Aggregator

A vulnerability was found in Linux Kernel up to 6.11.2 and classified as critical. Affected by this issue is some unknown functionality of the component aoe. The manipulation leads to use after free. This vulnerability is handled as CVE-2024-49982. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.15.167/6.1.112/6.6.56/6.11.3 and classified as critical. This vulnerability affects the function con_num of the component RDMA. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2024-50062. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 5.15.169/6.1.114/6.6.58/6.11.5. This issue affects the function bpf_redirect_neigh. The manipulation leads to allocation of resources. The identification of this vulnerability is CVE-2024-50163. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in QooxDoo 1.3 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file framework/source/resource/qx/test/jsonp_primitive.php. The manipulation of the argument callback leads to cross site scripting. This vulnerability is known as CVE-2011-1714. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in Adobe Flash Player up to 21.0.0.242. This affects an unknown part. The manipulation leads to improper privilege management. This vulnerability is uniquely identified as CVE-2016-4135. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

Name: WannaGame Championship 2024 (an WannaGame Championship event.)
Date: Dec. 13, 2024, 1 a.m. — 14 Dec. 2024, 01:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://cnsc.com.vn/ctf/
Rating weight: 19.80
Event organizers: Wanna.One

A vulnerability has been found in University of Washington imapd 4.7 and classified as critical. Affected by this vulnerability is an unknown functionality of the component LIST Command Handler. The manipulation leads to memory corruption. This vulnerability is known as CVE-2000-0284. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

defender2yara defender2yara is a Python tool that converts Microsoft Defender Antivirus Signatures (VDM) into YARA rules. This tool facilitates the creation of custom YARA rules from the latest signature databases or manually provided .vdm...

The post defender2yara: Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules appeared first on Penetration Testing Tools.

Cacti Cacti is a complete network graphing solution designed to harness the power of RRDTool‘s data storage and graphing functionality. Cacti provide a fast poller, advanced graph templating, multiple data acquisition methods, and user...

The post Cacti: Network traffic graphics monitoring and analysis tools appeared first on Penetration Testing Tools.

hate_crack A tool for automating cracking methodologies through Hashcat from the TrustedSec team. Installation Get the latest hashcat binaries OSX Install mkdir -p hashcat/deps git clone https://github.com/KhronosGroup/OpenCL-Headers.git hashcat/deps/OpenCL cd hashcat/ make make install Download...

The post hate_crack: automating cracking methodologies through Hashcat appeared first on Penetration Testing Tools.

I codici QR sono in grado di aggirare l’isolamento del browser per eseguire comunicazione C2 malevol

Le competenze digitali sono un irrinunciabile elemento di qualsiasi professione e di qualsiasi profe

Sul sito del FBI è apparso un comunicato che ha l’obiettivo di mettere in guardia sulle tante frecce

Gli impatti economici della cybersecurity non hanno conseguenze solo su aziende e PA, ma su tutto il

Giornate di aggiornamenti per gli amministratori di sistema: come ogni mese, infatti, Microsoft ha r

L’ascesa delle minacce informatiche potenziate dall’intelligenza artificiale (AI) sta trasformando r

Il recente lancio del terzo lotto di satelliti Qianfan rappresenta un momento significativo nella co

Per certi versi, i criminali informatici non hanno mai avuto vita così facile. Gli strumenti a cui h

Le forze dell’ordine di 15 paesi, coordinate da Europol, hanno colpito duramente il mercato illegale