Stack overflow

Stack-based buffer overflow in the URI handler in DWRCC.exe in SolarWinds DameWare Mini Remote Control before 12.0 HotFix 1 allows remote attackers to execute arbitrary code via a crafted commandline argument in a link...

SolarWinds DameWare Mini Remote Control URI Handler Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SolarWinds DameWare Mini Remote Control. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

iOS then exposed a major BUG, a hacker can monitor the iPhone phone and SMS-vulnerability warning-the black bar safety net

Apple each time you upgrade the iOS system will have a lot of BUGS need to be fixed, but some of the content irrelevant, but there are also very awsome. For example, recently a new vulnerability, hackers can take vulnerability to remotely control and monitor your iPhone. According to Zerodium tea...

iBackDoor: High-Risk Code Hits iOS Apps

Introduction FireEye mobile researchers recently discovered potentially “backdoored” versions of an ad library embedded in thousands of iOS apps originally published in the Apple App Store. The affected versions of this library embedded functionality in iOS apps that used the library to display...

Hacking Team Offering Encryption Cracking Tools to Law Enforcement Agencies

Hacking Team, the infamous Italy-based spyware company that had more than 400 GB of its confidential information stolen earlier this year, has resumed its operations and started pitching new hacking tools to help US law enforcement gets around their encryption issues. Yes, Hacking Team is back wi...

Stagefright 2.0 vulnerability struck by the impact on the billion Android users-vulnerability warning-the black bar safety net

Android users Note:Due to the latest two latest stagefright vulnerability disclosure, estimated at more than 1 0 million Android users of the system will suffer this vulnerability. Yes, that stagefright vulnerability and return! This year 7 month, Zimperium company security researchers...

Rockwell Automation ControlLogix 固件上传漏洞

设备不正确验证用户，允许远程用户上传新的固件映像到Ethernet卡上，并且没有检查此固件映像是否合法或破坏，允许攻击者利用漏洞获得对设备的控制或使设备崩溃。...

SAP Afaria product exposed a series of serious vulnerabilities that affect a large number of mobile device-bug warning-the black bar safety net

Afaria is the German SAP software company developed a mobile device management MDM solutions that are currently on the market the most popular MDM solutions, there are about 6 3 0 0 a enterprise which manages 1 billion 3 0 0 million of the mobile device. ERPScan is specifically responsible for th...

VNC denial of service vulnerability(CVE-2 0 1 5-5 2 3 9)analysis-vulnerability warning-the black bar safety net

Qemu is a processor simulation software, can provide user-mode simulation and system mode simulation. When in the user mode of the simulation state will be used when dynamic translation technology allows a cpu to build the process in another cpu. VNC Virtual Network Computing is an excellent remo...

WhatsApp aeration WEB vCard vulnerability affects hundreds of millions of users-vulnerability warning-the black bar safety net

! Security firm Check Point found that, in a world with over seven million users of the social networking application WhatsApp there was a web vulnerability, as many as two billion users suffer from the impact. Vulnerability analysis The Web version of WhatsApp allows users on a PC on line access...

These Top 7 Brutal Cyber Attacks Prove 'No One is Immune to Hacking' — Part I

If you believe that your organization is not at real risk of cyber attack, then you are absolutely wrong. Incidents of massive data breaches, advanced cyber attacks coming from China, groups like Syrian Electronic Army, Hacking Point of Sale machines at retailers such as Target have splashed acro...

acsno Probe Management and Test System V3.4. Series Directory Traversal Vulnerability

Shenyang ACSNO Communication Equipment Co., Ltd. is a high-tech enterprise specializing in the development, production and sales of communication equipment software and hardware, and a member of MEF Association. There is a directory traversal vulnerability in the acsno probe management and testin...

New Versions of Carbanak Banking Malware Seen Hitting Targets in U.S. and Europe

New variants of the notorious Carbanak Trojan have surfaced in Europe and the United States, and researchers say that the malware now has its own proprietary communications protocol and the samples seen so far have been digitally signed. Carbanak has been in use for several years, and researchers...

CERT Warns of Hard-Coded Credentials in DSL SOHO Routers

DSL routers from a number of manufacturers contain hard-coded credentials that could allow a hacker to access the devices via telnet services and remotely control them. An advisory published Tuesday by the DHS-sponsored CERT at the Software Engineering Institute at Carnegie Mellon University said...

Netop Remote Control 11.52 / 12.11 Credential Issue

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-025 Product: Netop Remote Control Vendor: Netop Affected Versions: 11.52, 12.11 Tested Versions: 11.52, 12.11 Vulnerability Type: Use of Hard-coded Cryptographic Key CWE-321 Insufficiently Protected Credentials CWE-522 Risk...

NetOp Remote Control 11.52 / 12.11 Credential Issue Vulnerability

Netop Remote Control versions 11.52 and 12.11 suffer from hard-coded cryptographic key and insufficiently protected credential issues. Product: Netop Remote Control Vendor: Netop Affected Versions: 11.52, 12.11 Tested Versions: 11.52, 12.11 Vulnerability Type: Use of Hard-coded Cryptographic Key...

Model S has a security vulnerability? Tesla Fury dig Google head of security-vulnerability warning-the black bar safety net

Earlier today broke the Tesla Model S model electric car, there may be hackers exploit major security vulnerability through this vulnerability hackers can remotely control cars, and even let the car flameout, the media reported this message and of the electric car's safety questioned. Tesla in...

GE Healthcare Centricity PACS-IW Built-in Account Vulnerability (CNVD-2015-05174)

GE Healthcare Centricity PACS-IW is an image archiving and delivery system for the healthcare industry. GE Healthcare Centricity PACS-IW has built-in accounts for sa users with 'A11enda1e' passwords, allowing remote attackers to take control of the device using these accounts...

GE Healthcare Centricity PACS Server Built-in Account Vulnerability

GE Healthcare Centricity PACS is the company's suite of image archiving and delivery systems for the healthcare industry. GE Healthcare Centricity PACS Server exists with built-in accounts, nasro with a password of nasro and nasrw with a password of nasrw, allowing a remote attacker to take contr...

GE Healthcare Revolution XQ/i Built-in Account Vulnerability

Acquisition Workstation for the GE Healthcare Revolution XQ/i is a digital radiography acquisition workstation for the healthcare industry. The Acquisition Workstation for the GE Healthcare Revolution XQ/i has built-in accounts, and the sdc uses 'adw3.1' passwords, allowing remote attackers to ta...