Aggregator

#勒索病毒 #D0glun #Ransomware D0glun勒索病毒攻击

#恶意软件分析 #银狐 #工具 银狐最新恶意软件进程监控

3CX供应链攻击技术之微软数字签名被滥用技术分析

A vulnerability classified as problematic was found in ZDaemon up to 1.08.07. This vulnerability affects unknown code. The manipulation leads to improper input validation. This vulnerability was named CVE-2008-3314. The attack can be initiated remotely. Furthermore, there is an exploit available.

主站 分类 漏洞 工具 极客

A vulnerability classified as problematic was found in Mephistoles httpd 0.6 Final/0.6 P1/0.6 P2. Affected by this vulnerability is an unknown functionality. The manipulation leads to basic cross site scripting. This vulnerability is known as CVE-2004-2096. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in XMB Forum 1.6/1.8/1.11. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file member.php. The manipulation of the argument member leads to basic cross site scripting. This vulnerability is known as CVE-2003-0375. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Windows LPE (@MrAle_98), CLR OPSEC (@passthehashbrwn), WinRM BOFs (@falconf

A vulnerability classified as critical was found in Linux Kernel 1.3.0/2.0. Affected by this vulnerability is an unknown functionality of the component ICMP Packet Handler. The manipulation as part of Long Packet leads to denial of service. This vulnerability is known as CVE-1999-0128. The attack can be launched remotely. Furthermore, there is an exploit available. Due to its background and reception, this vulnerability has an historic impact. It is recommended to upgrade the affected component.

A vulnerability was found in Apple iTunes up to 12.9.0. It has been classified as critical. Affected is an unknown function of the component WebKit. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2018-4382. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Concrete CMS up to 8.5.17/9.3.2 and classified as problematic. This vulnerability affects the function getAttributeSetName. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-7394. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Concrete CMS up to 8.5.18/9.3.3. Affected is an unknown function of the component Calendar Event Addition Handler. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-7398. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

传华为鸿蒙 PC 今年有望上市，已进行半公开测试1 月 20 日消息，近日，据博主爆料，鸿蒙 PC 已经在渠道做半公开测试，新一轮的找 bug 开始。他称这款重磅新品原定 2024 年底发布，2025

谷歌公布 Titans 系列 AI 模型架构 OpenAI 资助 AI 数学基准测试引发公正性质疑 微软 AI 战略面临重大挑战：大量旧电脑难以升级至 Win11

在红队渗透测试的过程中，数据库信息往往是关键突破口之一。许多 Web 应用程序将数据库连接字符串、账号和密码等敏感信息存储在配置文件中，而开发者往往忽视了对这些文件的加密和保护措施。本文我们将利用 S

01.NET内网安全攻防报刊小报童电子报刊【.NET内网安全攻防】也正式上线了，引入小报童也是为了弥补知识星球对于轻量级阅读支持的不足，为用户读者提供更佳的阅读体验。如果您对阅读体验的需求比较高，那么

这篇文章将介绍如何利用 .NET 中的 ExcelDDE 技术，通过 DCOM 实现远程命令执行。ExcelDDE是一种用于在 Excel 和其他应用程序之间交换数据的协议，ShellBrowserW