谛听 | 针对工业物联网中小规模后门攻击的精确防御方法
近日,“谛听”团队冉子用博士撰写的论文被国际期刊《IEEE Internet of Things Journal》录用。
Aggregator
JVN: トレンドマイクロ製Deep Security Agent(Windows版)におけるファイル検索パスの制御不備の脆弱性
11 months 3 weeks ago
トレンドマイクロ株式会社から、Deep Security Agent(Windows版)向けのアップデートが公開されました。
.NET 内网攻防实战电子报刊
11 months 3 weeks ago
01.NET内网安全攻防报刊小报童电子报刊【.NET内网安全攻防】也正式上线了,引入小报童也是为了弥补知识星球对于轻量级阅读支持的不足,为用户读者提供更佳的阅读体验。如果您对阅读体验的需求比较高,那么
.NET | 详解通过Win32函数实现本地提权
11 months 3 weeks ago
01阅读须知此文所提供的信息只为网络安全人员对自己所负责的网站、服务器等(包括但不限于)进行检测或维护参考,未经授权请勿利用文章中的技术资料对任何计算机系统进行入侵操作。利用此文所提供的信息而造成的直
52套.NET系统漏洞威胁情报(12.24更新)
11 months 3 weeks ago
52某特订单系统SQL注入52.1 漏洞概述某特网上订单管理系统getUser**.ashx存在SQL注入漏洞 GET /ajax/getUser**.ashx?locadCode=admin%27/
52套.NET系统漏洞威胁情报(12.24更新)
11 months 3 weeks ago
.NET 内网攻防实战电子报刊
11 months 3 weeks ago
.NET | 详解通过Win32函数实现本地提权
11 months 3 weeks ago
CVE-2012-1165 | OpenSSL up to 0.9.8u/1.0.0h crypto/asn1/asn_mime.c mime_param_cmp resource management (Nessus ID 74590 / ID 185004)
11 months 3 weeks ago
A vulnerability was found in OpenSSL up to 0.9.8u/1.0.0h. It has been declared as critical. This vulnerability affects the function mime_param_cmp of the file crypto/asn1/asn_mime.c. The manipulation leads to improper resource management.
This vulnerability was named CVE-2012-1165. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2012-1795 | webglimpse up to 2.17.1 webglimpse.cgi query os command injection (VU#364363 / Nessus ID 58412)
11 months 3 weeks ago
A vulnerability was found in webglimpse up to 2.17.1. It has been declared as critical. This vulnerability affects unknown code of the file webglimpse.cgi. The manipulation of the argument query leads to os command injection.
This vulnerability was named CVE-2012-1795. The attack can be initiated remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2008-1762 | Opera Web Browser up to 7.19 resource management (EDB-31594 / Nessus ID 31831)
11 months 3 weeks ago
A vulnerability has been found in Opera Web Browser up to 7.19 and classified as very critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper resource management.
This vulnerability is known as CVE-2008-1762. The attack can be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
派早报:EA 发布 2024 年玩家游玩报告、上海市通报侵害用户权益行为 App 等
11 months 3 weeks ago
Behind the Scenes: Understanding CVE-2022-24547
11 months 3 weeks ago
Vulnerabilities can often be found in places we don’t expect, and CVE-2022-24547 in CastSrv.exe is
活动预告|CodeWisdom 软件智能化开发学术系列报告 第14期:重新定义团队协作-面向下一代软件工程的LLM Agents
11 months 3 weeks ago
Tse-Hsun (Peter) ChenLeader of the Software PErformance, Analysis, and Reliability (SPEAR) lab at Co
All I Want for Christmas is a CVE-2024-30085 Exploit
11 months 3 weeks ago
CVE-2024-30085 is a heap-based buffer overflow vulnerability affecting the Windows Cloud Files Mini
The Top 10 Data Breaches of 2024
11 months 3 weeks ago
2024 has been a tumultuous year in cybersecurity with numerous significant data breaches compromisin
活动预告|CodeWisdom 软件智能化开发学术系列报告 第14期:重新定义团队协作-面向下一代软件工程的LLM Agents
11 months 3 weeks ago
报告时间:2024年12月26日(周四)上午10:00
威努特为医疗物联网筑造安全防护矩阵
11 months 3 weeks ago
守护智慧医疗安全底线!
威努特为医疗物联网筑造安全防护矩阵
11 months 3 weeks ago
01IoMT背景介绍医疗物联网(IoMT:Internet of Medical Things)是物联网在医疗行业的重要应用。随着医疗行业大力推进数字化和智能化转型,IoMT技术已经成为提升医疗服务效
Daily Dose of Dark Web Informer - December 23rd, 2024
11 months 3 weeks ago
This daily article is intended to make it easier for those who want to stay updated with my regular Dark Web Informer and X/Twitter posts.
Dark Web Informer - Cyber Threat Intelligence