Since its creation, the Amazon Appstore stood apart, banned from being offered in the official store for Android apps, Google Play, until now... sort of. When Amazon recently updated its main Android app, it got a new "Apps & Games" department that... [...]
Sat, Oct 25, 2014
Source: Engadget
Concerned there's not enough to watch on Netflix, or that the big studios and networks might hold stuff back for their own streaming services? Rest easy, the video streamer has plans for a slew of exclusive content over the next few years, and this... [...]
Fri, Oct 24, 2014
Source: Engadget
ejabberd before 2.1.13 does not enforce the starttls_required setting when compression is used, which causes clients to establish connections without encryption. [...]
Fri, Oct 24, 2014
Source: National Vulnerabilities Database
Electric Cloud ElectricCommander before 4.2.6 and 5.x before 5.0.3 uses world-writable permissions for (1) eccert.pl and (2) ecconfigure.pl, which allows local users to execute arbitrary Perl code by modifying these files. [...]
Fri, Oct 24, 2014
Source: National Vulnerabilities Database
Certificates.java in Not Yet Commons SSL before 0.3.15 does not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate. [...]
Fri, Oct 24, 2014
Source: National Vulnerabilities Database
WP-Ban plugin before 1.6.4 for WordPress, when running in certain configurations, allows remote attackers to bypass the IP blacklist via a crafted X-Forwarded-For header. [...]
Fri, Oct 24, 2014
Source: National Vulnerabilities Database
Stack-based buffer overflow in CPUMiner before 2.4.1 allows remote attackers to have an unspecified impact by sending a mining.subscribe response with a large nonce2 length, then triggering the overflow with a mining.notify request. [...]
Fri, Oct 24, 2014
Source: National Vulnerabilities Database
Cross-site scripting (XSS) vulnerability in admincp/apilog.php in vBulletin 4.4.2 and earlier, and 5.0.x through 5.0.5 allows remote authenticated users to inject arbitrary web script or HTML via a crafted XMLRPC API request, as demonstrated using the client name. [...]
Fri, Oct 24, 2014
Source: National Vulnerabilities Database
It's Friday, ya'll. But before you checkout for the weekend, check out all our news highlights from the last 24 hours, including our hands-on with the Nexus 9, a new high-altitude jump record, the best gaming mice you can buy right now, and more. ... [...]
Fri, Oct 24, 2014
Source: Engadget
Google's adding another member to its household family that includes Nest and Dropcam, and this time its home automation outfit Revolv. The firm's website lists it as "a Nest company" now, and goes on to to assure existing customers that they're... [...]
Fri, Oct 24, 2014
Source: Engadget
Well, we guess congratulations are in order. According to Re/code, Sundar Pichai, the senior vice president at Google who used to just be in charge of the Chrome, Android, and web apps teams now basically has control of almost every other Google... [...]
Fri, Oct 24, 2014
Source: Engadget
The developers at Harmonix Music Systems know a thing or two about music. And we'd hope so, it is in the company name, after all. The studio's latest Kinect game, Fantasia: Music Evolved, is quite a bit different than anything they've done... [...]
Fri, Oct 24, 2014
Source: Engadget
Google's Nest Labs acquired Revolv, a maker of Linux-based home automation devices, and announced five new Nest-compatible devices. including the Pebble. After Google acquired Nest Labs in January $3.2 billion, placing a stake in the fast-growing home automation business, Nest acquired home surveillance camera maker Dropcam in June for $555... [...]
Fri, Oct 24, 2014
Source: Linux
Quartz: OpenSSL developers met in person for the first time ever at LinuxCon Europe 2014. [...]
Fri, Oct 24, 2014
Source: Linux
The jury's still out on Google's new mobile approach to email, but that hasn't stopped people from going a little batty over getting invited to use it (see also: Gmail, Google Wave). In case you were feeling a little weird about begging Google for an... [...]
Fri, Oct 24, 2014
Source: Engadget
With the exception of maybe old Andy Taylor, most police officers in the United States carry a firearm as part of their standard equipment. Wouldn't it be nice to know when those sidearms are drawn, and why? A Silicon Valley startup called Yardarm... [...]
Fri, Oct 24, 2014
Source: Engadget
Apple's iPad Air 2 and Mini 3 launched with a very, very pleasant surprise: If you splurged on an LTE model, you could choose whether you wanted to jump on Sprint's, T-Mobile's or AT&T's networks (along with EE's if you're in the UK), with nary a SIM... [...]
Fri, Oct 24, 2014
Source: Engadget
Relations are a very important part of what Juju does. Automating installation is a solved problem, but the ability for Juju Charms to connect services together via relationships is one of our most powerful features. [...]
Fri, Oct 24, 2014
Source: Ubuntu News
The Nexus 9 wasn't designed to be an iPad killer; it was designed to inspire Google's Android partners to create one instead. Though you'd be forgiven for thinking otherwise: It was announced one day before the iPad Air 2 and mini 3, comes with a... [...]
Fri, Oct 24, 2014
Source: Engadget
Move over Felix Baumgartner (pictured above) -- just two years after the daredevil's record setting 128,000 foot Red Bull Stratos space jump, Google VP Alan Eustace has topped it. The New York Times reports Eustace rode a balloon 135,908 feet above... [...]
Fri, Oct 24, 2014
Source: Engadget