Latvian hacker tweets hard on banking whistle
MS uses court order to take out Waledac botnet
>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your
Enterprise RP rollout gets an A+.
The browser engine in Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, Thunderbird before 3.0.2, and SeaMonkey before 2.0.3 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the nsBlockFrame::StealFrame function in layout/generic/nsBlockFrame.cpp, and unspecified other vectors.
drivers/connector/connector.c in the Linux kernel before 188.8.131.52 allows local users to cause a denial of service (memory consumption and system crash) by sending the kernel many NETLINK_CONNECTOR messages.
Security Weekly talks smack about security...
We love Irongeek (but not like that).
Full Show Notes
Hosts: Larry "HaxorTheMatrix" Pesce, Paul Asadoorian, John Strand, Mick Douglas, Carlos "Dark0perator" Perez
WebKit, as used in Google Chrome before 184.108.40.206 and Apple Safari, allows remote attackers to bypass intended restrictions on popup windows via crafted use of a mouse click event.
The load_elf_binary function in fs/binfmt_elf.c in the Linux kernel before 220.127.116.11 on the x86_64 platform does not ensure that the ELF interpreter is available before a call to the SET_PERSONALITY macro, which allows local users to cause a denial of service (system crash) via a 32-bit application that attempts to execute a 64-bit application and then triggers a segmentation fault, as demonstrated by amd64_killer, related to the flush_old_exec function.
The Linux kernel before 18.104.22.168 allows local users to gain privileges or cause a denial of service (panic) by calling the (1) mmap or (2) mremap function, aka the "do_mremap() mess" or "mremap/mmap mess."
Chaos. Intelligent Debate. Shmooball fights. Keg Stands. Educated Opinions.
Thats right get all of that and more when you listen to the audio from the 2010 Shmoocon Podcaster Meetup!
Here's what the press has to say:
"The security podcasters’ meet-up on Saturday night was more like a Motley Crue concert than anything else. The podcasters on stage resembled the head table at a Klingon wedding. But drunken antics conference-wide were minimal, and some decent food for thought came out of the podcasting event despite the rowdiness."
-- Bill Brenner, CSO Online
"The podcasters meetup is like watching a bunch of monkeys fn a football with add!"
You be the judge!
Google offers bounty on browser bugs