Week 36 In Review – 2016

Tools

  • WiFi-Pumpkin – github.com
    Framework for Rogue Wi-Fi Access Point Attack

Vulnerabilities

  • Patched ColdFusion Flaw Exposes Applications to Attack – threatpost.com
    Golunski said that ColdFusion 10 and 11 suffered from an XML External Entities (XXE) injection vulnerability, CVE-2016-4264, when processing certain types of Office Open XML documents. These functions, Golunski said, are used by web applications built in ColdFusion to open Word, Excel, PowerPoint and other document types that use XML structure.

Other News

  • DoD Taps DEF CON Hacker Traits For Cybersecurity Training Program – www.darkreading.com
    The DEF CON research is part of DiGiovanni’s mission to develop a state-of-the-art cyber training program that ultimately helps staff the military as well as private industry with the best possible cybersecurity experts and to fill the infamous cybersecurity skills gap today.

 

 

 

 

 

 

 

2017-03-12T17:39:11-07:00 September 4th, 2016|Security Tools, Security Vulnerabilities, Site News, Week in Review|1 Comment

One Comment

  1. Week 36 In Review – 2016 – sec.uno September 6, 2016 at 4:13 am

    […] post Week 36 In Review – 2016 appeared first on Infosec […]

Leave A Comment