Aggregator

CVE-2012-3972 | Mozilla Firefox/Thunderbird 14 XSLT Format-Number Feature information disclosure (MFSA 2012-65 / Nessus ID 61721)

Vuldb Updates
8 months 1 week ago
A vulnerability, which was classified as problematic, was found in Mozilla Firefox and Thunderbird 14. Affected is an unknown function of the component XSLT Format-Number Feature. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2012-3972. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2012-3974 | Mozilla Firefox/Thunderbird 14 on Windows Root Partition Executable resource management (MFSA 2012-67 / Nessus ID 803015)

Vuldb Updates
8 months 1 week ago
A vulnerability has been found in Mozilla Firefox and Thunderbird 14 on Windows and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Root Partition Executable Handler. The manipulation leads to improper resource management. This vulnerability is known as CVE-2012-3974. An attack has to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2012-3976 | Mozilla Firefox 14 SSL Certificate OnLocationChange use after free (MFSA 2012-69 / Nessus ID 61721)

Vuldb Updates
8 months 1 week ago
A vulnerability was found in Mozilla Firefox 14. It has been classified as problematic. This affects the function OnLocationChange of the component SSL Certificate Handler. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2012-3976. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2012-3978 | Mozilla Firefox/Thunderbird 14 nsLocation::CheckURL access control (MFSA 2012-70 / Nessus ID 61721)

Vuldb Updates
8 months 1 week ago
A vulnerability was found in Mozilla Firefox and Thunderbird 14. It has been declared as problematic. This vulnerability affects the function nsLocation::CheckURL. The manipulation leads to improper access controls. This vulnerability was named CVE-2012-3978. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2012-3970 | Mozilla Firefox/Thunderbird 14 Scalable Vector Graphics File nsTArray_base::Length requiredFeatures resource management (MFSA 2012-63 / Nessus ID 61721)

Vuldb Updates
8 months 1 week ago
A vulnerability classified as very critical was found in Mozilla Firefox and Thunderbird 14. This vulnerability affects the function nsTArray_base::Length of the component Scalable Vector Graphics File Handler. The manipulation of the argument requiredFeatures leads to improper resource management. This vulnerability was named CVE-2012-3970. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2012-3969 | Mozilla Firefox/Thunderbird 14 SVG File Value Addition Filter numeric error (MFSA 2012-63 / Nessus ID 892553)

Vuldb Updates
8 months 1 week ago
A vulnerability classified as critical was found in Mozilla Firefox and Thunderbird 14. Affected by this vulnerability is the function nsSVGFEMorphologyElement::Filter of the component SVG File Value Addition Handler. The manipulation leads to numeric error. This vulnerability is known as CVE-2012-3969. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

Protecting Highly Sensitive Health Data for Research

DataBreachToday.com
8 months 1 week ago
Fully homomorphic encryption can safeguard highly sensitive health data related to rare diseases, underserved populations and clinical trials as it is shared with medical researchers, said Kurt Rohloff, co-founder and CTO of Duality Technologies, who said projects to apply it are underway right now.

Four-Faith Routers Exploited Using New Flaw

DataBreachToday.com
8 months 1 week ago
Attackers Exploiting OS Command Injection Vulnerability
Hackers are exploiting a high-severity command injection vulnerability in Chinese-manufactured Four-Faith industrial routers. Typical customers of Four-Faith use the routers for remote monitoring, control systems, supervisory control and data acquisition networks.

A Year of AI Pragmatism and Paradigm Shifts

DataBreachToday.com
8 months 1 week ago
2025 Is Likely to See Balanced Approach to AI Across Industries
The AI landscape is set to transform in 2025 with pragmatic approaches to implementation replacing the experimental fervor. This shift will span industries and developer ecosystems. Technologies will ride on the transformative power of AI and the responsibility that comes with it.

Palo Alto Firewalls Backdoored by Suspected Chinese Hackers

DataBreachToday.com
8 months 1 week ago
Hackers Targeted a PAN-OS Flaw Days After Its Disclosure
A suspected Chinese hacking campaign that began in November is exploiting a vulnerability in Palo Alto firewalls to install a custom malware backdoor for espionage. UNC5325 activity aligns with the Chinese hacking strategy of targeting edge devices.

Chinese Hackers Breach US Treasury in 'Major Incident'

DataBreachToday.com
8 months 1 week ago
Treasury Tells Lawmakers Chinese Threat Actor Remotely Breached Agency Workstations
The U.S. Treasury Department notified lawmakers Friday that the agency was the victim of a major cyberattack in which Chinese-linked hackers gained access to unclassified documents after gaining access to remote workstations through a third-party software provider, BeyondTrust.

Managed ad