Aggregator
【安全圈】GitHub 上有 3000 个“幽灵账户”传播恶意软件
1 year 9 months ago
【安全圈】抢票软件不到1秒钟就能抢到票,黑客与“黄牛”被判刑
1 year 9 months ago
【安全圈】快手发布通报:一员工泄露数据严重违纪 解除劳动合同
1 year 9 months ago
CVE-2008-5897 | CodeAvalanche FreeWallpaper access control (EDB-7470 / XFDB-47352)
1 year 9 months ago
A vulnerability was found in CodeAvalanche FreeWallpaper. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to improper access controls.
This vulnerability is handled as CVE-2008-5897. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
【新课】FART 脱壳王:突破加壳APP的层层保护
1 year 9 months ago
ART底层源码逻辑大揭秘,打造安卓逆向高手
逆向进入内核时代之APatch源码学习
1 year 9 months ago
看雪论坛作者ID:周晓梦Chew
Cracking an old ZIP file to help open source the ANC's "Operation Vula" secret crypto code
1 year 9 months ago
CVE-2017-13019 | Apple macOS up to 10.13.1 tcpdump memory corruption (HT208221 / Nessus ID 100472)
1 year 9 months ago
A vulnerability has been found in Apple macOS up to 10.13.1 and classified as very critical. This vulnerability affects unknown code of the component tcpdump. The manipulation leads to memory corruption.
This vulnerability was named CVE-2017-13019. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Новый мост между математическими мирами: как одна таблица может перевернуть математический мир
1 year 9 months ago
Симплектическая геометрия раскрывает старые тайны теории чисел.
CVE-2013-1600 | D-Link IP Cameras upnp/asf-mp4.asf information disclosure (CORE-2013-0303 / EDB-25138)
1 year 9 months ago
A vulnerability has been found in D-Link IP Cameras and classified as problematic. This vulnerability affects unknown code of the file upnp/asf-mp4.asf. The manipulation leads to information disclosure.
This vulnerability was named CVE-2013-1600. The attack can be initiated remotely. Furthermore, there is an exploit available.
The real existence of this vulnerability is still doubted at the moment.
It is recommended to apply a patch to fix this issue.
vuldb.com
CVE-2017-13019 | tcpdump up to 4.9.1 PGM Parser print-pgm.c pgm_print memory corruption (Nessus ID 103257 / ID 370625)
1 year 9 months ago
A vulnerability, which was classified as critical, has been found in tcpdump up to 4.9.1. Affected by this issue is the function pgm_print of the file print-pgm.c of the component PGM Parser. The manipulation leads to memory corruption.
This vulnerability is handled as CVE-2017-13019. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2014-5963 | Corntree Halieutics 21.40.5 X.509 Certificate cryptographic issues (VU#582497)
1 year 9 months ago
A vulnerability, which was classified as critical, has been found in Corntree Halieutics 21.40.5. This issue affects some unknown processing of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues.
The identification of this vulnerability is CVE-2014-5963. The attack can only be done within the local network. There is no exploit available.
vuldb.com
CVE-2006-2731 | Enigma Haber admin/reklam_detay.asp \bid\ sql injection (EDB-1840 / XFDB-26837)
1 year 9 months ago
A vulnerability was found in Enigma Haber. It has been rated as critical. This issue affects some unknown processing of the file admin/reklam_detay.asp. The manipulation of the argument \bid\ leads to sql injection.
The identification of this vulnerability is CVE-2006-2731. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
罗永浩评微信苹果之争:微信肯定不怕苹果;100万人排队预定华为三折叠手机;英伟达市值蒸发4000亿美元 | 极客早知道
1 year 9 months ago
华为三折叠开启预订:超 100 万人预约9 月 7 日午间,备受期待的华为三折叠正式开启预订。海报还正式公布了华为三折叠的外观,采用独特镜头纹理,以及高辨识度的小金标。据悉,这款产品将于 9 月 10
CVE-2010-3039 | Cisco Unified Communications Manager 7.1 os command injection (EDB-34954 / BID-44672)
1 year 9 months ago
A vulnerability has been found in Cisco Unified Communications Manager 7.1 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to os command injection.
This vulnerability is known as CVE-2010-3039. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.
It is recommended to apply a patch to fix this issue.
vuldb.com
CVE-2007-2199 | PhpConcept Library lib/pcltar.lib.php g_pcltar_lib_dir code injection (EDB-3781 / XFDB-33837)
1 year 9 months ago
A vulnerability has been found in PhpConcept Library and classified as critical. This vulnerability affects unknown code of the file lib/pcltar.lib.php. The manipulation of the argument g_pcltar_lib_dir leads to code injection.
This vulnerability was named CVE-2007-2199. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2005-0994 | Early Impact ProductCart 2.7 advsearch_h.asp offset sql injection (EDB-23703 / Nessus ID 17971)
1 year 9 months ago
A vulnerability was found in Early Impact ProductCart 2.7. It has been classified as critical. Affected is an unknown function of the file advsearch_h.asp. The manipulation of the argument offset leads to sql injection.
This vulnerability is traded as CVE-2005-0994. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
Week in review: Vulnerability allows Yubico security keys cloning, Patch Tuesday forecast
1 year 9 months ago
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Vulnerability allows Yubico security keys to be cloned Researchers have unearthed a cryptographic vulnerability in popular Yubico (FIDO) hardware security keys and modules that may allow attackers to clone the devices. September 2024 Patch Tuesday forecast: Downgrade is the new exploit Microsoft confirmed several reported issues throughout the month about the August updates. They added a comment to KB5041578 for … More →
The post Week in review: Vulnerability allows Yubico security keys cloning, Patch Tuesday forecast appeared first on Help Net Security.
Help Net Security
Run lguest on Linux kernel 4.4
1 year 9 months ago
2024-09-08 Background Recently, I am preparing to study t