Aggregator

A vulnerability was found in Linux Kernel up to 2.6.11.9 and classified as critical. Affected by this issue is the function elf_core_dump of the component ELF File Handler. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2005-1263. The attack can only be initiated within the local network. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in SSH and OpenSSH. This affects an unknown part of the component scp Server. The manipulation leads to path traversal. This vulnerability is uniquely identified as CVE-2000-0992. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Инновационное обновление предлагает новый взгляд на взаимодействие с физическим миром.

本报告由数世咨询 & 零零信安共同发布在万物互联的数字化时代，数据做为第五大生产要素，要实现充分的流动才能创造出无限的价值。同时，数据安全风险也随之而来。数据的流动性意味着安全的巨大挑战，数据泄露事

全球数据泄露态势11月份报告完整版，附下载地址。

A vulnerability, which was classified as problematic, has been found in Avaya libsafe. This issue affects the function _libsafe_die in the library libsafe_die. The manipulation leads to Remote Code Execution. The identification of this vulnerability is CVE-2005-1125. The attack may be initiated remotely. Furthermore, there is an exploit available.

U.S. CISA adds Microsoft Windows Kernel-Mode Driver and Adobe ColdFusion flaws to its

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft Windows Kernel-Mode Driver and Adobe ColdFusion flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the Microsoft Windows Kernel-Mode Driver Untrusted Pointer Dereference (CVE-2024-35250) and Adobe ColdFusion Improper Access Control (CVE-2024-20767) vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. The […]

In late October 2024, a new scheme for distributing a certain Android banking Trojan c

Hello everyone!I wanted to share this awesome open-source GitHub repository which I create

A vulnerability, which was classified as critical, has been found in libwww-perl 6.04/6.05/6.06 on Perl. This issue affects the function LWP::Protocol::https. The manipulation leads to improper certificate validation. The identification of this vulnerability is CVE-2014-3230. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in O-dyn Collabtive 1.2. It has been classified as problematic. Affected is an unknown function of the file admin.php. The manipulation of the argument desc leads to cross site scripting. This vulnerability is traded as CVE-2014-3247. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Cisco IOS on Cisco 2800. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component LLDP Handler. The manipulation leads to improper input validation. This vulnerability is known as CVE-2014-3273. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Cisco ASA 9.0.1/9.1.1/9.2.0.3. Affected by this issue is some unknown functionality of the component RADIUS. The manipulation leads to improper input validation. This vulnerability is handled as CVE-2014-3264. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Wireshark 1.2.0/1.2.1. This affects an unknown part. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2009-3243. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Робот весом 125 кг встал на защиту китайских улиц. Что он умеет?

Home业界消息小米官方发布「米家集成」，可在 Home Assistant 中使用小米 IoT 智能设备