Aggregator
Timestomping a PE compile timestamp - adversary tradecraft and detection
3 months 2 weeks ago
这篇文章介绍了多种恶意软件的威胁类型、传播方式及潜在风险。主要涉及Windows平台的勒索软件(如Lockbit、Conti)、后门程序及特洛伊木马等。这些威胁通常通过其他恶意软件或访问恶意网站传播,具有中等损害潜力和低分布风险。部分威胁可能导致信息泄露或设备锁定。
App+1|站在 Git 的肩膀上,做更懂玩家的存档管理:游戏拾光
3 months 2 weeks ago
文章讲述了作者从初次接触3A大作到因多次丢档而研究存档管理的故事。他尝试了多种方法后开发了Gamekeeper工具,支持自动识别存档、多分支管理及差异存储等特色功能。
车联网漏洞挖掘方法及典型案例剖析
3 months 2 weeks ago
【情报】部分接受美国资助在尼泊尔开展活动的机构
3 months 2 weeks ago
今天给大家推送那些接受了美国资助在尼泊尔开展活动的机构。
Эксплойт в открытом доступе запустил волну атак на WSUS. Windows-серверы крушат одним кликом
3 months 2 weeks ago
CVE-2025-59287: как получить права SYSTEM без авторизации…
Week in review: Actively exploited Windows SMB flaw, trusted OAuth apps turned into cloud backdoors
3 months 2 weeks ago
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Most AI privacy research looks the wrong way Most research on LLM privacy has focused on the wrong problem, according to a new paper by researchers from Carnegie Mellon University and Northeastern University. The authors argue that while most technical studies target data memorization, the biggest risks come from how LLMs collect, process, and infer information during regular use. When … More →
The post Week in review: Actively exploited Windows SMB flaw, trusted OAuth apps turned into cloud backdoors appeared first on Help Net Security.
Help Net Security
CVE-1999-0198 | finger .@host information disclosure (Nessus ID 10072 / ID 31001)
3 months 2 weeks ago
A vulnerability, which was classified as problematic, was found in finger. The impacted element is an unknown function. Executing manipulation of the argument .@host can lead to information disclosure.
This vulnerability is handled as CVE-1999-0198. The attack can be executed remotely. There is not any exploit available. This vulnerability has a historic impact due to its background and reception.
You should upgrade the affected component.
vuldb.com
CVE-1999-0203 | Eric Allman Sendmail 8.6.10 Mail From improper authentication (Nessus ID 10258 / ID 74059)
3 months 2 weeks ago
A vulnerability classified as critical has been found in Eric Allman Sendmail 8.6.10. Affected is an unknown function of the component Mail From Handler. This manipulation causes improper authentication.
This vulnerability is registered as CVE-1999-0203. Remote exploitation of the attack is possible. No exploit is available. This vulnerability has a historic impact because of its background and how it was received.
It is recommended to upgrade the affected component.
vuldb.com
CVE-1999-0206 | Eric Allman Sendmail 8.8/8.8.1 MIME memory corruption (Nessus ID 10588 / ID 74121)
3 months 2 weeks ago
A vulnerability classified as critical was found in Eric Allman Sendmail 8.8/8.8.1. Affected by this issue is some unknown functionality of the component MIME Handler. Executing manipulation can lead to memory corruption.
This vulnerability is tracked as CVE-1999-0206. The attack can be launched remotely. No exploit exists.
Upgrading the affected component is advised.
vuldb.com
CVE-1999-0204 | Eric Allman Sendmail 8.6.9 ident privileges management (EDB-20599 / Nessus ID 10278)
3 months 2 weeks ago
A vulnerability, which was classified as critical, has been found in Eric Allman Sendmail 8.6.9. Affected by this vulnerability is an unknown functionality of the component ident Handler. The manipulation leads to improper privilege management.
This vulnerability is referenced as CVE-1999-0204. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
It is advisable to upgrade the affected component.
vuldb.com
CVE-1999-0207 | Great Circle Associates Majordomo 1.90/1.91 Reply-To Field Remote Code Execution (EDB-20597 / ID 50006)
3 months 2 weeks ago
A vulnerability, which was classified as critical, was found in Great Circle Associates Majordomo 1.90/1.91. The impacted element is an unknown function of the component Reply-To Field Handler. The manipulation results in Remote Code Execution.
This vulnerability is known as CVE-1999-0207. It is possible to launch the attack remotely. Furthermore, an exploit is available.
vuldb.com
CVE-1999-0209 | Sun SunOS up to 4.1.1 Suntools privileges management (EDB-16326 / ID 66034)
3 months 2 weeks ago
A vulnerability labeled as critical has been found in Sun SunOS up to 4.1.1. Affected by this vulnerability is an unknown functionality of the component Suntools. Executing manipulation can lead to improper privilege management.
This vulnerability appears as CVE-1999-0209. The attack may be performed from remote. In addition, an exploit is available.
vuldb.com
От AK-47 за миллион до нуля: экономика CS2 не выдержала апдейта
3 months 2 weeks ago
Обновление Counter-Strike 2 стерло миллиарды долларов за ночь
WeChat Selkies – 为什么要在 Docker 中运行 QQ / 微信?
3 months 2 weeks ago
WeChat Selkies 是一个基于 Docker 的微信/QQ客户端,在网页中访问无需本地安装;适用于服务器部署和远程办公;封装官方 Linux 客户端,风控低;支持设置密码和 GPU 加速;适合需要网页版微信的场景。
Квантовый процессор Google прокрутил Вселенную назад — и обогнал обычные суперкомпьютеры в 13 000 раз
3 months 2 weeks ago
Секунды вместо месяцев. Willow доказывает, что квантовые вычисления - больше не теория.
CVE-1999-0237 | Webcom Guestbook privileges management (Nessus ID 10098 / ID 10152)
3 months 2 weeks ago
A vulnerability, which was classified as critical, was found in Webcom Guestbook. This issue affects some unknown processing. The manipulation results in improper privilege management.
This vulnerability is cataloged as CVE-1999-0237. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-1999-0219 | Mollensoft Hyperion FTP Server 3.0 memory corruption (EDB-19218 / Nessus ID 10084)
3 months 2 weeks ago
A vulnerability labeled as critical has been found in Mollensoft Hyperion FTP Server 3.0. This issue affects some unknown processing. The manipulation results in memory corruption.
This vulnerability was named CVE-1999-0219. The attack may be performed from remote. In addition, an exploit is available.
The affected component should be upgraded.
vuldb.com
CVE-1999-0233 | Microsoft IIS 1.0 cmd privileges management (Q148188 / EDB-20445)
3 months 2 weeks ago
A vulnerability was found in Microsoft IIS 1.0 and classified as critical. The impacted element is an unknown function of the file cmd. Such manipulation leads to improper privilege management.
This vulnerability is traded as CVE-1999-0233. The attack may be launched remotely. Furthermore, there is an exploit available. This vulnerability is historically impactful due to its background and the reception it garnered.
It is suggested to upgrade the affected component.
vuldb.com
CVE-1999-0219 | Cat Soft Serv-U 2.5 memory corruption (EDB-19218 / Nessus ID 10089)
3 months 2 weeks ago
A vulnerability described as critical has been identified in Cat Soft Serv-U 2.5. This affects an unknown part. Such manipulation leads to memory corruption.
This vulnerability is listed as CVE-1999-0219. The attack may be performed from remote. In addition, an exploit is available.
Upgrading the affected component is recommended.
vuldb.com