ICE Asks Companies About ‘Ad Tech and Big Data’ Tools It Could Use in Investigations

A new federal filing from ICE demonstrates how commercial tools are increasingly being considered by the government for law enforcement and surveillance...

EUVD-2018-10465

Malware in sbrugna...

CVE-2018-18749

data-tools through 2017-07-26 has an Integer Overflow leading to an incorrect end value for the writewchars function...

azureml-designer-classic-modules (>=0.0.105 <=0.0.112), azureml-designer-core (>=0.0.21 <=0.0.29) +39 more potentially affected by CVE-2019-12410 via pyarrow (>=0.12.0 <=0.15.0)

pyarrow PYPI version =0.12.0, =0.0.105, =0.0.21, =0.0.17, =0.0.36, =0.0.9, =1.0.48.1, =0.1.0, =1.4.2, =3.0.20190405035157, =0.1.0, =0.1.1, =0.1.3 and more Source cves: CVE-2019-12410 Source advisory: OSV:GHSA-CJW4-2W9R-R8MV...

pwntools

This is an offensive tool for binary exploitation. It is a Python library called pwntools, which provides a set of tools for binary exploitation and reverse engineering. The library is designed to be used by security researchers and penetration testers to identify and exploit vulnerabilities in...

cartoframes (=1.0.0rc1), data-linter (=0.1.0) +8 more potentially affected by CVE-2019-12408 via pyarrow (>=0.14.0 <=0.14.1)

pyarrow PYPI version =0.14.0, =1.4.2, =0.1.1, =1.7.3, =0.4.5, =0.20.0, =2019.10.0, =0.1.1, =0.1.8 Source cves: CVE-2019-12408 Source advisory: OSV:PYSEC-2019-195...

CVE-2018-18749

data-tools through 2017-07-26 has an Integer Overflow leading to an incorrect end value for the writewchars function...

CVE-2018-18749

data-tools through 2017-07-26 has an Integer Overflow leading to an incorrect end value for the writewchars function...

Integer overflow

data-tools through 2017-07-26 has an Integer Overflow leading to an incorrect end value for the writewchars function...

data-tools 'tab-to-csv' function integer overflow vulnerability

data-tools is a command line tool for data extraction, data manipulation and file format conversion. An integer overflow vulnerability exists in the 'tab-to-csv' function of the tab-to-csv.c file in data-tools versions 2017-07-26 and earlier. An attacker can exploit this vulnerability to cause a...

CVE-2018-18749

The CVE-2018-18749 entry concerns the data-tools project (through 2017-07-26) with an Integer Overflow in the write_wchars function, causing an incorrect end value. Connected sources confirm the affected software/task (data-tools), the vulnerable component (write_wchars), and the root cause (inte...

CVE-2018-18749

data-tools through 2017-07-26 has an Integer Overflow leading to an incorrect end value for the writewchars function...

Microsoft Internet Explorer 6 - Visual Studio COM Object Instantiation Denial of Service

Microsoft Internet Explorer 6 - Visual Studio COM Object Instantiation Denial of Service source: https://www.securityfocus.com/bid/19572/info Microsoft Internet Explorer is prone to a denial-of-service vulnerability that occurs when instantiating Visual Studio COM objects. The vulnerability arise...