SUCHE
Inhaltstyp
Kategorien
-
2013
- /media/presseaussendungen/2013
markiert. Name * E-Mail * Betreff * Nachricht * Send Mag. Michael Hlava Head of Corporate and Marketing Communications +43 50550-4014 presse(at)ait.ac.at × Kontakt Formular Pflichtfelder sind mit einem * markiert [...] markiert. Name * E-Mail * Betreff * Nachricht * Send Daniel Pepl , MAS Corporate and Marketing Communications +43 50550-4040 +43 50550-4000 presse(at)ait.ac.at × Kontakt Formular Pflichtfelder sind mit [...] markiert. Name * E-Mail * Betreff * Nachricht * Send Silvia Haselhuhn , M.A. Corporate and Marketing Communications +43 50550-4831 +43 50550-2813 silvia.haselhuhn(at)ait.ac.at
-
2012
- /media/presseaussendungen/2012
markiert. Name * E-Mail * Betreff * Nachricht * Send Mag. Michael Hlava Head of Corporate and Marketing Communications +43 50550-4014 presse(at)ait.ac.at × Kontakt Formular Pflichtfelder sind mit einem * markiert [...] markiert. Name * E-Mail * Betreff * Nachricht * Send Daniel Pepl , MAS Corporate and Marketing Communications +43 50550-4040 +43 50550-4000 presse(at)ait.ac.at × Kontakt Formular Pflichtfelder sind mit [...] markiert. Name * E-Mail * Betreff * Nachricht * Send Silvia Haselhuhn , M.A. Corporate and Marketing Communications +43 50550-4831 +43 50550-2813 silvia.haselhuhn(at)ait.ac.at
-
Security 2012
- /ueber-das-ait/center/center-for-digital-safety-security/fairs-events/security/security-2012
einem * markiert. Name * E-Mail * Betreff * Nachricht * Send Mag. (FH) Michael Mürling Marketing and Communications +43 50550-4126 +43 50550-4150 michael.muerling(at)ait.ac.at
-
2011
- /media/presseaussendungen/2011
markiert. Name * E-Mail * Betreff * Nachricht * Send Mag. Michael Hlava Head of Corporate and Marketing Communications +43 50550-4014 presse(at)ait.ac.at × Kontakt Formular Pflichtfelder sind mit einem * markiert [...] markiert. Name * E-Mail * Betreff * Nachricht * Send Daniel Pepl , MAS Corporate and Marketing Communications +43 50550-4040 +43 50550-4000 presse(at)ait.ac.at × Kontakt Formular Pflichtfelder sind mit [...] markiert. Name * E-Mail * Betreff * Nachricht * Send Silvia Haselhuhn , M.A. Corporate and Marketing Communications +43 50550-4831 +43 50550-2813 silvia.haselhuhn(at)ait.ac.at
-
2010
- /media/presseaussendungen/2010
markiert. Name * E-Mail * Betreff * Nachricht * Send Mag. Michael Hlava Head of Corporate and Marketing Communications +43 50550-4014 presse(at)ait.ac.at × Kontakt Formular Pflichtfelder sind mit einem * markiert [...] markiert. Name * E-Mail * Betreff * Nachricht * Send Daniel Pepl , MAS Corporate and Marketing Communications +43 50550-4040 +43 50550-4000 presse(at)ait.ac.at × Kontakt Formular Pflichtfelder sind mit [...] markiert. Name * E-Mail * Betreff * Nachricht * Send Silvia Haselhuhn , M.A. Corporate and Marketing Communications +43 50550-4831 +43 50550-2813 silvia.haselhuhn(at)ait.ac.at
-
Security 2010
- /ueber-das-ait/center/center-for-digital-safety-security/fairs-events/security/security-2010
einem * markiert. Name * E-Mail * Betreff * Nachricht * Send Mag. (FH) Michael Mürling Marketing and Communications +43 50550-4126 +43 50550-4150 michael.muerling(at)ait.ac.at
-
2009
- /media/presseaussendungen/2009
markiert. Name * E-Mail * Betreff * Nachricht * Send Mag. Michael Hlava Head of Corporate and Marketing Communications +43 50550-4014 presse(at)ait.ac.at × Kontakt Formular Pflichtfelder sind mit einem * markiert [...] markiert. Name * E-Mail * Betreff * Nachricht * Send Daniel Pepl , MAS Corporate and Marketing Communications +43 50550-4040 +43 50550-4000 presse(at)ait.ac.at × Kontakt Formular Pflichtfelder sind mit [...] markiert. Name * E-Mail * Betreff * Nachricht * Send Silvia Haselhuhn , M.A. Corporate and Marketing Communications +43 50550-4831 +43 50550-2813 silvia.haselhuhn(at)ait.ac.at
-
ERIgrid 2
- /themen/power-system-digitalisation/projekte/erigrid-2
ERIgrid 2 European Research Infrastructure supporting Smart Grid and Smart Energy Systems Research , Technology Development , Validation and Roll Out – Second Edition Die aktuelle Transformation und Digi [...] University of Denmark (DTU) Hellenic Electricity Distribution Network Operator (HED) Institute of Communication and Computer Systems – National Technical University of Athens (ICCS) Joint Research Center of the [...] Commissariat à l’énergie atomique et aux énergies alternatives (CEA) Centre for Renewable Energy Sources and Saving (CRES) European Distributed Energy Resources Laboratories e.V. (DERlab) KEMA Labs Technical
-
AIT-SA-20210215-04-forkcms
- /themen/cyber-security/pentesting/security-advisories/ait-sa-20210215-04
” permissions: For demonstration purposes we created a proof of concept exploit that deletes files and directories from the webserver. With a little bit more effort an attacker might also find a payload [...] Versions All versions including 5.8.1 are affected. Tested Versions ForkCMS 5.8.1 (with Debian 10 and PHP 7.3.14-1) Impact An authenticated user with minimal privileges could execute malicious code. Mitigation [...] Name * E-Mail * Betreff * Nachricht * Send Wolfgang Hotwagner Research Engineer / Security & Communication Technologies +43 664 88335483 +43 50550-4150 wolfgang.hotwagner(at)ait.ac.at
-
AIT-SA-20210215-02-qcubed
- /themen/cyber-security/pentesting/security-advisories/ait-sa-20210215-02
were able to write proof-of concept exploit for mysql and postgres. Unfortunately with mysql we were not able to use a stacked-queries-payload and we had to exploit this vulnerability with a timebased [...] ExplainStatement is a method of the specific database-provider. We tested the sql-injection with postgres and mysql(i). This could be exploited with both databases. Let’s see how it looks in the postgres-provider: [...] Name * E-Mail * Betreff * Nachricht * Send Wolfgang Hotwagner Research Engineer / Security & Communication Technologies +43 664 88335483 +43 50550-4150 wolfgang.hotwagner(at)ait.ac.at
-
AIT-SA-20220208-01
- /themen/cyber-security/pentesting/security-advisories/ait-sa-20220208-01
the POST parameters min_date and max_date are insufficiently checked and sanitized. An attacker can use these parameters to send payloads for sql injections. In lines 74 and 75 in the site/vote.php code [...] = '$polling_id' AND sa.published = '1' WHERE sv.`id_answer` = sa.id"; //if dates are sent, add them to query if ($min_date_sended != '' && $max_date_sended != '') $query_toal .= " AND sv.`date` >= '$m [...] Public Disclosure We would like to note that the communication about this issue was weak. The contact-form of the maintainer of sexy_polling was broken and there was no other contact published. The Joomla
-
AIT-SA-20210215-01-qcubed
- /themen/cyber-security/pentesting/security-advisories/ait-sa-20210215-01
(all versions including 3.1.1) unserializes the untrusted data of the POST-variable "strProfileData" and allows an unauthenticated attacker to execute code via a crafted POST request. Vulnerable Versions [...] Name * E-Mail * Betreff * Nachricht * Send Wolfgang Hotwagner Research Engineer / Security & Communication Technologies +43 664 88335483 +43 50550-4150 wolfgang.hotwagner(at)ait.ac.at
-
AIT-SA-20190930-01
- /themen/cyber-security/pentesting/security-advisories/ait-sa-20190930-01
a shell as user “git”, can elevate his privileges to “root”. After downloading and compiling, the exploit gets executed and waits until the next daily run of logrotate. If the rotation of the log file succeeds [...] Target : GitLab Omnibus Vendor: GitLab Version: 7.4 through 12.2.1 Fixed in Version: 12.2.3, 12.1.8 and 12.0.8 CVE: CVE-2019-15741 Accessibility : Local Severity: Low Author: Wolfgang Hotwagner (AIT Austrian [...] Austrian Institute of Technology ) Summary Omnibus GitLab is a way to package different services and tools required to run GitLab, so that most users can install it without laborious configuration. Vulnerability
-
AIT-SA-20200301-01
- /themen/cyber-security/pentesting/security-advisories/ait-sa-20200301-01
If an attacker puts "../../../../../../../../etc/passwd" into $_POST['creativecontactform_upload'], and enables "Send me a copy", the contact-form would send him the content of /etc/passwd via email . Note: [...] Name * E-Mail * Betreff * Nachricht * Send Wolfgang Hotwagner Research Engineer / Security & Communication Technologies +43 664 88335483 +43 50550-4150 wolfgang.hotwagner(at)ait.ac.at
-
AIT-SA-20191112-01
- /themen/cyber-security/pentesting/security-advisories/ait-sa-20191112-01
tion.d). logrotate will place the compressed files AS ROOT into /etc/bash_completition.d and set the owner and group to "radiusd.radiusd". An attacker could simply place a reverse-shell into this file [...] shell as user “radiusd”, can elevate his privileges to “root”. After downloading and compiling, the exploit gets executed and waits until the next daily run of logrotate. If the rotation of the log file succeeds [...] FreeRadius Vendor: FreeRadius Version: all versions including 3.0.19 Fixed in Version: 12.2.3, 12.1.8 and 12.0.8 CVE: CVE-2019-10143 Accessibility : Local Severity: Low Author: Wolfgang Hotwagner (AIT Austrian
-
AIT-SA-20191129-01
- /themen/cyber-security/pentesting/security-advisories/ait-sa-20191129-01
Critical Author: Wolfgang Hotwagner (AIT Austrian Institute of Technology ) Summary OkayCMS is a simple and functional content managment system for an online store. Vulnerability Description An unauthenticated [...] Versions OkayCMS-Lite 2.3.4 Impact An unauthenticated attacker could upload a webshell to the server and execute commands remotely. Mitigation At the moment of this publication the vendor has only patched [...] Name * E-Mail * Betreff * Nachricht * Send Wolfgang Hotwagner Research Engineer / Security & Communication Technologies +43 664 88335483 +43 50550-4150 wolfgang.hotwagner(at)ait.ac.at
-
Lösungen für die Industrie / Intelligente Produktion
- /media/ait-issues/loesungen-fuer-die-industrie-/-intelligente-produktion
& Security aufgebaut. Das Center ist das weltweit erste IAEA Collaborating Centre für Information and Computer Security for Nuclear Security und führt den Vorsitz im nationalen Gaia-X Hub Austria , einer [...] industrielle Produktionsprozesse Umstellung von Kabel- auf Funkverbindungen mittels 5G Next Gen 6G communication systems Cooperative Digital Technologies Dependable Systems Engineering New Sensor Technologies
-
Chris Noelle 2018 - 2019
- /media/arttec-at-ait/chris-noelle-2018-2019
Schaffen und Gestalten von Kunst verstehen, gar brillant ergänzen“, sagt Head of Corporate and Marketing Communications Michael H. Hlava. Unser besonderer Dank gilt jenen Kolleginnen und Kollegen in den Centern [...] markiert. Name * E-Mail * Betreff * Nachricht * Send Mag. Michael Hlava Head of Corporate and Marketing Communications +43 50550-4014 +43 50550-4000 presse(at)ait.ac.at
-
Judith Fegerl 2019 - 2021
- /media/judith-fegerl-2019-2021
markiert. Name * E-Mail * Betreff * Nachricht * Send Mag. Michael Hlava Head of Corporate and Marketing Communications +43 50550-4014 +43 50550-4000 presse(at)ait.ac.at
-
VCSW19 - Video Galerie
- /ueber-das-ait/center/center-for-digital-safety-security/fairs-events/vienna-cyber-security-week-2019/vcsw19-video-galerie
together national and international stakeholders in critical infrastructure and in cyber security for conducting information exchange, confidence building and enhancing awareness of the risks and state of practice [...] einem * markiert. Name * E-Mail * Betreff * Nachricht * Send Mag. (FH) Michael Mürling Marketing and Communications +43 50550-4126 +43 50550-4150 michael.muerling(at)ait.ac.at [...] security worldwide, identify trends, and to provide a global forum for discussion. The following videos give impressions on the diversity of the themathic thrusts and tentative sessions. VCSW19 - Announcement