Aggregator

CVE-2002-0865 | Microsoft Virtual Machine up to 5.0.3805 XML com.ms.osp.ospmrshl privileges management (VU#140898 / XFDB-10135)

8 months 1 week ago

A vulnerability, which was classified as critical, has been found in Microsoft Virtual Machine up to 5.0.3805. This issue affects the function com.ms.osp.ospmrshl of the component XML Handler. The manipulation leads to improper privilege management. The identification of this vulnerability is CVE-2002-0865. The attack may be initiated remotely. There is no exploit available.

vuldb.com

CVE-2002-0866 | Microsoft Virtual Machine 5.0.3805 Java Database Connectivity com.ms.jdbc.odbc.JdbcOdbc privileges management (VU#307306 / XFDB-10133)

Vuldb Updates

8 months 1 week ago

A vulnerability, which was classified as critical, was found in Microsoft Virtual Machine 5.0.3805. Affected is the function com.ms.jdbc.odbc.JdbcOdbc of the component Java Database Connectivity. The manipulation leads to improper privilege management. This vulnerability is traded as CVE-2002-0866. It is possible to launch the attack remotely. There is no exploit available.

vuldb.com

美团外卖推防疲劳，12小时强制下线；苹果 iOS 18 视觉增强默认启用，隐私堪忧；小米宠物员工狗走失，公司急寻 | 极客早知道

极客公园

8 months 1 week ago

剪映产品负责人张逍然离职；vivo 内部 MR 团队已达 500 人，原型机体验明年 9 月上线；英伟达计划 2025 上半年发布新一代人形机器人芯片 Jetson Thor

美团外卖推防疲劳，12小时强制下线；苹果 iOS 18 视觉增强默认启用，隐私堪忧；小米宠物员工狗走失，公司急寻 | 极客早知道

不安全

8 months 1 week ago

美团将在全国上线防疲劳机制12 月 30 日消息，美团骑手防疲劳机制已于今日在全国主要城市范围内启动上线工作。美团骑手收到的通知显示，跑单超过 8 小时会收到提醒，此后每隔一小时提醒一次；跑单 12

Dumping Memory to Bypass BitLocker on Windows 11

不安全

8 months 1 week ago

CVE-2012-3429 | Martin Nagy bind-dyndb-ldap 0.1.0/0.2.0/1.0.0/1.1.0 DNS Server dns_to_ldap_dn_escape input validation (RHSA-2012:1139 / Nessus ID 68592)

Vuldb Updates

8 months 1 week ago

A vulnerability has been found in Martin Nagy bind-dyndb-ldap 0.1.0/0.2.0/1.0.0/1.1.0 and classified as problematic. This vulnerability affects the function dns_to_ldap_dn_escape of the component DNS Server. The manipulation leads to improper input validation. This vulnerability was named CVE-2012-3429. The attack can be initiated remotely. There is no exploit available.

vuldb.com

CVE-2012-3434 | Tom Braider Count Per Day up to 2.15.0 userperspan.php datemax cross site scripting (ID 571926 / ID 12611)

Vuldb Updates

8 months 1 week ago

A vulnerability was found in Tom Braider Count Per Day up to 2.15.0 and classified as problematic. This issue affects some unknown processing of the file userperspan.php. The manipulation of the argument datemax leads to cross site scripting. The identification of this vulnerability is CVE-2012-3434. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2012-3435 | Zabbix up to 1.8.14/2.0.1 itemid sql injection (DSA-2539 / EDB-20087)

Vuldb Updates

8 months 1 week ago

A vulnerability classified as critical has been found in Zabbix up to 1.8.14/2.0.1. Affected is an unknown function. The manipulation of the argument itemid leads to sql injection. This vulnerability is traded as CVE-2012-3435. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

vuldb.com

CVE-2012-3437 | ImageMagick 6.7.8-6 Magick_png_malloc proper denial of service (Bug 844101 / Nessus ID 74943)

Vuldb Updates

8 months 1 week ago

A vulnerability was found in ImageMagick 6.7.8-6 and classified as problematic. This issue affects the function Magick_png_malloc. The manipulation of the argument proper leads to denial of service. The identification of this vulnerability is CVE-2012-3437. The attack may be initiated remotely. There is no exploit available.

vuldb.com