8751 matches found
Stack Overflow Vulnerability in Devs Files of Turing Open Object Development Environment
Beijing Turing Kaiwu Technology Co., Ltd. is a company that deals with technology development; computer system services; data processing; basic software services; application software services and other items. A stack overflow vulnerability exists in the Devs file of the Turing Kaiwu development...
TIBCO Security Advisory: April 24, 2019 - TIBCO BPM Enterprise -2019-8995
TIBCO BPM Enterprise Open Redirect Vulnerability Original release date: April 24,2019 Last revised: CVE-2019-8995 Source: TIBCO Software Inc. TIBCO ActiveMatrix BPM Open Redirect Vulnerability Original release date: April 24, 2019 Last revised: -- Source: TIBCO Software Inc. Systems Affected TIBC...
[SECURITY] Fedora 29 Update: meson-0.50.0-4.fc29
Meson is a build system designed to optimize programmer productivity. It aims to do this by providing simple, out-of-the-box support for modern software development tools and practices, such as unit tests, coverage reports, Valgrind, CCache and the like...
SAP HANA Code Issue Vulnerability
SAP HANA is a set of high-performance real-time data analytics platform from Germany's SAP SAP. The platform provides data query functions to support users to query real-time business data query and analysis. SAP HANA has a code issue vulnerability that originates from an improperly designed or...
Design/Logic Flaw
A vulnerability in the development shell devshell authentication for Cisco Aironet Series Access Points APs running the Cisco AP-COS operating system could allow an authenticated, local attacker to access the development shell without proper authentication, which allows for root access to the...
CVE-2019-1654
A vulnerability in the development shell devshell authentication for Cisco Aironet Series Access Points APs running the Cisco AP-COS operating system could allow an authenticated, local attacker to access the development shell without proper authentication, which allows for root access to the...
CVE-2019-1654
A vulnerability in the development shell devshell authentication for Cisco Aironet Series Access Points APs running the Cisco AP-COS operating system could allow an authenticated, local attacker to access the development shell without proper authentication, which allows for root access to the...
CVE-2019-1654 Cisco Aironet Series Access Points Development Shell Access Vulnerability
A vulnerability in the development shell devshell authentication for Cisco Aironet Series Access Points APs running the Cisco AP-COS operating system could allow an authenticated, local attacker to access the development shell without proper authentication, which allows for root access to the...
[SECURITY] Fedora 30 Update: toolbox-0.0.8-2.fc30
Toolbox is offers a familiar RPM based environment for developing and debugging software that runs fully unprivileged using Podman...
Starbucks: Store Development Resource Center was vulnerable to a Remote Code Execution - Unauthenticated Remote Command Injection (CVE-2019-0604)
l00ph0le discovered an endpoint on the Store Development Resource Center site at https://sdrc.starbucks.com/layouts/15/picker.aspx was vulnerable to a deserialization RCE in Microsoft Sharepoint per CVE-2019-0604. @l00ph0le — thank you for reporting this vulnerability, your patience while we...
Microsoft Open Enclave SDK Information Disclosure Vulnerability
Microsoft Open Enclave SDK is a Microsoft SDK Software Development Kit for building secure zone applications in C and C ++. An information disclosure vulnerability exists in the Open Enclave SDK, which arises from errors such as configuration during operation of a networked system or product. An...
Say hello to Baldr, a new stealer on the market
By William Tsing, Vasilios Hioureas, and Jérôme Segura Over the past few months, we have noticed increased activity and development of new stealers. Unlike many banking Trojans that wait for the victim to log into their bank's website, stealers typically operate in grab-and-go mode. This means th...
Pyrit - The Famous WPA Precomputed Cracker
Pyrit allows you to create massive databases of pre-computed WPA/WPA2-PSK authentication phase in a space-time-tradeoff. By using the computational power of Multi-Core CPUs and other platforms through ATI-Stream,Nvidia CUDA and OpenCL, it is currently by far the most powerful attack against one o...
8 Tips and Best Practices to Build a Solid Cloud Migration Strategy for 2019
Here are eight fool-proof practices that can help you move your workloads to the cloud. A quick look at cloud migration. Cloud migration involves moving an organization’s data storage and IT operations to a cloud network. Cloud computing services are hosted in a multi-tenant environment and can b...
Hackers Could Turn Pre-Installed Antivirus App on Xiaomi Phones Into Malware
What could be worse than this, if the software that's meant to protect your devices leave backdoors open for hackers or turn into malware? Researchers today revealed that a security app that comes pre-installed on more than 150 million devices manufactured by Xiaomi, China's biggest and world's 4...
Mozilla Thunderbird Code Issue Vulnerability
Mozilla Thunderbird is the United States Mozilla Foundation of a set of independent from MozillaApplicationSuite e-mail client software. The software supports IMAP and POP mail protocols as well as HTML mail format. A code issue vulnerability exists in versions of Mozilla Thunderbird prior to 60....
[SECURITY] Fedora 29 Update: edk2-20190308stable-1.fc29
EDK II is a development code base for creating UEFI drivers, applications and firmware images...
Fedora Update for qt FEDORA-2019-b5e690b96e
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Mimikatz v2.2.0 - A Post-Exploitation Tool to Extract Plaintexts Passwords, Hash, PIN Code from Memory
mimikatz is a tool I've made to learn C and make somes experiments with Windows security. It's now well known to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory. mimikatz can also perform pass-the-hash, pass-the-ticket or build Golden tickets. But that's not all!...
[SECURITY] Fedora 29 Update: qt-4.8.7-45.fc29
Qt is a software toolkit for developing applications. This package contains base tools, like string, xml, and network handling...