Aggregator

A vulnerability has been found in libTIFF up to 3.7.1 and classified as critical. This vulnerability affects unknown code. The manipulation leads to stack-based buffer overflow. This vulnerability was named CVE-2005-1544. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in XFree86 X11r6 up to 3.3.6 and classified as problematic. This issue affects some unknown processing in the library xlib. The manipulation of the argument DISPLAY as part of Environment Variable leads to memory corruption. The identification of this vulnerability is CVE-2000-0976. Local access is required to approach this attack. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Microsoft Internet Explorer 5.0 on Win 95/98/NT4 and classified as critical. Affected by this vulnerability is an unknown functionality of the file MSDXM.OCX of the component Directshow Filter. The manipulation leads to memory corruption. This vulnerability is known as CVE-1999-0989. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

VNCTF2025 报名开启，2月8日等你来战

VNCTF2025 报名开启，2月8日等你来战

VNCTF2025 报名开启，2月8日等你来战

VNCTF2025 报名开启，2月8日等你来战

VNCTF2025 报名开启，2月8日等你来战

VNCTF2025 报名开启，2月8日等你来战

登录 注册

甲骨文以及包括微软在内的外部投资者正在谈判接手 TikTok 美国业务。根据正在协商的协议，TikTok 母公司字节跳动将会保留少数股权，但算法、数据收集和应用更新将由甲骨文负责，甲骨文已经为 TikTok 提供了网络基础设施。知情人士称，甲骨文和白宫官员周五就潜在交易举行了一次会议，另一次会议已安排在下周。知情人士称，甲骨文有兴趣收购价值数百亿美元的 TikTok 股份。根据针对 TikTok 的禁令，字节跳动必须剥离 TikTok 才能继续在美国运营，它不能秘密留下后门。

A vulnerability classified as problematic was found in Moodle 2.6.8/2.7.5/2.8.3. This vulnerability affects unknown code of the component Block Title Handler. The manipulation leads to cross site scripting. This vulnerability was named CVE-2015-2269. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

新闻速览 国家密码管理局废止、宣布失效部分行政规范性文件 PayPal因安全措施不力被罚200万美元 华硕意外 […]

A vulnerability, which was classified as critical, has been found in Opera Web Browser up to 8.53. This issue affects some unknown processing. The manipulation leads to numeric error. The identification of this vulnerability is CVE-2006-1834. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in YourFreeWorld Banner Management. This issue affects some unknown processing of the file trackads.php. The manipulation of the argument id leads to sql injection. The identification of this vulnerability is CVE-2010-4981. The attack may be initiated remotely. Furthermore, there is an exploit available.

Segnalo la mia presentazione "Aggiornamento legislativo 2025" (pdf, 2,2 MB): https://www.cesaregallo

A vulnerability has been found in Adobe Flash Player up to 25.0.0.148 and classified as critical. Affected by this vulnerability is an unknown functionality of the component Advanced Video Coding Engine. The manipulation leads to memory corruption. This vulnerability is known as CVE-2017-3068. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

#balance-transfer目录泄露 #/etc/passwd权限提升 #SUID emergency权限提升

A vulnerability, which was classified as critical, has been found in Electronic Arts Battlefield 1942 1.2/1.3. Affected by this issue is some unknown functionality of the component Remote Console. The manipulation of the argument Username/Password leads to memory corruption. This vulnerability is handled as CVE-2003-1355. The attack may be launched remotely. Furthermore, there is an exploit available.