Aggregator

A vulnerability was found in Apple Mac OS X up to 10.11.0. It has been classified as critical. This affects an unknown part of the component FontParser. The manipulation as part of Font File leads to memory corruption. This vulnerability is uniquely identified as CVE-2015-6978. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple iOS up to 9.0 and classified as critical. This issue affects some unknown processing of the component FontParser. The manipulation as part of Font File leads to memory corruption. The identification of this vulnerability is CVE-2015-6977. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Apple Mac OS X up to 10.11.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the component FontParser. The manipulation as part of Font File leads to memory corruption. This vulnerability is known as CVE-2015-6976. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Apple iOS up to 9.0 and classified as critical. This vulnerability affects unknown code of the component FontParser. The manipulation as part of Font File leads to memory corruption. This vulnerability was named CVE-2015-6976. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

阅读： 2因故需要了解std::string类型内存布局。以前没接触过，属于初次产生的需求。正常思路是，写测试程序，带调试信息编译，gdb调试，设法查看内存布局。绝

最新排名公布

Spotify playlists and podcasts are being abused to push pirated software, game cheat codes, spam links, and "warez" sites. By injecting targeted keywords and links in playlist names and podcast descriptions, threat actors may benefit from boosting SEO for their dubious online properties appearing in Google. [...]

A vulnerability classified as critical has been found in Phpclanwebsite up to 1.23.3. This affects an unknown part of the file index.php. The manipulation of the argument whichfield leads to sql injection. This vulnerability is uniquely identified as CVE-2008-5877. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic was found in Phpclanwebsite up to 1.23.3. This vulnerability affects unknown code. The manipulation of the argument theme leads to path traversal. This vulnerability was named CVE-2008-5878. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in I-Rater I-Rater Basic. This affects an unknown part of the file messages.php. The manipulation of the argument idp leads to sql injection. This vulnerability is uniquely identified as CVE-2008-6017. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in Nodstrum MySQL Calendar 1.1. This affects an unknown part. The manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2008-5738. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in 2532gigs 1.2.2. Affected is an unknown function of the file upload_flyer.php of the component File Upload. The manipulation leads to code injection. This vulnerability is traded as CVE-2008-6902. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in 2532gigs 1.2.2. This issue affects some unknown processing of the file checkuser.php. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2008-6907. The attack may be initiated remotely. Furthermore, there is an exploit available.

A Russian national suspected of involvement in Phobos ransomware has appeared in court in the US

error code: 521

Удивительная история гениального ребёнка и его первых шагов в профессиональной карьере.

The Justice Department unsealed criminal charges against Evgenii Ptitsyn, 42, a Russian national, for allegedly administering the sale, distribution, and operation of Phobos ransomware. Ptitsyn made his initial appearance in the US District Court for the District of Maryland on Nov. 4 after being extradited from South Korea. Phobos ransomware, through its affiliates, victimized more than 1,000 public and private entities in the United States and around the world, and extorted ransom payments worth more … More →

The post Phobos ransomware administrator faces US cybercrime charges appeared first on Help Net Security.

当下，越来越多的未成年人热衷于“吃谷”，有的甚至到了痴迷的程度。在售卖二次元周边和潮流玩具等小物件的商店，在放学后和节假日期间经常可以看到未成年人购买“谷子”。未成年人热衷“吃谷”，可以说是有利有弊。

央视新闻《向网络暴力亮剑》系列微视频，剖析多起网暴典型事件，最高人民法院等相关部门专业人士详细释法，倡导共建清朗网络空间。本期推出《起底网络水军》，起底“血衣案”等网暴事件背后的“水军”链条，调查黑灰产业链在网暴中所扮演的角色。