Lucene search
K

52 matches found

Information Security Automation
Information Security Automation
added 2017/06/29 9:29 p.m.828 views

Petya the Great and why *they* don’t patch vulnerabilities

I really like this. Just imagine. Quiet, routine, everyday Vulnerability Management process in organizations: scanning-patching, scanning-patching, scanning-patching… And then. Suddenly! PEEETYYA!!! And at very same moment everything changes. People from different companies start to communicate...

9.3CVSS0.3AI score0.99933EPSS
Exploits84
ThreatPost
ThreatPost
added 2017/05/23 5:33 p.m.27 views

Subtitle Hack Leaves 200 Million Vulnerable to Remote Code Execution

A proof of concept attack using malicious video subtitle files reveals how adversaries can execute remote code on PCs, Smart TVs and mobile devices using popular video players and services such as VLC Media Player, Kodi, Stremio and Popcorn Time. “This is a brand new attack vector. We haven’t see...

6.8CVSS2.1AI score0.08765EPSS
Exploits4References1
ThreatPost
ThreatPost
added 2015/04/06 12:14 p.m.8 views

Linux Australia Breached by Hackers

Linux Australia, a consortium in charge of organizing Linux conferences Down Under, acknowledged over the weekend it was breached by attackers who were able to secure access to one of its servers, and with it, potential user information. In a detailed email to users on Saturday, the group’s...

1.7AI score
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.31 views

S8Forum 3.0 - Remote Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6547/info S8Forum is prone to a remote command execution vulnerability. When a user registers with the forum, a file is created locally with the specified username. The contents of this file will be the data entered by th...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.37 views

xine 0.99.2 - Remote Stack Overflow Exploit

No description provided by source. / $ An open security advisory 6 - Xine vcd MRL input identifier management overflow 1: Bug Researcher: c0ntexatopen-security.org 2: Bug Released: July 28th 2004 3: Bug Impact Rate: Medium / Hi 4: Bug Scope Rate: Remote / Local $ This advisory and/or proof of...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2013/08/28 5:52 p.m.11 views

New York Times, Twitter and Huffington Post Domains hijacked by Syrian Electronic Army

Media companies including the New York Times, Twitter and the Huffington Post has been unavailable since Tuesday after the external malicious attack by a group of hackers supporting Syrian President Bashar Assad. For the second time this month, the New York Times' website has gone down. "The New...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2011/08/12 2:20 p.m.10 views

Severe Remote Flaw Fixed in BlackBerry Enterprise Server

There are remotely and easily exploitable vulnerabilities in the BlackBerry Enterprise Server that could allow an attacker to gain access to the server by simply sending a malicious image file to a user’s BlackBerry device. The vulnerabilities are in several version of BES for Exchange, Lotus...

0.1AI score
Exploits0References2
The Hacker News
The Hacker News
added 2011/08/11 3:51 a.m.8 views

HKEx - Hong Kong stock exchange Hacked

HKEx - Hong Kong stock exchange Hacked Trading in Hong Kong was disrupted on Wednesday by a hacking incident on the Hong Kong Exchange website. "Our current assessment that this is a result of a malicious attack by outside hacking," Charlies Li, chief executive of Hong Kong Exchanges & Clearing,...

6.7AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2011/02/07 12:0 a.m.25 views

(0Day) Hewlett-Packard Data Protector Client EXEC_SETUP Remote Code Execution Vulnerability

This vulnerability allows an attacker to execute remote code on vulnerable installations of the Hewlett-Packard Data Protector client. User interaction is not required to exploit this vulnerability. The specific flaw exists within the implementation of the EXECSETUP command. This command instruct...

10CVSS4.6AI score0.64219EPSS
Exploits20
ThreatPost
ThreatPost
added 2009/09/23 9:44 a.m.15 views

Gaming Mouse-Maker Razer Hit With Infected Firmware

Gamers trying to update their mouse or keyboard drivers from accessory maker Razer USA’s Web site recently may have gotten more than they bargained for. According to the IDG News Service, the company’s computers appear to have been hacked, and its support site used to spread malicious Trojan hors...

1.9AI score
Exploits0References3
myhack58
myhack58
added 2008/10/09 12:0 a.m.17 views

The latest Discuz! NT2. 5 vulnerability to report! - Vulnerability warning-the black bar safety net

Title: the latest Discuz! NT2. 5 vulnerability to report! Author: hackest H. S. T. This article has been published in the hacker X-Files for 2 0 0 8 P 1 0 issue of the magazine on After the author published on the blog, such as reproduced please retain this information! Summer, passion in August,...

7.8AI score
Exploits0
Exploit DB
Exploit DB
added 2008/03/11 12:0 a.m.24 views

PHP-Nuke zClassifieds Module - 'cat' SQL Injection

source: https://www.securityfocus.com/bid/28211/info The zClassifieds module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

7.4AI score
Exploits0
Rows per page
Query Builder