Vulnerabilities / Threats

6/8/2018
01:00 PM
John Klossner
John Klossner
Cartoon Contest
50%
50%

Cartoon: Security Awareness

John Klossner has been drawing technology cartoons for more than 15 years. His work regularly appears in Computerworld and Federal Computer Week. His illustrations and cartoons have also been published in The New Yorker, Barron's, and The Wall Street Journal. Web site: ... View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Page 1 / 2   >   >>
FKREITZBERG980
50%
50%
FKREITZBERG980,
User Rank: Strategist
6/29/2018 | 7:01:15 PM
Wall
No, I am not over reacting to the plans for Hoteling/Hot Desking.
ianrod
50%
50%
ianrod,
User Rank: Strategist
6/29/2018 | 9:45:58 AM
Cartoon: Security Awareness
The brings a whole new meaning to putting up a Pay Wall.
EJ Carroll
100%
0%
EJ Carroll,
User Rank: Apprentice
6/29/2018 | 9:43:12 AM
Security Awareness
"I don't want just another webstore.  I want a brick and mortar store, too!"
FKREITZBERG980
50%
50%
FKREITZBERG980,
User Rank: Strategist
6/27/2018 | 11:06:15 PM
Wall
Why yes I do find your comments offensive, why do you ask?
Joe Stanganelli
0%
100%
Joe Stanganelli,
User Rank: Ninja
6/25/2018 | 11:30:27 PM
Re: Security Awareness
Accessibility be darned. As it goes in Mending Wall, good fences make good neighbors.

acampbell448
0%
100%
acampbell448,
User Rank: Ninja
6/21/2018 | 10:41:39 AM
Full load
They told me I was one brick short of a load so now I have plenty of bricks!
Ratteau
50%
50%
Ratteau,
User Rank: Strategist
6/20/2018 | 10:53:59 AM
My dear Fortunado...
In pace requiescat
Julius-1
50%
50%
Julius-1,
User Rank: Strategist
6/19/2018 | 11:04:10 AM
Nothing Personal
Nothing personal, I just don't like people.
ianrod
100%
0%
ianrod,
User Rank: Strategist
6/14/2018 | 12:19:12 PM
Cartoon Comment
IT'S A BEAUTIFUL WALL!  AND MEXICO WILL PAY FOR IT!
ebyjeeby
0%
100%
ebyjeeby,
User Rank: Strategist
6/12/2018 | 5:34:17 PM
caption
I'm practicing a new skill in case I'm laid off by AI
Page 1 / 2   >   >>
Veterans Find New Roles in Enterprise Cybersecurity
Kelly Sheridan, Staff Editor, Dark Reading,  11/12/2018
Understanding Evil Twin AP Attacks and How to Prevent Them
Ryan Orsi, Director of Product Management for Wi-Fi at WatchGuard Technologies,  11/14/2018
7 Free (or Cheap) Ways to Increase Your Cybersecurity Knowledge
Curtis Franklin Jr., Senior Editor at Dark Reading,  11/15/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Online Malware and Threats: A Profile of Today's Security Posture
Online Malware and Threats: A Profile of Today's Security Posture
This report offers insight on how security professionals plan to invest in cybersecurity, and how they are prioritizing their resources. Find out what your peers have planned today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2008-7320
PUBLISHED: 2018-11-18
** DISPUTED ** GNOME Seahorse through 3.30 allows physically proximate attackers to read plaintext passwords by using the quickAllow dialog at an unattended workstation, if the keyring is unlocked. NOTE: this is disputed by a software maintainer because the behavior represents a design decision.
CVE-2018-19358
PUBLISHED: 2018-11-18
GNOME Keyring through 3.28.2 allows local users to retrieve login credentials via a Secret Service API call and the D-Bus interface if the keyring is unlocked, a similar issue to CVE-2008-7320. One perspective is that this occurs because available D-Bus protection mechanisms (involving the busconfig...
CVE-2018-19351
PUBLISHED: 2018-11-18
Jupyter Notebook before 5.7.1 allows XSS via an untrusted notebook because nbconvert responses are considered to have the same origin as the notebook server. In other words, nbconvert endpoints can execute JavaScript with access to the server API. In notebook/nbconvert/handlers.py, NbconvertFileHand...
CVE-2018-19352
PUBLISHED: 2018-11-18
Jupyter Notebook before 5.7.2 allows XSS via a crafted directory name because notebook/static/tree/js/notebooklist.js handles certain URLs unsafely.
CVE-2018-19353
PUBLISHED: 2018-11-18
The ansilove_ansi function in loaders/ansi.c in libansilove 1.0.0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file.