Aggregator

Mobile Verification Toolkit Mobile Verification Toolkit (MVT) is a collection of utilities to simplify and automate the process of gathering forensic traces helpful to identify a potential compromise of Android and iOS devices. It...

The post Mobile Verification Toolkit: forensic tool to look for signs of infection in smartphone devices appeared first on Penetration Testing Tools.

A vulnerability was found in Adobe Acrobat Reader up to 11.0.19/15.006.30280/15.023.20070 and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to use after free. This vulnerability is handled as CVE-2017-3047. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

ESP32 Marauder The ESP32 Marauder is a suite of WiFi/Bluetooth offensive and defensive tools created for the ESP32 and was originally inspired by Spacehuhn’s esp8266_deauther project. The tool itself serves as a portable device used to test...

The post ESP32 Marauder: suite of WiFi/Bluetooth offensive and defensive tools for the ESP32 appeared first on Penetration Testing Tools.

A vulnerability was found in Jackdapp Jack'd - Gay Chat! Dating 1.4.53. It has been declared as critical. This vulnerability affects unknown code of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability was named CVE-2014-5779. The attack can only be initiated within the local network. There is no exploit available.

PatrOwl PatrOwl is a scalable, free and open-source solution for orchestrating Security Operations. PatrowlEngines is the engine framework and the supported list of engines performing the operations (scans, searches, API calls, …) in due time. The...

The post PatrowlEngines: Open Source, Free and Scalable Security Operations Orchestration Platform appeared first on Penetration Testing Tools.

A vulnerability classified as critical has been found in Adobe Acrobat Reader up to 11.0.19/15.006.30280/15.023.20070. Affected is an unknown function. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2017-3046. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe Acrobat Reader up to 11.0.19/15.006.30280/15.023.20070. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2017-3045. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

OpenAI 据悉考虑调整公司架构，以提高对投资者的吸引力；亚马逊将聘请 Covariant 创始人拓展仓库自动化业务；明年萝卜快跑或将在 3 到 5 个城市进行大规模试点

A vulnerability was found in Adobe Acrobat Reader up to 11.0.19/15.006.30280/15.023.20070. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to out-of-bounds write. The identification of this vulnerability is CVE-2017-3044. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in cPanel up to 9.1 and classified as critical. This vulnerability affects unknown code of the component Login. The manipulation of the argument user leads to improper privilege management. This vulnerability was named CVE-2004-1770. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Rootkit / Threat IntelligenceA recently patched security flaw in Google Chrome and other Chromium

A vulnerability was found in Icash Click and Rank. It has been rated as critical. This issue affects some unknown processing of the file hitcounter.asp. The manipulation of the argument PassWord leads to sql injection. The identification of this vulnerability is CVE-2008-5888. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Adobe Acrobat Reader up to 11.0.19/15.006.30280/15.023.20070. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to information disclosure. This vulnerability was named CVE-2017-3043. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

英特尔正寻求投行帮助它度过 56 年历史上最困难的时期。芯片巨人在讨论各种方案，包括拆分芯片设计和芯片制造业务，取消部分芯片工厂项目。摩根士丹利和高盛是英特尔长期的银行合作伙伴，它们一直为

A vulnerability was found in Microsoft Windows. It has been rated as very critical. This issue affects some unknown processing of the component Message Queuing. The manipulation leads to Remote Code Execution. The identification of this vulnerability is CVE-2023-21554. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, was found in Cisco IOS. Affected is an unknown function of the component DLSw Feature. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2014-7992. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in VMware Server and classified as problematic. This vulnerability affects unknown code. The manipulation leads to path traversal. This vulnerability was named CVE-2009-3733. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in VMware vCenter Update Manager and classified as problematic. Affected by this issue is some unknown functionality of the component Default Configuration. The manipulation leads to configuration. This vulnerability is handled as CVE-2011-4404. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.