Aggregator

Weekly#9

不安全
1 year 6 months ago
The Product-Minded Software Engineer接到需求,不是就闷头做,还应该去了解需求背后解决的问题是什么,或许还能提出一些更好的建议。可以的话最好能够了解

CVE-2016-4693 | Apple macOS up to 10.12.1 Security inadequate encryption (HT207423 / Nessus ID 95917)

Vuldb Updates
1 year 6 months ago
A vulnerability classified as critical has been found in Apple macOS up to 10.12.1. Affected is an unknown function of the component Security. The manipulation leads to inadequate encryption strength. This vulnerability is traded as CVE-2016-4693. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2014-6931 | myapp Treves Dance Center 1 X.509 Certificate cryptographic issues (VU#582497)

Vuldb Updates
1 year 6 months ago
A vulnerability was found in myapp Treves Dance Center 1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is known as CVE-2014-6931. The attack needs to be approached within the local network. There is no exploit available.
vuldb.com

CVE-2016-4693 | Apple tvOS up to 10.0 Security inadequate encryption (HT207425 / Nessus ID 95917)

Vuldb Updates
1 year 6 months ago
A vulnerability, which was classified as critical, has been found in Apple tvOS up to 10.0. Affected by this issue is some unknown functionality of the component Security. The manipulation leads to inadequate encryption strength. This vulnerability is handled as CVE-2016-4693. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2014-6930 | Nobexrc Abram Radio Groove! 3.2.3 X.509 Certificate cryptographic issues (VU#582497)

Vuldb Updates
1 year 6 months ago
A vulnerability was found in Nobexrc Abram Radio Groove! 3.2.3. It has been classified as critical. Affected is an unknown function of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is traded as CVE-2014-6930. Access to the local network is required for this attack to succeed. There is no exploit available.
vuldb.com

CVE-2014-6929 | Core-apps AIHce 2014 6.1.0.0 X.509 Certificate cryptographic issues (VU#582497)

Vuldb Updates
1 year 6 months ago
A vulnerability was found in Core-apps AIHce 2014 6.1.0.0 and classified as critical. This issue affects some unknown processing of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. The identification of this vulnerability is CVE-2014-6929. Access to the local network is required for this attack. There is no exploit available.
vuldb.com

CVE-2007-3434 | Netart Media Pharmacy System up to 2 Error Message index.php page information disclosure (EDB-4095 / XFDB-35158)

Vuldb Updates
1 year 6 months ago
A vulnerability, which was classified as problematic, was found in Netart Media Pharmacy System up to 2. Affected is an unknown function of the file index.php of the component Error Message Handler. The manipulation of the argument page leads to information disclosure. This vulnerability is traded as CVE-2007-3434. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com

X 向巴西政府屈服

Solidot
1 year 6 months ago
在无视巴西法院的命令三周之后,马斯克的 X 屈服,在周五递交的一份法庭文件中,公司律师表示 X 已遵守巴西最高法院的命令,希望法院能解除封锁。X 封锁了法院指定的账号,缴纳罚款,任命了一名正式代表。巴西最高法院回应称,X 没有提供正确的文件,它给与该公司五天时间去完成。在 X 被封锁期间,巴西用户转向了替代服务,推动了 Bluesky 和 ​​Tumblr 等社交服务用户数的大幅增长。

CVE-2007-3433 | Netart Media Pharmacy System up to 2 index.php ID sql injection (EDB-4095 / XFDB-35010)

Vuldb Updates
1 year 6 months ago
A vulnerability, which was classified as critical, has been found in Netart Media Pharmacy System up to 2. This issue affects some unknown processing of the file index.php. The manipulation of the argument ID leads to sql injection. The identification of this vulnerability is CVE-2007-3433. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

Managed ad