Aggregator
CVE-2004-0695 | 4D WebSTAR up to 5.3.2 FTP Command stack-based overflow (EDB-16872 / Nessus ID 14195)
7 months 3 weeks ago
A vulnerability has been found in 4D WebSTAR up to 5.3.2 and classified as critical. This vulnerability affects unknown code of the component FTP Command. The manipulation leads to stack-based buffer overflow.
This vulnerability was named CVE-2004-0695. The attack can be initiated remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Конец уязвимостей: Administrator Protection завершает многолетнюю борьбу за безопасность Windows
7 months 3 weeks ago
Как 40 лет усилий привели к созданию современной неприступной системы.
Babuk
7 months 3 weeks ago
cohenido
Babuk
7 months 3 weeks ago
cohenido
Babuk
7 months 3 weeks ago
cohenido
Babuk
7 months 3 weeks ago
cohenido
Babuk
7 months 3 weeks ago
cohenido
天文学家呼吁禁止太空广告
7 months 3 weeks ago
美国天文学会呼吁全世界禁止地面可见的太空广告,称会干扰到地面的天文观测。美国联邦法律禁止太空广告,但美国天文学会担心其它国家的公司可能会尝试投放太空广告。俄罗斯公司 Avant Space 在 2024 年 4 月发射了一颗 3U 立方体卫星测试太空广告技术。另一家俄罗斯公司 StartRocket 于 2019 年宣布与百事可乐俄罗斯子公司签订合同,使用太空广告推广能量饮料。百事美国表示在探索性测试后它终止了太空广告计划。
天文学家呼吁禁止太空广告
7 months 3 weeks ago
美国天文学会呼吁全世界禁止地面可见的太空广告,称会干扰到地面的天文观测。美国联邦法律禁止太空广告,但美国天文学会担心其它国家的公司可能会尝试投放太空广告。俄罗斯公司 Avant Space
运维风险管控、数据安全规范普及与漏洞情报处置:技术与管理并重的综合策略探讨。|总第278周
7 months 3 weeks ago
本期周报简介:1.Linux系统通过权限细分保障安全,应采用技术如RBAC、审计策略限制并监控用户行为,降低风险
2. 随着数据复杂度增加,数据库规范化(如3范式)的重要性愈发凸显
3. 面对多源漏洞情报,自动化匹配结合资产管理平台是趋势
运维风险管控、数据安全规范普及与漏洞情报处置:技术与管理并重的综合策略探讨。|总第278周
7 months 3 weeks ago
本期周报简介:1.Linux系统通过权限细分保障安全,应采用技术如RBAC、审计策略限制并监控用户行为,降低风险
2. 随着数据复杂度增加,数据库规范化(如3范式)的重要性愈发凸显
3. 面对多源漏洞情报,自动化匹配结合资产管理平台是趋势
运维风险管控、数据安全规范普及与漏洞情报处置:技术与管理并重的综合策略探讨。|总第278周
7 months 3 weeks ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
Babuk
7 months 3 weeks ago
cohenido
Babuk
7 months 3 weeks ago
cohenido
/r/ReverseEngineering's Weekly Questions Thread
7 months 3 weeks ago
Babuk
7 months 3 weeks ago
cohenido
Babuk
7 months 3 weeks ago
cohenido
CVE-2005-1401 | Mtp-Target 1.2.2 memory corruption (EDB-25574)
7 months 3 weeks ago
A vulnerability was found in Mtp-Target 1.2.2. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to memory corruption.
This vulnerability is known as CVE-2005-1401. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
GamaCopy Mimics Gamaredon Tactics in Cyber Espionage Targeting Russian Entities
7 months 3 weeks ago
A previously unknown threat actor has been observed copying the tradecraft associated with the Kremlin-aligned Gamaredon hacking group in its cyber attacks targeting Russian-speaking entities.
The campaign has been attributed to a threat cluster dubbed GamaCopy, which is assessed to share overlaps with another hacking group named Core Werewolf, also tracked as Awaken Likho and PseudoGamaredon.
The Hacker News