Tenable Network Security Podcast Episode 156 - "WordPress Vulnerabilities, Configuration Auditing Benefits"
Announcements
- U.S. Navy sees 110K cyber attacks every hour: Tenable Network Security’s take on White House EO on cybersecurity
- We're hiring! - Visit the Tenable website for more information about open positions.
- Check out our video channel on YouTube which contains new Nessus and SecurityCenter tutorials.
- Tenable Tweets - You can find us on Twitter at http://twitter.com/tenablesecurity where we make product and company announcements, provide Nessus plugin statistics, and more!
- Want to ask questions about Nessus, SecurityCenter, LCE, and PVS and get answers from the experts at Tenable? Join Tenable's Discussion Forum for custom scripts, announcements, and more!
- You can subscribe to the Tenable Network Security Podcast on iTunes!
New & Notable Plugins
Nessus
- Barracuda Appliances Default Credentials
- GRAND Flash Album Gallery Plugin for WordPress f Parameter Traversal Arbitrary Directory Enumeration
- Default Password (raspberry) for 'pi' Account
- Default Password (openelec) for 'root' Account
- Default Password (raspi) for 'root' Account
- MySQL Protocol Remote User Enumeration
- Uploader Plugin for WordPress File Upload Arbitrary Code Execution
- Apple iOS < 6.1 Multiple Vulnerabilities
- ViArt Shop sips_response.php DATA Parameter Request Parsing Remote Shell Command Execution
- Patch Management Windows Auditing Conflicts
- Patch Management Auditing Satisfied
- Schneider Electric Interactive Graphical SCADA System dc.exe Unspecified Buffer Overflow
- Schneider Electric Interactive Graphical SCADA System (IGSS) Unsupported Version
- Opera < 12.13 Multiple Vulnerabilities
- Wireshark 1.6.x < 1.6.13 Multiple Vulnerabilities
- Wireshark 1.8.x < 1.8.5 Multiple Vulnerabilities
- Cisco VPN Client Unsupported
- Joomla! 2.5.x < 2.5.7 Multiple XSS
Passive Vulnerability Scanner
Nessus Configuration and Compliance Checks
Nessus ProfessionalFeed and SecurityCenter customers can download compliance checks from the Tenable Support Portal.
Stories
- HP Communities - Twitter attacked - Catches, stops attack-in-progress | Enterprise Business Community
- 86,800 network printers open to the whole internet – is one of them yours? | Naked Security
- The Physical Security Factor With Cloud Providers
- Android malware uses your PC's own mic to record you
- Oracle blocks security hole with quick, hot 'n' premature Java update
Related Articles
Tenable Network Security Podcast Episode 198 - "PCI Discussion Featuring Jeffrey Man"
February 13, 2014<p></p>
Cybersecurity Snapshot: Prompt Injection and Data Disclosure Top OWASP’s List of Cyber Risks for GenAI LLM Apps
November 22, 2024Don’t miss OWASP’s update to its “Top 10 Risks for LLMs” list. Plus, the ranking of the most harmful software weaknesses is out. Meanwhile, critical infrastructure orgs have a new framework for using AI securely. And get the latest on the BianLian ransomware gang and on the challenges of protecting water and transportation systems against cyberattacks.
Active Directory Under Attack: Five Eyes Guidance Targets Crucial Security Gaps
November 21, 2024A landmark global report from cybersecurity agencies emphasizes 17 attack techniques against Microsoft Active Directory and cautions organizations to step up protections. In the first of our two-part series, we offer five steps you can take today to shore up your AD defenses.
Five Cyber Agencies Sound Alarm About Active Directory Attacks: Beyond the Basics
November 21, 2024A landmark global report emphasizes 17 attack techniques against Microsoft Active Directory and cautions organizations to step up protections. In the second of our two-part series, we take you beyond the basics to highlight three key areas to focus on.
- Podcast