Aggregator

CVE-2024-28944 | Microsoft OLE DB Driver/SQL Server numeric truncation error

10 months ago

A vulnerability, which was classified as critical, was found in Microsoft OLE DB Driver and SQL Server. This affects an unknown part. The manipulation leads to numeric truncation error. This vulnerability is uniquely identified as CVE-2024-28944. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

vuldb.com

CVE-2024-28945 | Microsoft OLE DB Driver/SQL Server integer underflow

Vuldb Updates

10 months ago

A vulnerability has been found in Microsoft OLE DB Driver and SQL Server and classified as critical. This vulnerability affects unknown code. The manipulation leads to integer underflow. This vulnerability was named CVE-2024-28945. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

vuldb.com

CVE-2024-29043 | Microsoft ODBC Driver/SQL Server use after free

Vuldb Updates

10 months ago

A vulnerability was found in Microsoft ODBC Driver and SQL Server and classified as critical. This issue affects some unknown processing. The manipulation leads to use after free. The identification of this vulnerability is CVE-2024-29043. The attack may be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

vuldb.com

一次对多重混淆技术的恶意BAT文件简要分析

先知技术社区

10 months ago

高度混淆的恶意BAT文件，通过AES加密、持久化及PowerShell执行恶意代码。

2030 年 AGI 到来？谷歌 DeepMind 写了份「人类自保指南」

极客公园

10 months ago

对于「AI 危害」，每家公司都有不同的解决方案，但没有完美方案。

The 23andMe Collapse, Signal Gate Fallout

Security Boulevard

10 months ago

In this episode, we discuss the urgent need to delete your DNA data from 23andMe amid concerns about the company’s potential collapse and lack of federal protections for your personal information. Kevin joins the show to give his thoughts on the Signal Gate scandal involving top government officials, emphasizing the potential risks and lack of […]

The post The 23andMe Collapse, Signal Gate Fallout appeared first on Shared Security Podcast.

The post The 23andMe Collapse, Signal Gate Fallout appeared first on Security Boulevard.

Tom Eston

The rise of compromised LLM attacks

Help Net Security

10 months ago

In this Help Net Security video, Sohrob Kazerounian, Distinguished AI Researcher at Vectra AI, discusses how the ongoing rapid adoption of LLM-based applications has already introduced new cybersecurity risks. These vulnerabilities will not be in the LLM itself, but rather in how applications grant the LLM access to various resources. With access to business-critical data, compromised LLM-based applications could, for example, expose large amounts of personal information, disrupt essential services, or lead to unauthorized manipulations … More →

The post The rise of compromised LLM attacks appeared first on Help Net Security.

Help Net Security

Sante PACS 服务器漏洞可使远程攻击者下载任意文件

嘶吼

10 months ago

最近，在 Sante PACS Server 4.1.0 版本中发现了几个严重漏洞，这使得该版本极易遭受严重的安全威胁。

这些漏洞（CVE - 2025 - 2263、CVE - 2025 - 2264、CVE - 2025 - 2265 和 CVE - 2025 - 2284）会让服务器面临潜在攻击风险，可能引发未经授权的访问、数据泄露以及拒绝服务（DoS）等情况。

在本文中，我们将深入剖析每个漏洞，给出受影响代码的示例及漏洞摘要。

漏洞概述

CVE - 2025 - 2263：EVP_DecryptUpdate 基于堆栈的缓冲区溢出

该漏洞源于 Sante PACS 服务器在使用 OpenSSL 的 EVP_DecryptUpdate 时，出现基于堆栈的缓冲区溢出问题。在用户登录服务器的过程中，服务器使用固定大小为 0x80 字节的堆栈缓冲区来解密用户名和密码。攻击者可以通过发送超长的加密用户名或密码来利用此漏洞，进而引发缓冲区溢出，甚至可能实现代码执行。

有漏洞的代码：

CVE - 2025 - 2264：路径遍历信息泄露

此漏洞使得未经身份验证的远程攻击者能够下载服务器磁盘上的任意文件。嵌入式 Web 服务器负责提供特定目录中的文件，但它未能对请求路径进行正确验证，从而引发路径遍历攻击。攻击者可以构造一个超出预期目录结构的 URL 来利用该漏洞。

利用示例：

CVE - 2025 - 2265：HTTP.db SHA1 哈希截断

在此漏洞中，如果存储在服务器的 SQLite 数据库中的密码哈希值包含零字节，那么该哈希值将会被截断，这就使得它容易遭受碰撞攻击。攻击者可以利用路径遍历漏洞先下载数据库，然后找到与截断哈希值等效的密码。

易受攻击的哈希处理代码：

CVE - 2025 - 2284：访问未初始化指针 DoS

当服务器尝试从格式错误的请求中提取登录凭据时，就会出现这个拒绝服务漏洞。如果 “usrname” 字段后面没有足够的行，服务器可能会访问未初始化的指针，进而导致崩溃。

格式错误的请求 PoC：

漏洞摘要

为了防范这些漏洞，建议用户将 Sante PACS 服务器升级到 4.2.0 或更高版本。根据 Tenable 的报告，此次更新将修复这些安全问题，增强系统的整体安全态势。用户还应考虑采取额外的安全措施，如网络分段和定期监控，以便检测潜在的攻击尝试。

与任何软件漏洞情况一样，及时采取行动对于确保敏感数据的完整性和系统可用性至关重要。定期更新和安全审计是维护强大网络安全防御体系的基本操作。

山卡拉

CVE-2006-4924 | Blue Coat Security Gateway OS 4.x SSH Server resource management (VU#787448 / EDB-2444)

Vuldb Updates

10 months ago

A vulnerability classified as problematic was found in Blue Coat Security Gateway OS 4.x. Affected by this vulnerability is an unknown functionality of the component SSH Server. The manipulation leads to improper resource management. This vulnerability is known as CVE-2006-4924. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to disable the affected component.

vuldb.com

CVE-2011-4879 | Siemens SIMATIC HMI panel prior Mp miniweb.exe input validation (ssa-345442 / EDB-18166)

Vuldb Updates

10 months ago

A vulnerability, which was classified as critical, was found in Siemens SIMATIC HMI panel. This affects an unknown part of the file miniweb.exe. The manipulation leads to improper input validation. This vulnerability is uniquely identified as CVE-2011-4879. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

vuldb.com

AI伪造邮件防不胜防？看CACTER大模型邮件安全网关如何强势破局！

安全牛

10 months ago

摘要：以大模型AI能力抵御新型恶意邮件威胁当下，以DeepSeek为代表的大模型应用正成为各个领域创新的”加 […]

Coremail

CVE-2024-29044 | Microsoft OLE DB Driver/SQL Server heap-based overflow

Vuldb Updates

10 months ago

A vulnerability was found in Microsoft OLE DB Driver and SQL Server. It has been classified as critical. Affected is an unknown function. The manipulation leads to heap-based buffer overflow. This vulnerability is traded as CVE-2024-29044. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

vuldb.com

CVE-2024-29045 | Microsoft OLE DB Driver/SQL Server stack-based overflow

Vuldb Updates

10 months ago

A vulnerability was found in Microsoft OLE DB Driver and SQL Server. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to stack-based buffer overflow. This vulnerability is known as CVE-2024-29045. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

vuldb.com

CVE-2024-29046 | Microsoft OLE DB Driver/SQL Server heap-based overflow

Vuldb Updates

10 months ago

A vulnerability was found in Microsoft OLE DB Driver and SQL Server. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to heap-based buffer overflow. This vulnerability is handled as CVE-2024-29046. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

vuldb.com

CVE-2024-29062 | Microsoft Windows up to Server 2022 23H2 Secure Boot toctou

Vuldb Updates

10 months ago

A vulnerability classified as critical has been found in Microsoft Windows. Affected is an unknown function of the component Secure Boot. The manipulation leads to time-of-check time-of-use. This vulnerability is traded as CVE-2024-29062. The attack needs to be approached within the local network. There is no exploit available. It is recommended to apply a patch to fix this issue.

vuldb.com

CVE-2024-29047 | Microsoft SQL Server 2019/2022 heap-based overflow

Vuldb Updates

10 months ago

A vulnerability classified as critical has been found in Microsoft SQL Server 2019/2022. This affects an unknown part. The manipulation leads to heap-based buffer overflow. This vulnerability is uniquely identified as CVE-2024-29047. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

vuldb.com

CVE-2024-29048 | Microsoft OLE DB Driver/SQL Server heap-based overflow

Vuldb Updates

10 months ago

A vulnerability classified as critical was found in Microsoft OLE DB Driver and SQL Server. This vulnerability affects unknown code. The manipulation leads to heap-based buffer overflow. This vulnerability was named CVE-2024-29048. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

vuldb.com

CVE-2024-29982 | Microsoft OLE DB Driver/SQL Server heap-based overflow

Vuldb Updates

10 months ago

A vulnerability has been found in Microsoft OLE DB Driver and SQL Server and classified as critical. This vulnerability affects unknown code. The manipulation leads to heap-based buffer overflow. This vulnerability was named CVE-2024-29982. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

vuldb.com

Midjourney 发布新模型 V7

Solidot

10 months ago

Midjourney 在时隔一年多之后发布新模型 V7，目前以 alpha 形式提供给用户。V7 改进了图像生成，为手、手指、身体部位和“各种对象”提供了更高的连贯性和一致性，还能提供细节更丰富和逼真的纹理和材质。V7 还提供了新工具和工作流，其中之一是用于迭代和探索的 Draft Mode，费用只需一半但渲染速度提高十倍。V7 有两种模式——turbo 和 relax，其中 turbo 能更快生成最终图像，但费用提高了一倍；而 relax 生成图像的速度很慢，但费用也低。Midjourney 是最早广泛使用的 AI 图像生成工具之一。最初只通过 Discord 提供给用户，现在有了 Web 版本。

apache wicket 反序列化写文件

先知技术社区

10 months ago

存在apache wicket版本依赖下反序列化写文件进行漏洞利用

Aggregator

Managed ad