931 matches found
New 'Nice Pack' Exploit Kit Found, Thousands of Owned Sites Redirecting Users to Attack Site
A new exploit pack has appeared on the scene in the last week or so and it already is causing trouble for users, with thousands of compromised Web sites redirecting users to a page that is hosting the pack and exploiting vulnerabilities on their machines to install malware. The attackers behind t...
Military Contractor Mitsubishi hacked
Military Contractor Mitsubishi hacked Mitsubishi Heavy Industries Ltd said on Monday that its computers had been hacked into, with one newspaper saying the target was Japan's biggest defence contractor's factories for submarines, missiles and nuclear power plant components. "There is no possibili...
Serious SCADA Security Flaw Affects Critical Infrastructure Firms
The U.S.’s Computer Emergency Response Team CERT issued a warning to critical infrastructure firms on Wednesday about a serious security hole in products from Massachusetts firm Iconics that could leave critical systems vulnerable to remote attacks. U.S. companies in the electricity, oil and gas,...
October, 2006: 9.6 million Sony batteries recalled after reports of overheating
This was just the first in what would prove to be a string of embarrassments to the Japanese firm over the manufacture of laptop batteries. It began with reports in both Japan and the U.S. about Sony-manufactured lithium ion batteries that were overheating and, in some cases, bursting into flames...
Famous Israeli company websites Hacked by OldChildz (Turkish Hackers)
Famous Israeli company websites Hacked by OldChildz Turkish Hackers Hacked Sites and Mirrors : https://be10.co.il https://www.zero-h.com/mirror/id/66321 https://gagotreafim.com An Israeli Construction Company https://www.zero-h.com/mirror/id/66320 https://kasafot.com A manufacturing company in th...
Irish Banking Fraud Ring Uncovered
A Moldovan man alleged to be the mastermind behind an international fraud ring that targeted both private and corporate bank accounts has been arrested in Limerick, Ireland, in a joint operation by Gardai and customs officials. According to a report in the Irish Independent, this operation was...
VUPEN Security Research - Microsoft Office Word Document Array Indexing Vulnerability (CVE-2010-2750)
VUPEN Security Research - Microsoft Office Word Document Array Indexing Vulnerability CVE-2010-2750 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- Microsoft Office Word, included in the Microsoft Office suite, is a powerful authoring program that gives the ability t...
VUPEN Security Research - Winamp Player FLV Data Processing Multiple Overflow Vulnerabilities
VUPEN Security Research - Winamp Player FLV Data Processing Multiple Overflow Vulnerabilities http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Winamp is a proprietary media player for Windows-based PCs, written by Nullsoft, now a subsidiary of AOL. It is...
New Study Sees Need for Better Software Integrity Controls
Software security has become one of the more widely discussed and debated topics in the security industry in the last few years, as many software vendors and enterprises both large and small have begun to to focus considerable attention on improving the processes they have in place for producing...
VUPEN Security Research - Apple Safari WebKit HTML Button Use-after-free Vulnerability (CVE-2010-1392)
VUPEN Security Research - Apple Safari WebKit HTML Button Use-after-free Vulnerability CVE-2010-1392 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Safari is a web browser developed by Apple. As of February 2010, Safari was the fourth most widely used browser, with...
CVE-2009-0171
The Sun SPARC Enterprise M4000 and M5000 Server, within a certain range of serial numbers, allows remote attackers to use the manufacturing root password, perform a root login to the eXtended System Control Facility Unit aka XSCFU or Service Processor, and have unspecified other impact...
CVE-2009-0171
The Sun SPARC Enterprise M4000 and M5000 Server, within a certain range of serial numbers, allows remote attackers to use the manufacturing root password, perform a root login to the eXtended System Control Facility Unit aka XSCFU or Service Processor, and have unspecified other impact...
Abarcar Manufacturing System Script SQL Injection
abarcar Manufacturer System Script plistings.php listingid Blind/Remote sql inj plistings.php listingid sql inj http://www.abarcar.com/content17.php ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 31.12.2008 Home:...
Design/Logic Flaw
Multiple PHP remote file inclusion vulnerabilities in FrontAccounting FA 1.12 allow remote attackers to execute arbitrary PHP code via a URL in the pathtoroot parameter to 1 access/logout.php or certain PHP scripts under 2 admin/, 3 dimensions/, 4 gl/, 5 inventory/, 6 manufacturing/, 7 purchasing...
PT-2007-6241 · Frontaccounting · Frontaccounting
Multiple PHP remote file inclusion vulnerabilities in FrontAccounting FA 1.12 allow remote attackers to execute arbitrary PHP code via a URL in the path to root parameter to 1 access/logout.php or certain PHP scripts under 2 admin/, 3 dimensions/, 4 gl/, 5 inventory/, 6 manufacturing/, 7...
Unfixed XSS vulnerability at www.humboldtmfg.com
Security researcher CoNqUeRoR, has submitted on 06/07/2007 a cross-site-scripting XSS vulnerability affecting www.humboldtmfg.com, which at the time of submission ranked 951366 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/07/2007. It is...
SQL Server 2017 RTM Cumulative Update (CU) 25 KB5003830
SQL Server 2017 RTM Cumulative Update CU 25 KB5003830...
SQL Server 2022 RTM Cumulative Update (CU) 11 KB5032679
SQL Server 2022 RTM Cumulative Update CU 11 KB5032679...
SQL Server 2025 RTM Cumulative Update (CU) 4 KB5081495
SQL Server 2025 RTM Cumulative Update CU 4 KB5081495...
SQL Server 2022 RTM Cumulative Update (CU) 13 KB5036432
SQL Server 2022 RTM Cumulative Update CU 13 KB5036432...