Highest Voted 'vulnerabilities' Questions

161

votes

6 answers

Disable Java Plugin in Google Chrome?

This is the second time I've had a drive-by executable installed on my machine using the following: Google Chrome 6 (latest) Windows 7, UAC on This happened while I was browsing for images to add to a gaming.se post; one of the sites I visited (to…

google-chrome plugins vulnerabilities

asked Oct 20 '10 at 18:46

Jeff Atwood

24,402

36

votes

9 answers

Password Cracking Windows Accounts

At work we have laptops with encrypted harddrives. Most developers here (on occasion I have been guilty of it too) leave their laptops in hibernate mode when they take them home at night. Obviously, Windows (i.e. there is a program running in the…

passwords vulnerabilities

asked Oct 01 '08 at 12:54

kemiller2002

461

13

votes

3 answers

GHOST glibc vulnerability (CVE-2015-0235): is it required restart a server after glibc upgrade?

I want to update glibc according to RedHat: https://rhn.redhat.com/errata/RHSA-2015-0090.html Is it required restart a server after the glibc upgrade?

vulnerabilities ghost glibc

asked Jan 28 '15 at 14:24

Michael

251
2
5

13

votes

2 answers

How does Kerberos' preauthentication increase security?

This FAQ entry (and the RFC itself) states that pre-authentication addresses a weakness in initial implementations of Kerberos that made it vulnerable to offline dictionary attacks. The FAQ state: The simplest form of preauthentication is known as…

kerberos vulnerabilities

asked Oct 16 '10 at 03:33

Aidan Steele

413

11

votes

3 answers

Windows XP Mode Vulnerabilities as of April 8th, 2014

EDIT I appreciate the answers I've gotten so far, but I might not have worded the question clearly enough. Is the Windows 7 side of the machine running in XP Mode exposed to any dangers it would not be if it were not running a VM in XP Mode? And…

windows-xp-mode vulnerabilities

asked Oct 28 '13 at 19:02

tmoore82

243

10

votes

2 answers

Why is this NMAP scan to a remote host showing me no ports open when the ports REALLY are open?

telnet 99.99.99.99 33491 Trying 99.99.99.99... Connected to 99.99.99.99.. Escape character is '^]' ^] telnet> close Connection closed. As you can see, the above telnet command shows port 33491 is open. Running NMAP with -PN on that same IP and port…

port nmap vulnerabilities

asked Oct 19 '11 at 16:12

Tom G11

405
3
9
17

3

votes

4 answers

How risky is it too offset Windows Update for a few days?

After Patch Tuesday, zero days become public vulnerabilities and can be taken advantage of by the crowd. Therefore it becomes doubly important to patch immediately and the obnoxious automatic Windows update reboot notification becomes…

vulnerabilities

asked Aug 13 '13 at 20:15

Wuschelbeutel Kartoffelhuhn

1,546
9
32
48

3

votes

1 answer

Apparently random encoded URL requests

I've been receiving tons of weirdly encoded strings as URL requests on my webserver. I tried decoding them but wasn't able to. Here are a few samples: 184.146.170.127 - - [10/Sep/2019:17:22:54 +0000]…

webserver logging vulnerabilities

asked Sep 10 '19 at 17:35

Guilherme Caminha

133

3

votes

1 answer

vim/neovim reverse shell vulnerability - why does this work?

Warning This question includes code from the original description of the vulnerability and proof of concept file. It will in the worst case open a reverse shell that may grant privileges to other users and provide a shell interface to outside…

bash vim vulnerabilities

asked Jun 13 '19 at 12:36

0range

820

3

votes

0 answers

debsecan Fix CVE on debian

I just installed debsecan on Debian 8.1 to view the vulnerabilities that I have, and there were quite a few. Searching the web I see that most of them have a fix but I don't manage to figure out how to apply a patch for them. Here is a mere example…

patch vulnerabilities

asked May 10 '16 at 18:38

El_Feto

31

2

votes

1 answer

Remotely Detect Windows Server Service Pack Level

One of our web servers just failed PCI-DSS compliance because the vuln. scan detected the OS was Windows Server 2003 Service Pack 1 (obviously very outdated!). My question is how did the vuln scan detect this as I can't seem to find a way to source…

windows-server-2003 vulnerabilities

asked May 08 '13 at 21:17

SnakeDoc

693

2

votes

2 answers

A possible case of hacked email account. What kind of an attack is this?

I own a Yahoo mail account. I am using this account for sending resumes and receive notifications from various job portals. But yesterday, I found that some 10-15 mails had been sent to random addresses from my account. Most of them had this…

vulnerabilities

asked Dec 16 '12 at 04:59

Mono Jamoon

150

1

vote

1 answer

chrome copy paste of URL with german umlaut changes characters

I am using chrome 41 on Windows 7 (classic theme). In chrome i have this url http://www.faszinationtür.de/images/PDFs/prospekt49.pdf open and copied it to the clipboard the result is the following…

google-chrome vulnerabilities

asked Mar 31 '15 at 21:52

chromeuser

13

1

vote

3 answers

How can Greenshot (or Imgur) know my video file name via screenshot?

I took some video from Internet, open it with MPC-HC, then take screenshot with Greenshot, then choose upload to Imgur. It gave me the link https://i.sstatic.net/G4ccH.png Then I change this to https://i.sstatic.net/UhAPK.jpg in order to open framed…

privacy vulnerabilities imgur greenshot

asked Mar 17 '15 at 08:31

Dims

13,414

1

vote

0 answers

How to make Pixaria work without ini_set()?

I am working on a server which has Pixaria installed. After wasting (yes, completely wasted) hours trying to find out why it showed a blank page, I finally decided to try to enable ini_set() in php.ini and what do you know, voila it showed up (the…

php webserver vulnerabilities

asked Oct 30 '14 at 02:14

superuser

3,574
8
29
47

Questions tagged [vulnerabilities]