Vulnerabilities in software from Schneider Electric
I found multiple vulnerabilities in software from Schneider Electric, used to monitor industrial monitoring devices. It reveals a very poor security design. The editor was informed and I am waiting for...
View ArticleCVE-2012-1990: Kerweb/Kerwin XSS vulnerabilities
Severity: Moderate Vendor: Schneider Electrics Versions Affected: Kerweb < 3.0.1 Kerwin < 6.0.1 Description: Input fields used for searching and displaying content are not filtered properly....
View ArticleCVE-2009-3555: Safari not yet patched ???
The other day I was shocked to find this entry in my Apache logs: [error] SSL Library Error: 336068931 error:14080143:SSL routines:SSL3_ACCEPT:unsafe legacy renegotiation disabled It occurs appears...
View ArticleReview of McAfee Application Control (ex-SolidCore): the ultimate solution to...
What is McAfee Application Control I had the opportunity to review this security software, and I want to share here the results of my tests. McAfee bought the SolidCore solution and renamed it into...
View Article