Debian dsa-5703 : affs-modules-5.10.0-29-4kc-malta-di - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5703 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5703-1 [email protected] https://www.debian.org/securit...

Pyrit - The Famous WPA Precomputed Cracker

Pyrit allows you to create massive databases of pre-computed WPA/WPA2-PSK authentication phase in a space-time-tradeoff. By using the computational power of Multi-Core CPUs and other platforms through ATI-Stream,Nvidia CUDA and OpenCL, it is currently by far the most powerful attack against one o...

ATEN International PE6208 安全漏洞

The ATEN International PE6208 is a power distribution unit from China-based ATEN Automation Technology ATEN International. A security vulnerability exists in the ATEN International PE6208 version 2.3.228, version 2.4.232, which originates from incorrect access control in the log management functi...

perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS

A flaw was found in Perl's CPAN, which doesn't check TLS certificates when downloading content. This happens due to verifySSL missing when suing the HTTP::Tiny library during the connection. This may allow an attacker to inject into the network path and perform a Man-In-The-Middle attack, causing...

XAMPP Resource Management Error Vulnerability

XAMPP is an easy-to-install Apache distribution that includes MariaDB, PHP, and Perl. the product is primarily used for building web servers. A resource management error vulnerability exists in XAMPP 7.3.2 and earlier versions, which stems from a failure to properly handle incoming error messages...

The vulnerability of the PowerScale OneFS operating system, related to the unlimited distribution of resources, allows a hacker to trigger a service failure.

The vulnerability of the PowerScale OneFS operating system is related to the unlimited distribution of resources. Exploiting this vulnerability can allow a attacker to cause a service failure...

DarkGate Malware: Persistent Threat in Active Distribution

...

PT-2024-40163 · Flow3 · Flow3

Name of the Vulnerable Software and Affected Versions: FLOW3 affected versions not specified Description: The issue is related to a missing signature HMAC for a request argument, which could allow an attacker to unserialize arbitrary objects within FLOW3. It is noted that code injection through...

CVE-2024-21841

Uncontrolled search path for some IntelR Distribution for GDB software before version 2024.0 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-21841

Intel Distribution for GDB prior to version 2024.0 contains an uncontrolled search path vulnerability that may allow an authenticated local user to escalate privileges. Affected product: Intel Distribution for GDB. Root cause: uncontrolled search path in the software before 2024.0. Impact: potent...

[SECURITY] Fedora 38 Update: djvulibre-3.5.28-6.fc38

DjVu is a web-centric format and software platform for distributing documents and images. DjVu can advantageously replace PDF, PS, TIFF, JPEG, and GIF for distributing scanned documents, digital documents, or high-resolution picture s. DjVu content downloads faster, displays and renders faster,...

[SECURITY] Fedora 39 Update: djvulibre-3.5.28-7.fc39

DjVu is a web-centric format and software platform for distributing documents and images. DjVu can advantageously replace PDF, PS, TIFF, JPEG, and GIF for distributing scanned documents, digital documents, or high-resolution picture s. DjVu content downloads faster, displays and renders faster,...

Intel Distribution for GDB 安全漏洞

Intel Distribution for GDB is a superset of the GNU Project Debugger GDB from Intel Corporation USA that extends some of the existing commands and functionality of GDB and in some cases adds additional debugger commands. A security vulnerability previously existed in Intel Distribution for GDB...

PT-2024-19086 · Intel · Intel Distribution For Gdb

Name of the Vulnerable Software and Affected Versions: IntelR Distribution for GDB software versions prior to 2024.0 Description: The issue is related to an uncontrolled search path in the IntelR Distribution for GDB software. This may allow an authenticated user to potentially enable escalation ...

Cyber Power Systems PowerPanel Business Edition 安全漏洞

Cyber Power Systems PowerPanel Business Edition is a suite of power management software from Cyber Power Systems, USA. The software automates the shutdown of physical and virtual infrastructures, and monitors and manages CyberPower UPS systems and network-connected PDUs Power Distribution Units. ...

UBUNTU-CVE-2024-30259

FastDDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves malformed RTPS packet, heap buffer overflow occurs on the subscriber. This can remotely crash any Fast-DDS...

CVE-2024-27852

A privacy issue was addressed with improved client ID handling for alternative app marketplaces. This issue is fixed in iOS 17.5 and iPadOS 17.5. A maliciously crafted webpage may be able to distribute a script that tracks users on other webpages...

Incident response analyst report 2023

Incident response analyst report 2023 As an information security company, our services include incident response and investigation, and malware analysis. Our customer base spans Russia, Europe, Asia, South and North America, Africa and the Middle East. Our annual Incident Response Report presents...

CVE-2024-27852

A privacy issue was addressed with improved client ID handling for alternative app marketplaces. This issue is fixed in iOS 17.5 and iPadOS 17.5. A maliciously crafted webpage may be able to distribute a script that tracks users on other webpages...

CVE-2024-30259 FastDDS heap buffer overflow when publisher sends malformed packet

FastDDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves malformed RTPS packet, heap buffer overflow occurs on the subscriber. This can remotely crash any Fast-DDS...