Aggregator

A vulnerability was found in Tiddlywiki ccTiddly 1.7.4/1.7.6 and classified as critical. Affected by this issue is some unknown functionality of the file index.php. The manipulation of the argument cct_base leads to code injection. This vulnerability is handled as CVE-2008-5949. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in PHPSTREET Webboard 1.0. Affected by this issue is some unknown functionality of the file show.php. The manipulation of the argument id leads to sql injection. This vulnerability is handled as CVE-2008-5955. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, was found in PHPSTREET Webboard 1.0. This affects an unknown part. The manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2008-5956. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Phpbb-seo Multi SEO phpBB 1.1.0. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation of the argument pfad leads to code injection. This vulnerability is handled as CVE-2008-6377. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in Aliensoftcorp Rae Media Contact Management. Affected by this issue is some unknown functionality. The manipulation of the argument Password leads to sql injection. This vulnerability is handled as CVE-2008-6389. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in AOL Instant Messenger 4.7. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to memory corruption. This vulnerability was named CVE-2001-1420. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in AOL Instant Messenger up to 4.7.2480. This affects an unknown part of the component Message Handler. The manipulation with the input <!-- scip --> leads to denial of service. This vulnerability is uniquely identified as CVE-2001-1419. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in AOL Instant Messenger 4.7. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Buddy Icon Handler. The manipulation leads to denial of service. This vulnerability is handled as CVE-2001-1417. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in AOL Instant Messenger 4.7. This affects an unknown part of the component WAV File Handler. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2001-1418. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in OpenBSD 2.9/3.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component vi.recover. The manipulation leads to improper privilege management. This vulnerability is known as CVE-2001-1415. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in ncompress 4.2.4. It has been rated as critical. This issue affects the function comprexx of the component FTP Server. The manipulation of the argument filename leads to stack-based buffer overflow. The identification of this vulnerability is CVE-2001-1413. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

致力于第一时间为企业级用户提供权威漏洞情报和有效解决方案。

独家分享，揭秘火山引擎边缘计算产品背后的算力底座 - 边缘云原生操作系统

Advocacy Groups Call for Government to Regulate Social Media Platforms
The Australian government is on track to introduce a bill in the Parliament to ban youths under the age of 16 from accessing social media platforms, but critics say age verification technologies are not accurate and a ban may push children into unsafe, less visible parts of the Internet.

'Wirte' Threat Actor Used Wiper That Checks if Victim Is Located in Israel
Hackers likely connected to Palestinian militants Hamas were behind wiper attacks detected in October against Israeli organizations including hospitals and municipalities. Israeli cybersecurity firm Check Point on Tuesday attributed the attacks to a group tracked as Wirte.

US to Advocate for Human Rights Safeguards from Supporting Member Nations
The United States will support a controversial cybercrime convention initially proposed by Russia that is currently making its way through the United Nations, officials told reporters, while seeking out human rights assurances from supporting member nations.

Malware Spotted Masquerading as Avast Antivirus
Android Spynote malware is masquerading as antivirus software to exploit Android processes to infiltrate devices, seize control and steal sensitive information from unsuspecting users. A report from Cyfirma shows the malware disguising itself as "Avast Mobile Security" in a recent campaign.

A vulnerability classified as problematic was found in Oracle E-Business Suite 11.5.10.2/12.0.6/12.1.3. This vulnerability affects unknown code of the component Applications Framework. The manipulation leads to an unknown weakness. This vulnerability was named CVE-2013-0397. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.