CVE-2025-34125

An unauthenticated command injection vulnerability exists in the cookie handling process of the lighttpd web server on D-Link DSP-W110A1 firmware version 1.05B01. This occurs when specially crafted cookie values are processed, allowing remote attackers to execute arbitrary commands on the...

Duqu Attackers Wiped Out C&C Infrastructure After Public Disclosures

Researchers have known for years that virus writers and attackers pay close attention to the analyses researchers do of their work, and it appears that the Duqu authors are no exception. Shortly after the first public reports about Duqu emerged in early autumn, the crew behind Duqu wiped out all ...

trojan-backdoor-ftp.win.tue.nl.txt

Date: Sun, 24 Jan 1999 09:03:42 -0500 From: Trevor Johnson To: [email protected] Subject: Re: util-linux compromised I just received the following letter: Date: Sun, 24 Jan 1999 04:01:55 -0500 EST From: John Stange Subject: util-linux compromised? I grabbed util-linux-2.9g yesterday from...