[FD] Executable installers are vulnerable^WEVIL (case 57): arbitrary code execution WITH escalation of privilege viaIntel Extreme Tuning Utility

Hi @ll, the executable installer of the Intel Extreme Tuning Utility, version 6.4.1.23 (Latest), released 5/18/2018, available from via is (SURPRISE!

[FD] DSA-2018-141: Dell EMC Unity Family Incorrect File Permissions vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 DSA-2018-141: Dell EMC Unity Family Incorrect File Permissions vulnerability Dell EMC Identifier: DSA-2018-141 CVE Identifier: CVE-2018-11064 Severity Rating: CVSS v3 Base Score: 7.8 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) Affected products: De

[FD] Integer overflow in Linux's create_elf_tables() (CVE-2018-14634)

Qualys Security Advisory Mutagen Astronomy: Integer overflow in Linux's create_elf_tables() (CVE-2018-14634) Contents Summary Analysis Exploitation

[FD] Skype Debian package: allows complete machine takeover for Microsoft

Level: Critical Description: The Skype debian packege for Skype (even when not installed via their offical repo) automatically installs apt configuration that adds Microsoft's apt repo to the system's package sources. That way, Microsoft (or anybody holding their repo's private key)

[FD] New Release: UFONet v1.1 - "Quantum Hydra!"...

Hi Community, I am glad to present a new release of this tool: - https://ufonet.03c8.net "UFONet - is a toolkit designed to launch DDoS and DoS attacks." See these links for more info: - CWE-601:Open Redirect [1] - OWASP:URL Redirector Abuse [2] - Main options are: * DDoS (b

[FD] Hardened Debian Security Focused Distribution - Feedback Wanted!

=== scope === * will be initially released for VMs (VirtualBox, Qubes, maybe KVM) * “sudo apt-get install hardened-debian-cli” will be possible on bare metal Debian hosts, in other words installations of Debian can be easily converted into Hardened Debian by installing the hardened-debian-cli or o