffers from cross site scripting & remote SQL injection vulnerabilities. View Source

SmartCMS 2 Cross Site Scripting

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

SmartCMS version 2 suffers from multiple cross site scripting vulnerabilities. View Source

SmartCMS 2 SQL Injection

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

SmartCMS version 2 suffers from multiple remote SQL injection vulnerabilities. View Source

Red Hat Security Advisory 2015-0079-01

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

Red Hat Security Advisory 2015-0079-01 – Oracle Java SE version 7 includes the Oracle Java Runtime Environment & the Oracle Java Software Development Kit. This update fixes several vulnerabilities in the Oracle Java Runtime Environment & the Oracle Java Software Development Kit. View Source

Red Hat Security Advisory 2015-0074-01

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

Red Hat Security Advisory 2015-0074-01 – JasPer is an implementation of Part 1 of the JPEG 2000 image compression standard. An off-by-one flaw, leading to a heap-based buffer overflow, was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute[…]

Red Hat Security Advisory 2015-0080-01

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

Red Hat Security Advisory 2015-0080-01 – Oracle Java SE version 8 includes the Oracle Java Runtime Environment & the Oracle Java Software Development Kit. This update fixes several vulnerabilities in the Oracle Java Runtime Environment & the Oracle Java Software Development Kit. View Source

Ubuntu Security Notice USN-2482-1

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

Ubuntu Security Notice 2482-1 – Alexander Cherepanov discovered that libelf1 incorrectly handled certain filesystem paths while extracting ar archives. An attacker could use this flaw to perform a directory traversal attack on the root directory if the process extracting the ar archive has write access to the root directory. View Source

Program-O 2.4.6 XSS / LFI / HTTP Response Splitting

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

Program-O version 2.4.6 suffers from http response splitting, cross site scripting, & local file inclusion vulnerabilities. View Source

USAA Mobile App Information Disclosure

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

The USAA Mobile app for Android versions prior to 7.10.1 suffer from an information disclosure vulnerability. View Source

articleFR CMS 3.0.5 Cross Site Scripting

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

articleFR CMS version 3.0.5 suffers from a cross site scripting vulnerability. View Source

Barrett Brown, Formerly of Anonymous, Sentenced To 63 Months

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

An anonymous reader writes with news that a journalist linked to Anonymous, Barret Brown, has been sentenced. “Barrett Brown, a journalist formerly linked to the hacking group Anonymous, was sentenced Thursday to over five years in prison, or a total of 63 months. Ahmed Ghappour, Brown’s attorney, confirmed to Ars that Brown’s 28 months already[…]

Alibaba Cross Site Scripting / Open Redirect

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

Various Alibaba sites suffer from cross site scripting & open redirect vulnerabilities. View Source

ecommerceMajor SQL Injection

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

ecommerceMajor suffers from remote SQL injection vulnerabilities. View Source

The Camera That Changed the Universe

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 23, 2015

StartsWithABang writes As the Hubble Space Telescope gets set to celebrate the 25th anniversary of opening its eyes to the Universe, it’s significant to realize that the first four years of operations were kind of a disaster. It wasn’t until they corrected the flawed primary mirror & installed an upgraded camera — the Wide Field[…]

NVIDIA Launches New Midrange Maxwell-Based GeForce GTX 960 Graphics Card

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

MojoKid writes NVIDIA is launching a new Maxwell desktop graphics card today, targeted at the sweet spot of the graphics card market ($200 or so), currently occupied by its previous gen GeForce GTX 760 & older GTX 660. The new GeForce GTX 960 features a brand new Maxwell-based GPU dubbed the GM206. NVIDIA was able[…]

#1337day Symantec SDCS:SA Multiple Vulnerabilities [remote #exploits #Vulnerabilities #0day #Exploit]

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

View Source

#1337day Arris VAP2500 Command Execution Exploit [remote #exploits #0day #Exploit]

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

View Source

Researchers Moot "Teleportation" Via Destructive 3D Printing

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

ErnieKey writes Researchers from German-based Hasso Plattner Institute have come up with a process that may make teleportation a reality — at least in some respects. Their ‘Scotty’ device utilizes destructive scanning, encryption, & 3D printing to destroy the original object so that only the received, new object exists in that form, pretty much ‘teleporting’[…]

Senator Who Calls STEM Shortage a Hoax Appointed To Head Immigration

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

dcblogs (1096431) writes The Senate’s two top Republican critics of temporary worker immigration, specifically the H-1B & L-1 visas, now hold the two most significant immigration posts in the Senate. They are Sen. Chuck Grassley (R-Iowa), who heads the Senate’s Judiciary Committee, & his committee underling, Jeff Sessions (R-Ala.), who was appointed by Grassley on[…]

TWEETHER Project Promises 10Gbps MmW 92-95GHz Based Wireless Broadband

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

Mark.JUK writes A new project called TWEETHER, which is funded by Europe’s Horizon 2020 programme, has been set up at Lancaster University (England) with the goal of harnessing the millimetre wave (mmW) radio spectrum (specifically 92-95GHz) in order to deploy a new Point to Multipoint wireless broadband technology that could deliver peak capacity of up[…]

New Advance Confines GMOs To the Lab Instead of Living In the Wild

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

BarbaraHudson (3785311) writes In Jurassic Park, scientists tweak dinosaur DNA so that the dinosaurs were lysine-deficient in order to keep them from spreading in the wild. Scientists have taken this one step further as a way to keep genetically modified E. coli from surviving outside the lab. In modifying the bacteria’s DNA to thwart escape,[…]

Fujitsu Psychology Tool Profiles Users At Risk of Cyberattacks

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

itwbennett writes Fujitsu Laboratories is developing an enterprise tool that can identify & advise people who are more vulnerable to cyberattacks, based on certain traits. For example, the researchers found that users who are more comfortable taking risks are moreover more susceptible to virus infections, while those who are confident of their computer knowledge were[…]

Silk Road Journal Found On Ulbricht’s Laptop: "Everyone Knows Too Much"

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

sarahnaomi writes On Wednesday, prosecutors in the Silk Road trial began to lay out the wealth of evidence found on the laptop taken from accused kingpin Ross Ulbricht in a San Francisco library in October 2013. The evidence presented by prosecutor Timothy Howard was the most comprehensive & damning thus far, including more than a[…]

Adobe Patches One Flash Zero Day, Another Still Unfixed

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

Trailrunner7 writes Adobe has released an emergency update for Flash to address a zero-day vulnerability that is being actively exploited. The company moreover is looking into reports of exploits for a separate Flash bug not fixed in the new release, which is being used in attacks by the Angler exploit kit. The vulnerability that Adobe[…]

Fake Engine Noise Is the Auto Industry’s Dirty Little Secret

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

HughPickens.com writes Stomp on the gas in a new Ford Mustang or F-150 & you’ll hear a meaty, throaty rumble — the same style of roar that Americans have associated with auto power & performance for decades. Now Drew Harwell reports at the Washington Post that the auto industry’s dirty little secret is that the[…]

Blogger Who Revealed GOP Leader’s KKK Ties Had Home Internet Lines Cut

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

blottsie writes Last month, Lamar White, Jr. set off a firestorm in Washington when a post on his personal blog revealed that House Majority Whip Steve Scalise, the third most powerful Republican in the House of Representatives, was a featured speaker at a white nationalist conference put on by former Klu Klux Klan Grand Wizard[…]

OpenSSL Toolkit 1.0.2

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) & Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. View Source

Arris VAP2500 tools_command.php Command Execution

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

Arris VAP2500 access points are vulnerable to OS command injection in the web management portal via the tools_command.php page. Though authentication is required to access this page, it is trivially bypassed by setting the value of a cookie to an md5 hash of a valid username. View Source

EventSentry 3.1.0 Cross Site Scripting

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

EventSentry version 3.1.0 suffers from a cross site scripting vulnerability. View Source

Mango Automation SCADA/HMI 2.4.0 Cross Site Scripting

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

Mango Automation SCADA/HMI version 2.4.0 suffers from a cross site scripting vulnerability. View Source

X-CART e-Commerce 5.1.8 Cross Site Scripting

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

X-CART e-Commerce version 5.1.8 suffers from a cross site scripting vulnerability. View Source

Symantec SDCS:SA / SCSP XSS / Bypass / SQL Injection / Disclosure

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

Symantec Data Center Security: Server Advanced (SDCS:SA) & Symantec Critical System Protection (SCSP) suffer from cross site scripting, remote SQL injection, information disclosure, & policy bypass vulnerabilities. View Source

JasPer 1.900.1 Off-By-One / Heap Overflow

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

The JasPer project is an open source implementation for the JPEG-2000 codec. The library is affected by an off-by-one error in a buffer boundary check in jpc_dec_process_sot(), leading to a heap based buffer overflow, as well as multiple unrestricted stack memory use issues in jpc_qmfb.c, leading to stack overflow. Versions 1.900.1 & below are affected.[…]

Exponent CMS 2.3.2 Cross Site Scripting

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

Exponent CMS version 2.3.2 suffers from a cross site scripting vulnerability. View Source

osTicket 1.9.4 Cross Site Scripting

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

osTicket version 1.9.4 suffers from a cross site scripting vulnerability. View Source

Slackware Security Advisory – samba Updates

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

Slackware Security Advisory – New samba packages are available for Slackware 14.1 & -current to fix a security issue. View Source

Ubuntu Security Notice USN-2481-1

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

Ubuntu Security Notice 2481-1 – Andrew Bartlett discovered that Samba incorrectly handled delegation of authority when being used as an Active Directory Domain Controller. An attacker given delegation privileges could use this issue to escalate their privileges further. View Source

Ubuntu Security Notice USN-2480-1

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

Ubuntu Security Notice 2480-1 – Multiple security issues were discovered in MySQL & this update includes a new upstream MySQL version to fix these issues. MySQL has been updated to 5.5.41. In addition to security fixes, the updated packages contain bug fixes, new features, & possibly incompatible changes. Various other issues were moreover addressed. View[…]

The Untold Story of the Invention of the Game Cartridge

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

harrymcc writes In 1973, an obscure company which had been making electronic cash registers looked for a new business opportunity. It ended up inventing the game cartridge–an innovation which kickstarted a billion-dollar industry & helped establish videogames as a creative medium. The story has never been told until now, yet over at Fast Company, Benj[…]

Blackberry CEO: Net Neutrality Means Mandating Cross-Platform Apps

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

DW100 writes In a bizarre public blog post the CEO of BlackBerry, John Chen, has claimed that net neutrality laws should include forcing app developers to make their services available on all operating systems. Chen even goes as far as citing Apple’s iMessage tool as a service that should be made available for BlackBerry, because[…]

DALER: a Bio-Inspired Robot That Can Both Fly and Walk

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

An anonymous reader writes The issue of how to use one robot across multiple terrains is an ongoing question in robotics research. In a paper published in Bioinspiration & Biomimetics today, a team from LIS, EPFL & NCCR Robotics propose a new kind of flying robot that can moreover walk. Called the DALER (Deployable Air-Land[…]

User Plea Means EISA Support Not Removed From Linux

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

jones_supa writes A patch was proposed to the Linux Kernel Mailing List to drop support for the old EISA bus. However a user chimed in: “Well, I’d like to keep my x86 box up & alive, to support EISA FDDI equipment I maintain if nothing else — which in particular means the current head version[…]

Simon Pegg On Board To Co-Write Next Star Trek Film

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

According to a report at The Verge, itself based on another at Deadline.com, Shaun of the Dead creator Simon Pegg is to co-write (along with Doug Jung) the next Star Trek film. Pegg is moreover signed on to play Scotty, as he did in both the Star Trek reboot & Into Darkness. Read more of[…]

Science By Democracy Doesn’t Work

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

StartsWithABang writes The US Senate just voted on whether climate alter is a hoax, knowing full well that debates or votes don’t alter what is or isn’t scientifically true or valid. Nevertheless, debates have always been a thing in science, & they do have their place: in raising what points would be needed to validate,[…]

IRS Warns of Downtime Risk As Congress Makes Cuts

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

dcblogs writes Successive budget cuts by Congress are forcing the Internal Revenue Service to delay system modernization that would improve its ability to prevent fraud. In telling of the problems ahead, IRS Commissioner John Koskinen almost sounded desperate in a recent memo to employees. The IRS is heavily dependent on technology, & the impact of[…]

Calls For European ISPs To Filter Content Could Be Illegal

by w00t
Categories: The News
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

jfruh writes Last week, justice ministers from EU countries called for ISPs to censor or block certain content in the “public interest.” But a legal analysis shows that such moves could actually violate EU privacy laws, since it would inevitably involve snooping on the content of Internet traffic to see what should be blocked. Read[…]

#1337day CAS Server 3.5.2 LDAP Authentication Bypass Vulnerability CVE-2015-1169 [remote #exploits #Vulnerability #0day #Exploit]

by w00t
Categories: New Vulnerabilities
Tags: No Tags
Comments: No Comments
Published on: January 22, 2015

View Source

Tags
Last referers
Online Now
Welcome , today is Sunday, January 25, 2015