Aggregator

A vulnerability, which was classified as critical, has been found in magzter Intelligent SME 3. This issue affects some unknown processing of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. The identification of this vulnerability is CVE-2014-7314. The attack can only be done within the local network. There is no exploit available.

A vulnerability, which was classified as critical, was found in Oracle Fujitsu M10-1, Fujitsu M10-4, Fujitsu M10-4S, Fujitsu M12-1, Fujitsu M12-2 and Fujitsu M12-2S. Affected is an unknown function of the component glibc. The manipulation leads to denial of service. This vulnerability is traded as CVE-2016-4429. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

​Microsoft has fixed a known issue affecting Outlook for Microsoft 365 users that caused problems sending emails for those with too many nested folders. [...]

A global operation cuffed four LockBit suspects and offered more details into the org chart of Russia's infamous Evil Corp cybercrime gang.

A vulnerability classified as critical was found in One You Fitness 1.399. This vulnerability affects unknown code of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability was named CVE-2014-7313. The attack needs to be approached within the local network. There is no exploit available.

A vulnerability was found in QEMU up to 2.3.x. It has been rated as critical. This issue affects the function send_control_msg of the file hw/char/virtio-serial-bus.c of the component Virtio Control Message Handler. The manipulation leads to buffer overflow. The identification of this vulnerability is CVE-2015-5745. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Fabrice Bellard QEMU up to 2.0.x. Affected by this vulnerability is an unknown functionality of the component CLIENT_CUT_TEXT Message Handler. The manipulation leads to infinite loop. This vulnerability is known as CVE-2015-5239. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in ACG News. Affected is an unknown function of the file printable.php. The manipulation of the argument aid leads to sql injection. This vulnerability is traded as CVE-2007-4603. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability has been found in Adobe Flash Player 11.2.202.491/18.0.0.209 and classified as very critical. This vulnerability affects unknown code. The manipulation leads to memory corruption. This vulnerability was named CVE-2015-5545. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Cloud hosting provider Rackspace suffered a data breach exposing "limited" customer monitoring data after threat actors exploited a zero-day vulnerability in a third-party tool used by the ScienceLogic SL1 platform. [...]

Authors/Presenters:Nirav Atre, Hugo Sadok, Justine Sherry

Our sincere thanks to USENIX, and the Presenters & Authors for publishing their superb 21st USENIX Symposium on Networked Systems Design and Implementation (NSDI '24) content, placing the organizations enduring commitment to Open Access front and center. Originating from the conference’s events situated at the Hyatt Regency Santa Clara; and via the organizations YouTube channel.

Permalink

The post USENIX NSDI ’24 – BBQ: A Fast and Scalable Integer Priority Queue for Hardware Packet Scheduling appeared first on Security Boulevard.

Прорыв в физике позволяет создавать мощные звуковые лучи с помощью фононов.

2024/10/01 Annuncio di scoperta astronomica oggi alle 14 ora dell’Europa