Aggregator

扫码订阅《中国信息安全》邮发代号 2-786征订热线：010-82341063市场监管总局关于公开征求《网络交易合规数据报送管理暂行办法（征求意见稿）》意见的公告为了规范网络交易合规数据报送行为，提

扫码订阅《中国信息安全》邮发代号 2-786征订热线：010-823410631月24日，《中国人民银行业务领域网络安全事件报告管理办法（征求意见稿）》（以下简称“《办法》”）公开征求意见的通知发布

扫码订阅《中国信息安全》邮发代号 2-786征订热线：010-82341063全国打击治理电信网络诈骗工作视频会议24日召开，中共中央书记处书记、国务委员王小洪出席并讲话。王小洪强调，要深入学习贯彻

一图读懂国家标准 GB/T 44886.1-2024《网络安全技术 网络安全产品互联互通 第1部分：框架》

意见反馈截止日期为2025年2月21日前。

近日，网安标委网站发布《网络安全标准实践指南——人脸识别支付场景个人信息安全保护要求》。

党的二十届三中全会明确提出“建设和运营国家数据基础设施，促进数据共享”。近日，国家数据局会同国家发展改革委、工业和信息化部印发《国家数据基础设施建设指引》（

全国打击治理电信网络诈骗工作视频会议24日召开，中共中央书记处书记、国务委员王小洪出席并讲话。

意见反馈截止时间为2025年2月23日。

意见反馈截止时间为2025年2月24日。

A vulnerability classified as critical has been found in Digium Asterisk up to 1.6.2.0. Affected is an unknown function of the file main/acl.c. The manipulation of the argument permit leads to improper access controls. This vulnerability is traded as CVE-2010-1224. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as very critical was found in Microsoft Virtual PC 2007. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper access controls. This vulnerability is known as CVE-2010-1225. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, was found in Google Chrome up to 4.1. Affected is the function protocolIs of the file platform/KURLGoogle.cpp of the component WebKit. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2010-1236. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Google Chrome up to 4.1.249.1033 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper input validation. This vulnerability is known as CVE-2010-1237. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Cisco Pix Firewall 520. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to improper access controls. This vulnerability was named CVE-2011-0396. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Google Chrome up to 2.0.172.32. This issue affects some unknown processing. The manipulation leads to improper input validation. The identification of this vulnerability is CVE-2010-1235. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Cisco Pix Firewall 520. It has been classified as critical. This affects an unknown part of the component Proxy Function. The manipulation leads to improper resource management. This vulnerability is uniquely identified as CVE-2011-0395. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Microsoft Internet Explorer 6/7/8. It has been rated as critical. Affected by this issue is the function ReleaseInterface in the library MSHTML.DLL. The manipulation leads to improper resource management. This vulnerability is handled as CVE-2011-0346. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, was found in eEye Iris 1.0.1. This affects an unknown part of the component GET Request Handler. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2001-0184. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.