54 matches found
Malicious borrower can create pool imbalance by tricking the V2 pool to send lesser number of long tokens in exchange for short tokens
Lines of code Vulnerability details Impact Timeswap V2 Pool works on constant product AMM where total long tokens & short tokens follow the equation total long total short = L. Any increase in long tokens has to be accompanied with a proportionate drop in short tokens and viceversa to ensure that...
Oracle may be relying on a low reserves pair, which is easy to manipulate
Lines of code Vulnerability details Impact While the observations isn't easy to manipulate, it's still possible to manipulate some of them using an MEV bot and some tokens. In case of a pair with low reserves, the manipulation is going to be cheaper and might be worth for an attacker. Since there...
September 30, 2021—KB5005611 (OS Builds 19041.1266, 19042.1266, and 19043.1266) Preview
None None...
Artificial Intelligence ban slammed for failing to address “vast abuse potential”
A written proposal to ban several uses of artificial intelligence AI and to place new oversight on other “high-risk” AI applications—published by the European Commission this week—met fierce opposition from several digital rights advocates in Europe. Portrayed as a missed opportunity by privacy...
The vulnerability of the FreeRDP remote desktop protocol, caused by indexing errors, allows a hacker to trigger a service failure or a client-side malfunction, resulting in the absence or distortion of sound.
The vulnerability of the FreeRDP remote desktop protocol is caused by indexing errors. Exploiting this vulnerability allows a malicious actor to cause service failures or malfunctions in the client-side component, resulting in the absence or distortion of audio signals...
Friday Squid Blogging: Squid Eyeballs
Details on how a squid's eye corrects for underwater distortion: Spherical lenses, like the squids', usually can't focus the incoming light to one point as it passes through the curved surface, which causes an unclear image. The only way to correct this is by bending each ray of light differently...
Fedora 26 : tcpreplay (2017-8306577cc7)
Here is what is fixed in this release : - Fix reporting of rates 1Mbps 348 - Option --unique-ip not working properly 346 ---- Features and fixes include : - MAC rewriting capabilities by Pedro Arthur 313 - Fix several issues identified by Coverity 305 - Packet distortion --fuzz-seed option by...
Fedora 24 : tcpreplay (2017-7980b5e846)
Here is what is fixed in this release : - Fix reporting of rates 1Mbps 348 - Option --unique-ip not working properly 346 ---- Features and fixes include : - MAC rewriting capabilities by Pedro Arthur 313 - Fix several issues identified by Coverity 305 - Packet distortion --fuzz-seed option by...
Fedora 25 : tcpreplay (2017-5e945de883)
Here is what is fixed in this release : - Fix reporting of rates 1Mbps 348 - Option --unique-ip not working properly 346 ---- Features and fixes include : - MAC rewriting capabilities by Pedro Arthur 313 - Fix several issues identified by Coverity 305 - Packet distortion --fuzz-seed option by...
StoreFront Header Branding Logo Display shows distorted when zoom is applied to browser (chrome, IE, Edge, Firefox)
When a custom logo is applied to a StoreWeb in Storefront 3.x and zoom feature on browser is used, the logo will be cut off and will not be displayed properly. This behavior can be seen in multiple browser versions...
Mozilla Firefox Denial of Service Vulnerability (CNVD-2015-02201)
Mozilla Firefox is a web browser developed by the Mozilla Foundation in conjunction with the open source community. A denial of service vulnerability exists in versions of Mozilla Firefox prior to 37.0 due to the program failing to properly handle image distortion. This allows remote attackers to...
Mozilla Firefox QCMS has multiple vulnerabilities
Mozilla Firefox is a web browser released by Mozilla. Mozilla Firefox QCMS suffers from a sensitive information and denial of service vulnerability. The failure to properly handle image distortion vulnerability allows remote attackers to exploit the vulnerability to construct malicious HTML pages...
Call Center Phone Fraud for Fun at Profit at Black Hat
Reconnaissance in the context of targeted attacks usually involves scouring freely available online resources such as social media and developer forums. Personal information willfully posted to these sites are clues a hacker can use to build a profile on a target, map systems and network...
PHP-Nuke 5.5 , Phortail 1.2.1 , Avotravis 2.1
PHP-Nuke 5.5 - Cross Site Scripting - Bad use of cookies. More details : In french : http://www.ifrance.com/kitetoua/tuto/PHPNuke55.txt Translated by Google : http://translate.google.com/translate?u=http3A 2F2Fwww.ifrance.com2Fkitetoua2Ftuto 2FPHPNuke55.txt&langpair=fr7Cen&hl=en&prev=...