Aggregator

A vulnerability classified as critical was found in NullSoft WinAmp up to 5.666. Affected by this vulnerability is an unknown functionality of the component FLV File Handler. The manipulation leads to memory corruption. This vulnerability is known as CVE-2014-3442. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in flag up to 7.x-3.x. It has been classified as critical. Affected is the function flag_import_form_validate. The manipulation leads to code injection. This vulnerability is traded as CVE-2014-3453. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in VideoLAN VLC Media Player up to 2.1.3. It has been rated as critical. This issue affects some unknown processing in the library codec\libpng_plugin.dll of the component PNG Image Handler. The manipulation as part of WAV File leads to memory corruption. The identification of this vulnerability is CVE-2014-3441. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in EncFS up to 1.7.5. Affected by this issue is some unknown functionality of the file .encfs6.xml of the component Configuration File. The manipulation of the argument blockMACBytes with the input 0 leads to information disclosure. This vulnerability is handled as CVE-2014-3462. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Oracle GlassFish Communications Server 2.0. This affects an unknown part of the component Security. The manipulation leads to cryptographic issues. This vulnerability is uniquely identified as CVE-2013-1620. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

所谓必修漏洞，就是运维人员必须修复、不可拖延、影响范围较广的漏洞，被黑客利用并发生入侵事件后，会造成十分严重的后果。腾讯安全威胁情报中心参考“安全漏洞的危害及影响力、漏洞技术细节披露情况、该漏洞在安全

A vulnerability classified as problematic has been found in PHP. Affected is the function session_start. The manipulation leads to improper input validation. This vulnerability is traded as CVE-2012-0788. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

How many times you’ve clicked the “I’m not a robot” CAPTCHA checkbox without a second thought? We’ve all done it … countless times. It’s such a familiar step that we don’t question it. And, cybercriminals have taken note of that.  

The post FakeCaptcha scams—When the “I’m not a robot” button is a trap appeared first on Security Boulevard.

How many times you’ve cli

腾讯安全威胁情报中心推出24年11月安全漏洞必修清单，漏洞介绍及修复建议详见全文。

腾讯安全威胁情报中心推出24年11月安全漏洞必修清单，漏洞介绍及修复建议详见全文。

腾讯安全威胁情报中心推出24年11月安全漏洞必修清单，漏洞介绍及修复建议详见全文。

所谓必修漏洞，就是运维人员必须修复、不可拖延、影响范围较广的漏洞，被黑客利用并发生入侵事件后，会造成十分严重的后果。腾讯云安全情报中心参考“安全漏洞的危害及影响力、漏洞技术细节披露情况、该漏洞在安全技

加入业内 TOP 1 企业，和我们一起开拓全球市场，成就你的职业梦想！