Aggregator

A vulnerability, which was classified as critical, has been found in libwww-perl 6.04/6.05/6.06 on Perl. This issue affects the function LWP::Protocol::https. The manipulation leads to improper certificate validation. The identification of this vulnerability is CVE-2014-3230. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in O-dyn Collabtive 1.2. It has been classified as problematic. Affected is an unknown function of the file admin.php. The manipulation of the argument desc leads to cross site scripting. This vulnerability is traded as CVE-2014-3247. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Cisco IOS on Cisco 2800. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component LLDP Handler. The manipulation leads to improper input validation. This vulnerability is known as CVE-2014-3273. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Cisco ASA 9.0.1/9.1.1/9.2.0.3. Affected by this issue is some unknown functionality of the component RADIUS. The manipulation leads to improper input validation. This vulnerability is handled as CVE-2014-3264. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Wireshark 1.2.0/1.2.1. This affects an unknown part. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2009-3243. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Робот весом 125 кг встал на защиту китайских улиц. Что он умеет?

Home业界消息小米官方发布「米家集成」，可在 Home Assistant 中使用小米 IoT 智能设备

Google DeepMind 宣布推出下一代视频生成模型 Veo 2，支持生成最高 4K 分辨率和超过 2 分钟时长的视频，向 OpenAI 的 Sora 发起挑战。Veo 2 目前通过 Google 的实验性视频创建工具 VideoFX 提供给用户，而 VideoFX 采用邀请制度，用户需要加入一个等候名单，Google 表示本周会扩大用户数量。Veo 2 目前使用有限制，分辨率最高 720p，时长为 8 秒。相比下，Sora 支持生成最高 1080p 时长为 20 秒的视频。DeepMind 产品副总裁 Eli Collins 表示 Veo 2 未来几个月会根据用户反馈持续迭代。

Google DeepMind 宣布推出下一代视频生成模型 Veo 2，支持生成最高 4K 分辨率和超过 2 分钟时长的视频，向 OpenAI 的 Sora 发起挑战。Veo 2 目前通过

A vulnerability has been found in Wireshark 0.99.2 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to off-by-one. This vulnerability is known as CVE-2006-4331. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Red Hat Enterprise Linux 3.0. This vulnerability affects the function shmat. The manipulation leads to deadlock. This vulnerability was named CVE-2006-4342. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Cisco Router Web Setup up to 3.3.0 Build 31. It has been rated as critical. This issue affects some unknown processing of the component Web Frontend. The manipulation leads to improper privilege management. The identification of this vulnerability is CVE-2006-3595. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

2024补天白帽黑客年度盛典2024年12月21日北京市西城区新动力金融科技中心9层— 国际金融科技发布厅盛大启幕从国内SRC陆续建立以来，国内企业SRC和白帽黑客的关系经历了从单一的漏洞上报到动态合

2024年12月21日，北京新动力金融科技中心见！

RATs or “Remote Access Tools” are very popular these days. From an attacker’s point of view, it’s a

A vulnerability was found in Cisco IOS. It has been classified as critical. This affects the function crypto_engine_packet_callback of the component IPsec. The manipulation leads to improper input validation. This vulnerability is uniquely identified as CVE-2014-3299. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Cisco IOS and IOS XE 15.2/15.4. Affected is an unknown function of the component NTP Service. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2014-3309. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Cisco DPC3010, DPC3212, EPC3010 and EPC3212 and classified as critical. Affected by this issue is some unknown functionality of the component HTTP Request Handler. The manipulation leads to improper input validation. This vulnerability is handled as CVE-2014-3306. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in Cisco IOS and IOS XE and classified as critical. This vulnerability affects unknown code of the component EnergyWise. The manipulation leads to improper input validation. This vulnerability was named CVE-2014-3327. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.