Aggregator

PLAYFULGHOST backdoor supports multiple information stealing features

PLAYFULGHOST is a new malware family with capabilities including keylogging, screen and audio capture, remote shell access, and file transfer/execution. Google researchers analyzed a new malware family called PLAYFULGHOST that supports multiple features, including keylogging, screen and audio capture, remote shell, and file transfer/execution. The PLAYFULGHOST backdoor shares functionality with Gh0st RAT whose source code was publicly released in […]

A vulnerability, which was classified as critical, has been found in Apple Mac OS X up to 10.6.5. Affected by this issue is some unknown functionality of the component Keychain. The manipulation leads to improper input validation. This vulnerability is handled as CVE-2011-3422. The attack may be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in Apple iOS up to 5.1.1. This affects an unknown part of the component OpenGL. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2011-3457. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Apple Mac OS X up to 10.7.1. Affected is an unknown function. The manipulation leads to numeric error. This vulnerability is traded as CVE-2011-3453. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Rockwellautomation RSLogix 19 and classified as problematic. Affected by this issue is some unknown functionality in the library RnaUtility.dll of the file RsvcHost.exe of the component Utility. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2011-3489. The attack may be launched remotely. There is no exploit available.

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

01.NET内网安全攻防报刊小报童电子报刊【.NET内网安全攻防】也正式上线了，引入小报童也是为了弥补知识星球对于轻量级阅读支持的不足，为用户读者提供更佳的阅读体验。如果您对阅读体验的需求比较高，那么

此文所提供的信息只为网络安全人员对自己所负责的网站、服务器等进行检测或维护参考，未经授权请勿利用文章中的技术资料对任何计算机系统进行入侵操作。利用此文所提供的信息而造成的直接或间接后果和损失，均由使用

A vulnerability classified as problematic was found in Rhinosoft DNS4Me 3.0.0.4. Affected by this vulnerability is an unknown functionality of the component Data Handler. The manipulation leads to resource consumption. This vulnerability is known as CVE-2004-1691. The attack can be launched remotely. Furthermore, there is an exploit available.

1. 背景华为鸿蒙单框架操作系统HarmonyOS NEXT已于2024年10月23日正式发布Release版。HarmonyOS NEXT仅支持鸿蒙原生应用，不再兼容安卓。本文对鸿蒙公开资料进行了深

In September 2024, Scattered

本文对鸿蒙公开资料进行了深入分析和解读，梳理了鸿蒙单框架应用的签名机制，拆解每一步的实操过程和背后的实现原理，并对源码分析整理签名的校验机制。从中管中窥豹，探究鸿蒙系统的安全设计思路，希望能给从事鸿蒙研发的同学提供一些借鉴。

粮油仓储信息化基础设施的安全性，是落地“藏粮于技战略”的关键安全保障。

俄乌冲突、国际贸易战等外部因素打破了全球粮食生产与贸易的均衡格局，发达国家的无端指责等多重的外部压力使得我国面临空前的粮食安全风险。基于外部形势的变化，国家“十四五”规划提出“实施粮食安全战略”，要“

A vulnerability was found in OpenBSD 2.3/2.4/2.5/2.6/2.7 and classified as critical. This issue affects some unknown processing of the file fstat. The manipulation of the argument PWD as part of Environment Variable leads to format string. The identification of this vulnerability is CVE-2000-0994. The attack needs to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in DiGi Web Server. It has been rated as problematic. This issue affects some unknown processing of the component HTTP GET Request Handler. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2004-1973. The attack may be initiated remotely. Furthermore, there is an exploit available.