Aggregator

A vulnerability was found in IBM Lotus Domino 5.0.8 and classified as problematic. Affected by this issue is some unknown functionality of the component HTTP Header Handler. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2000-1215. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in IBM AIX 4.3.0 and classified as critical. This vulnerability affects unknown code of the file nslookup. The manipulation leads to memory corruption. This vulnerability was named CVE-1999-1574. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Ceragon FiberAir IP-10. Affected is an unknown function of the component Default Password. The manipulation leads to credentials management. This vulnerability is traded as CVE-2015-0924. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in QEMU. Affected is the function virgl_cmd_get_capset of the file hw/display/virtio-gpu-3d.c of the component Virtio GPU Device Emulator. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2016-10028. The attack needs to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, has been found in mysql up to 5.1.25. Affected by this issue is some unknown functionality of the component Configuration Parameter. The manipulation leads to denial of service. This vulnerability is handled as CVE-2010-3676. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Akamai announced the Akamai App Platform, a ready-to-run solution that makes it easy to deploy, manage, and scale highly distributed applications. The Akamai App Platform is built on top of the cloud native Kubernetes technology Otomi, which Akamai acquired from Red Kubes earlier this year. The application platform provides ready-to-run templates that address common challenges in deploying, managing, and scaling Kubernetes clusters at scale. Instead of relying on multiple departments and spending months sourcing, connecting, … More →

The post Akamai App Platform reduces the complexity associated with managing Kubernetes clusters appeared first on Help Net Security.

Больше половины кибератак в Африке приходится на госсектор и финансы.

赛力斯集团网络安全白帽沙龙圆满举办

A vulnerability, which was classified as very critical, has been found in D-Link DAP-1320 up to 1.10. This issue affects some unknown processing. The manipulation leads to improper privilege management. The identification of this vulnerability is CVE-2015-2050. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Granite Data Services 3.1.1-SNAPSHOT and classified as critical. Affected by this issue is some unknown functionality of the component AMF Framework. The manipulation leads to xml external entity reference. This vulnerability is handled as CVE-2016-2340. The attack may be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in Aternity up to 9. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2016-5061. The attack may be initiated remotely. There is no exploit available.

A vulnerability, which was classified as very critical, was found in Aternity up to 9. Affected is an unknown function of the component getMBeansFromURL. The manipulation leads to incorrect resource transfer. This vulnerability is traded as CVE-2016-5062. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Linux Kernel up to 4.x. It has been rated as problematic. This issue affects some unknown processing of the component KSM. The manipulation leads to information disclosure. The identification of this vulnerability is CVE-2015-2877. The attack may be initiated remotely. There is no exploit available. The real existence of this vulnerability is still doubted at the moment. It is recommended to change the configuration settings.

A vulnerability has been found in QEMU and classified as problematic. Affected by this vulnerability is the function virtio_gpu_set_scanout of the component Virtio GPU Device Emulator. The manipulation leads to out-of-bounds read. This vulnerability is known as CVE-2016-10029. An attack has to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, was found in Lenovo IBM BladeCenter. This affects an unknown part of the component Advanced Management Module. The manipulation leads to cross site scripting (DOM). This vulnerability is uniquely identified as CVE-2016-8232. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in GNU wget up to 1.15 and classified as problematic. Affected by this issue is some unknown functionality of the component FTP Handler. The manipulation leads to path traversal. This vulnerability is handled as CVE-2014-4877. Local access is required to approach this attack. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.