Day: October 7, 2013

Australian govt briefed on PRISM before Snowden leaks

The Australian Attorney-General’s Department briefed ministers on the NSA’s spying program known as PRISM two months before the leaks from former contractor Edward Snowden…….

Cyborg Cockroach Sparks Ethics Debate

sciencehabit writes “A do-it-yourself neuroscience experiment that allows students to create their own ‘cyborg’ insects is sparking controversy amongst scienitsts and ethicists. RoboRoach #12 is a real cockroach that a company called BackyardBrains ships to school students. The students fit the insect with a tiny backpack, which contains electrodes that feed into its antennae and…

Telstra clocks up 3.2m 4G devices

On the two-year anniversary of launching its 4G network, Telstra has said that it has now sold 3.2 million 4G devices…….

Microsoft zooms in on hybrid cloud in enterprise portfolio refresh

The chief of Microsoft’s Cloud and Enterprise business provided a strategy update at Yammer’s splashy new headquarters in San Francisco…….

Chromium To Support Wayland

sfcrazy writes “Chromium developers have started porting Chromium to X11 alternatives such as Wayland. Tiago Vignatti sent a message to the freedesktop mailing list, ‘Today we are launching publicly Ozone-Wayland, which is the implementation of Chromium’s Ozone for supporting Wayland graphics system. Different projects based on Chromium/Blink like the Chrome browser, ChromeOS, among others can…

HP LoadRunner magentproc.exe Overflow

This Metasploit module exploits a stack buffer overflow in HP LoadRunner before 11.52. The vulnerability exists on the LoadRunner Agent Process magentproc.exe. By sending a specially crafted packet, an attacker may be able to execute arbitrary code…….

FlashChat Arbitrary File Upload

This Metasploit module exploits a file upload vulnerability found in FlashChat versions 6.0.2 and 6.0.4 to 6.0.8. Attackers can abuse the upload feature in order to upload malicious PHP files without authentication which results in arbitrary remote code execution as the web server user…….

GestioIP Remote Command Execution

This Metasploit module exploits a command injection flaw to create a shell script on the filesystem and execute it. If GestioIP is configured to use no authentication, no password is required to exploit the vulnerability. Otherwise, an authenticated user is required to exploit…….

Ballmer: Microsoft’s best days are still ahead

In his final shareholder letter, Microsoft CEO Steve Ballmer expresses enthusiasm for the company’s future and reiterates its focus on being a “devices and services” business…….

Vanilla Forums Local File Inclusion

Vanilla Forums versions and below suffer from a PHP object injection vulnerability in class.utilitycontroller.php that in turn allows for local file inclusion…….