Aggregator

01阅读须知此文所提供的信息只为网络安全人员对自己所负责的网站、服务器等（包括但不限于）进行检测或维护参考，未经授权请勿利用文章中的技术资料对任何计算机系统进行入侵操作。利用此文所提供的信息而造成的直

01欢迎加入社区为了更好地应对基于.NET技术栈的风险识别和未知威胁，dotNet安全矩阵星球从创建以来一直聚焦于.NET领域的安全攻防技术，定位于高质量安全攻防星球社区，也得到了许多师傅们的支持和信

01阅读须知此文所节选自小报童《.NET 内网实战攻防》专栏，主要内容有.NET在各个内网渗透阶段与Windows系统交互的方式和技巧，对内网和后渗透感兴趣的朋友们可以订阅该电子报刊，解锁更多的报刊内

库克在最新采访中谈及公司是否考虑过投资 OpenAI；小鹏汽车澳大利亚首家门店开业；业界首款面向全场景数智安全，华为等 15 家单位联合宣布 openHiTLS 密码套件开源

OpenAI 开发其下一个主要模型 GPT-5 的努力正落后于计划据《华尔街日报》最新报道，OpenAI 开发其下一个主要 AI 模型 GPT-5 的努力正落后于计划，其结果还不能证明巨大的成本是合理

A vulnerability, which was classified as critical, has been found in Microsoft Internet Explorer 11. Affected by this issue is some unknown functionality. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2014-2753. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Internet Explorer 10/11. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to memory corruption. This vulnerability was named CVE-2014-1802. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Linux Kernel up to 4.13.2 and classified as problematic. Affected by this issue is the function iscsi_if_rx of the file drivers/scsi/scsi_transport_iscsi.c. The manipulation leads to improper input validation. This vulnerability is handled as CVE-2017-14489. An attack has to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in cgit up to 1.2.0. This affects an unknown part of the file cgit/cgit.cgi/git/objects/. The manipulation of the argument path with the input ../ leads to path traversal. This vulnerability is uniquely identified as CVE-2018-14912. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Paul Marquess Compress-raw-zlib Perl Module up to 2.0 and classified as critical. Affected by this issue is the function Compress::Raw::Zlib in the library Zlib.xs of the component Downloader. The manipulation leads to numeric error. This vulnerability is handled as CVE-2009-1391. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Post navigation← PreviousPosted on 202

A vulnerability, which was classified as critical, has been found in Red Hat Desktop 3/4/5. This issue affects some unknown processing of the file pattern.c of the component libxslt. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2008-1767. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Microsoft Forefront Security for Exchange Server 2010. This affects an unknown part of the component Mail Handler. The manipulation leads to code injection. This vulnerability is uniquely identified as CVE-2014-0294. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows up to XP. It has been declared as critical. This vulnerability affects unknown code of the component DirectShow. The manipulation as part of JPEG Image leads to improper resource management. This vulnerability was named CVE-2014-0301. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.