Aggregator

CVE-1999-0256 | Jgaa WarFTPd 1.66 USER/PASS Command memory corruption (EDB-16724 / Nessus ID 11207)

Vuldb Updates
2 months 4 weeks ago
A vulnerability classified as critical was found in Jgaa WarFTPd 1.66. This vulnerability affects unknown code of the component USER/PASS Command. The manipulation leads to memory corruption. This vulnerability was named CVE-1999-0256. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-2621 | D-Link DAP-1620 1.03 /storage check_dws_cookie uid stack-based overflow

Vuldb Updates
2 months 4 weeks ago
A vulnerability was found in D-Link DAP-1620 1.03 and classified as critical. This issue affects the function check_dws_cookie of the file /storage. The manipulation of the argument uid leads to stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer. The identification of this vulnerability is CVE-2025-2621. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply restrictive firewalling.
vuldb.com

U.S. Treasury removed sanctions against the crypto mixer service Tornado Cash

Security Affairs
2 months 4 weeks ago
The U.S. Treasury is lifting sanctions on Tornado Cash, a crypto mixer accused of helping North Korea’s Lazarus Group launder illicit funds. The U.S. Treasury Department removed sanctions against the cryptocurrency mixer service Tornado Cash. In August 2022, the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) sanctioned the crypto mixer service Tornado Cash used by […]
Pierluigi Paganini

Managed ad