Aggregator

A vulnerability was found in MIT Kerberos 4.0/5 1.0/5 1.1.1 and classified as problematic. This issue affects some unknown processing of the component ksu. The manipulation results in memory corruption. This vulnerability was named CVE-2000-0392. The attack needs to be approached locally. In addition, an exploit is available.

A vulnerability was found in KDE 1.1/1.1.1/1.2/2.0 Beta. It has been classified as problematic. Impacted is an unknown function of the file kscd. This manipulation of the argument SHELL as part of Environment Variable causes improper privilege management. The identification of this vulnerability is CVE-2000-0393. The attack can only be executed locally. Furthermore, there is an exploit available. Upgrading the affected component is recommended.

A vulnerability described as critical has been identified in Microsoft Internet Explorer 4.0/4.0.1/5.0/5.01. Affected by this issue is some unknown functionality of the component ActiveX Parameter Handler. Such manipulation of the argument Component leads to memory corruption. This vulnerability is documented as CVE-2000-0464. The attack can be executed remotely. There is not any exploit available. This vulnerability is notable in history due to its background and the response it received. It is best practice to apply a patch to resolve this issue.

A vulnerability classified as critical has been found in Microsoft Internet Explorer 4.0/4.0.1/5.0/5.0.1. This affects the function DocumentComplete of the component Frame Handler. Performing a manipulation results in improper privilege management. This vulnerability is reported as CVE-2000-0465. The attack is possible to be carried out remotely. Moreover, an exploit is present. It is recommended to apply a patch to fix this issue.

A vulnerability classified as problematic was found in Axent NetProwler 3.0. This vulnerability affects unknown code of the component Packet Handler. Executing a manipulation can lead to denial of service. This vulnerability appears as CVE-2000-0394. The attack may be performed from remote. In addition, an exploit is available. Upgrading the affected component is advised.

A vulnerability identified as critical has been detected in Sun Cobalt RaQ. Affected by this issue is some unknown functionality of the component Web Server. This manipulation causes improper privilege management. This vulnerability is tracked as CVE-2000-0431. The attack is possible to be carried out remotely. Moreover, an exploit is present. You should upgrade the affected component.

A vulnerability classified as critical was found in Rockliffe MailSite 4.2.10. The affected element is an unknown function in the library wconsole.dll of the component Management Agent. The manipulation of the argument QUERY_STRING results in memory corruption. This vulnerability is reported as CVE-2000-0398. The attack can be launched remotely. No exploit exists. Upgrading the affected component is advised.

A vulnerability has been found in MIT Kerberos 4.0/5 1.0/5 1.1.1 and classified as critical. This vulnerability affects the function krb_rd_req. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2000-0391. The attack is possible to be carried out remotely. Moreover, an exploit is present. The affected component should be upgraded.

当获取人员主机权限后，抓取通讯录与聊天记录可为后续横向移动打基础

长城杯半决赛三道 Web 赛题审计笔记——从 redis SSRF、ZipSlip 到 glibc iconv 溢出

PolarCTF2026春季个人赛 Web方向全解

对ivanti CVE-2025-0282进行漏洞复现包含详细的漏洞利用过程和exp

记录一次php代码审计

ciscn-web-isw

本文分析了SUCTF题目SU_jdbc-master的完整攻击链。利用Unicode字符ſ转大写为S的特性，绕过仅做小写匹配的Spring MVC鉴权拦截器；随后通过Jackson反序列化覆盖默认JDBC驱动为存在漏洞的Kingbase8，结合临时文件写入与文件描述符爆破，触发恶意Spring XML配置加载，最终实现命令执行回显。

中国电信大可实验室是中国电信集团直属分支机构，现开启校园招聘

CISCN&CCB 2026分区赛AWDP-Web部分的题目复现

За кибератаками на израильские компании стоит единая экосистема под управлением Тегерана.

Vercel released a statement acknowledging a breach and warning a “limited subset of customers” that their Vercel credentials were compromised.