Aggregator

A vulnerability was found in EMC VMware 6.0.0. It has been classified as problematic. This affects an unknown part in the library vielib.dll of the component ActiveX Control. The manipulation of the argument first leads to path traversal. This vulnerability is uniquely identified as CVE-2007-4058. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

DnsDiag是一款针对DNS的故障排除和安全审计工具，在该工具的帮助下，广大研究人员可以轻松检测DNS基础设施的安全性。

HP最近拦截了一封电子邮件，其中包含由人工智能（AI）生成的投放器传递的标准恶意软件。在投放器中使用生成式AI的方式，这标志完全由人工智能创造的恶意软件有了明显的进化。

一周情报速览~

注册微信账号必须用实名制的手机号码，如果微信账号被用于违法犯罪很容易被追查到，因此，有人企图用空号注册微信账号倒卖获利。

I think InfoSec—and in fact business management in general—is evolving into the combination of four

Overview In September 2024, NSFOCUS Global Threat Hunting System monitored a new botnet family calling itself Gorilla Botnet entering an unusually active state. Between September 4 and September 27, it issued over 300,000 attack commands, with a shocking attack density. During this active period, Gorilla Botnet targeted over 100 countries, with China and the U.S. […]

The post Over 300,000! GorillaBot: The New King of DDoS Attacks appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks..

The post Over 300,000! GorillaBot: The New King of DDoS Attacks appeared first on Security Boulevard.

A vulnerability was found in Frank Yaul corehttp 0.5.3 Alpha. It has been rated as critical. This issue affects the function HttpSprockMake of the file http.c. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2007-4060. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in Neumann Student Activities 216607. This affects an unknown part of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is uniquely identified as CVE-2014-7068. The attack can only be initiated within the local network. There is no exploit available.

Sponsored by: It's not a green screen! It's just a weird a weird hotel room in Pittsburgh,

A vulnerability was found in Apache Lucene up to 9.11.x. It has been classified as problematic. This affects an unknown part of the component org.apache.lucene.replicator.http. The manipulation leads to deserialization. This vulnerability is uniquely identified as CVE-2024-45772. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Appsgeyser BTD5 Videos 0.1. Affected by this issue is some unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is handled as CVE-2014-7067. The attack can only be done within the local network. There is no exploit available.

A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is an unknown function of the file fs/eventpoll.c. The manipulation leads to denial of service. This vulnerability is traded as CVE-2012-3375. Attacking locally is a requirement. Furthermore, there is an exploit available.

A vulnerability was found in ADOdb up to 5.20.5. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2016-4855. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in LinPHA 1.3.1. This vulnerability affects unknown code of the file include/img_view.class.php. The manipulation of the argument order leads to sql injection. This vulnerability was named CVE-2007-4053. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in OPSWAT MetaDefender up to 5.1.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper access controls. This vulnerability is known as CVE-2022-32272. The attack can only be initiated within the local network. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Redmine up to 1.0.4. This vulnerability affects unknown code. The manipulation leads to improper privilege management. This vulnerability was named CVE-2011-4929. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

由于公众强烈反对，微软撤下了受争议的 Windows Recall AI 搜索功能的预览版。三个月后，微软表示已彻底修改了 Recall 的安全架构，引入了存在证明加密、防篡改和 DLP 检查，在主操作系统外的隔离环境（secure enclaves）内管理屏幕截图数据。Windows Recall 功能使用 AI 创建 Windows 机器上一切操作的可搜索数字记忆，在默认情况下它将处以禁用状态，微软还提供了工具可永久性删除数据。Windows Recall 引发了隐私和安全方面的担忧，因为它每五秒钟会进行一次屏幕截图，数据储存在本地用于 AI 语义搜索。微软副总裁 David Weston 表示，工程师重写了 Windows Recall 的安全模型，减少 Copilot+ PC 的攻击面，最小化恶意软件攻击者针对存储的屏幕截图数据的安全风险。