Aggregator

ReiserFS 文件系统预计将在 Linux 6.13 中移除。ReiserFS 文件系统的首席开发者 Hans Reiser 因谋杀罪被判终身监禁，它早就停止开发，也没有发行版使用，Linux 是在发布 v5.18 时宣布将移除 ReiserFS，两年之后内核社区宣布预计会在明年正式移除 ReiserFS。内核将删除 32.8k 行与 ReiserFS 相关的代码，如果有开发者想要继续使用 ReiserFS，那么他们只能使用即将发布的 Linux 6.12 或之前的旧版本。

A vulnerability was found in nvi 1.79. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Filename Handler. The manipulation leads to format string. This vulnerability is known as CVE-2001-1562. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A sophisticated malware loader known as Bumblebee has resurfaced, posing a significant threat to corporate networks worldwide. Cybersecurity researchers at Netskope Threat Labs have uncovered a new infection chain linked to Bumblebee. This marks its first appearance since Operation Endgame, a major Europol-led crackdown on malware botnets in May 2024. Bumblebee, first identified by Google’s […]

The post Hackers Use Bumblebee Malware to Gain Access to Corporate Networks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Хакеры цинично ставят под угрозу безопасность детей ради своих целей.

JSP3/2.0.14

Discover why Escape is a better DAST solution for API testing.

The post Escape vs Qualys appeared first on Security Boulevard.

A vulnerability was found in Adobe Acrobat Reader up to 11.0.15/15.006. It has been classified as critical. This affects an unknown part. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2016-1086. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Apple Mac OS X 10.4.9. Affected is an unknown function of the component gm4. The manipulation leads to format string. This vulnerability is traded as CVE-2001-1411. Local access is required to approach this attack. There is no exploit available.

主站 分类 漏洞 工具 极客

For the latest discoveries in cyber research for the week of 21st October, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Boston Children’s Health Physicians, part of the Boston Children’s Hospital network, suffered a data breach in September, exposing sensitive patient information, including Social Security numbers, medical records, and health insurance details. The […]

The post 21st October – Threat Intelligence Report appeared first on Check Point Research.

Новый арсенал группы плетёт сеть кибершпионажа в Восточной Европе.

福建省唯一入围企业！国投智能入选“2024年中国网络安全前二十家企业”名单 日期：2024年10月21日 阅：76

Libreboot 是基于 coreboot 的自由软件固件项目，旨在取代私有的 BIOS 或 UEFI 固件。但从 2022 年起它开始包含非自由代码，为了维护真正的自由，GNU Boot 在 Libreboot 基础上诞生了。然而要在固件领域确保 100% 自由代码是非常困难的。GNU Boot 去年 12 月发现其项目包含了不符合自由软件标准的非自由文件，现在它再次发生包含非自由代码。问题归因于存档中的测试数据，包含了微码、BIOS 和英特尔 Management Engine 固件形式的非自由代码。

A vulnerability classified as critical was found in DeluxeBB 1.1/1.2. Affected by this vulnerability is an unknown functionality of the file forums.php. The manipulation of the argument sort leads to sql injection. This vulnerability is known as CVE-2008-2194. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in ScriptsEZ Power Editor 2.0 and classified as problematic. Affected by this issue is some unknown functionality of the file editor.php. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2008-2115. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in ScriptsEZ Power Editor 2.0. It has been classified as problematic. This affects an unknown part of the file editor.php. The manipulation leads to path traversal. This vulnerability is uniquely identified as CVE-2008-2116. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.

A vulnerability has been found in Miniweb2 Blog Writer 2.0 and classified as critical. This vulnerability affects unknown code of the file index.php. The manipulation of the argument historymonth leads to sql injection. This vulnerability was named CVE-2008-2197. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Novell eDirectory 8.7.3.9/8.8.2. It has been rated as problematic. This issue affects some unknown processing of the file dhost.exe. The manipulation leads to improper resource management. The identification of this vulnerability is CVE-2008-0927. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.