16 matches found
2024 Predictions for Cybersecurity: The Rise of AI Brings New Challenges
The emergence of generative AI has put new resources in the hands of both attackers and defenders, and in 2024, Imperva believes the technology will have an even greater impact. Understanding how attackers are leveraging the technology will be critical for organizations seeking to keep...
360 SkyEye traffic sensor has information leakage vulnerability
Ltd. is a company that focuses on the cyberspace security market and provides a new generation of enterprise-class network security products and services to government and corporate users. 360 SkyEye Traffic Sensor has an information leakage vulnerability that can be exploited by attackers to...
The XDR Payoff: Better Security Posture
As the extended detection and response XDR market grows and evolves, it’s a great opportunity to learn about the positive outcomes experienced by organizations that have invested in these capabilities...
What’s in a Name? – Why Gartner Picking “Application Vulnerability Correlation” is an Important Step for the Application Security Market
If you havent seen it yet, Gartner just published its "Hype Cycle for Application Security, 2016" written by Gartner Analyst Ayal Tirosh with support from colleague Lawrence Pingree Gartner clients can view it at https://www.gartner.com/doc/3376617/hype-cycle-application-security-. This is...
Rifatron Intelligent Digital Security System - animate.cgi Stream Disclosure
Rifatron Intelligent Digital Security System - animate.cgi Stream Disclosure !/bin/bash Rifatron Intelligent Digital Security System animate.cgi Stream Disclosure Vendor: Rifatron Co., Ltd. | SAM MYUNG Co., Ltd. Product web page: http://www.rifatron.com Affected version: 5brid DVR HD6-532/516,...
This Week in Security News: New Zero-Day Vulnerability Findings and Mobile Phishing Scams
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn how music festival goers need to be on guard for phishing attacks when trying to find a lost iPhone. Also, read how Trend Micro...
How Will Companies Deploy Industrial IoT Security Solutions?
Industrial IoT IIoT devices will comprise the majority of the billions of IoT devices deployed over the next decade. How will the information security market meet this onslaught of technology? The consumer market is not a useful guide for this analysis. Consumers buy in small quantities and choos...
Schubitrix - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities
HackApp vulnerability scanner discovered that application Schubitrix published at the 'play' market has multiple vulnerabilities...
do - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application do published at the 'play' market has multiple vulnerabilities...
Sling Kong - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities
HackApp vulnerability scanner discovered that application Sling Kong published at the 'play' market has multiple vulnerabilities...
Meter Watch Face for Wear - Suspicious files vulnerabilities
HackApp vulnerability scanner discovered that application Meter Watch Face for Wear published at the 'play' market has multiple vulnerabilities...
[PT-2013-17] Arbitrary Files Reading in mnoGoSearch
----------------------------------------------------------- PT-2013-17 Positive Technologies Security Advisory Arbitrary Files Reading in mnoGoSearch ----------------------------------------------------------- --- Vulnerable software mnoGoSearch Version: 3.3.12 and earlier Application link:...
PT-2013-36: XML External Entity Injection in Wonderware Win-XML Exporter
Positive Research Center experts have discovered "XML External Entity Injection" vulnerability in Wonderware Win-XML Exporter. If an attacker manages to make a victim open a project that contains specially crafted XML, Wonderware Win-XML Exporter will automatically send the contents of local or...
[PT-2011-21] SQL injection vulnerability in OneOrZero AIMS
---------------------------------------------------------------------- PT-2011-21 Positive Technologies Security Advisory SQL injection vulnerability in OneOrZero AIMS ---------------------------------------------------------------------- ---Vulnerable software OneOrZero AIMS Version: 2.7.0 and...
[PT-2011-29] Arbitrary file reading and arbitrary code execution in Router Manager for D-Link DIR-300
---------------------------------------------------------------------- PT-2011-29 Positive Technologies Security Advisory Arbitrary file reading and arbitrary code execution in Router Manager for D-Link DIR-300. ---------------------------------------------------------------------- ---Vulnerable...
PT-2009-05: CA Internet Security Suite Denial of Service Vulnerability
Positive Technologies Research Team has discovered a denial of service DoS vulnerability in CA Internet Security Suite. The IOCTL handler in vetmonnt.sys does not properly validate buffer data associated with the Irp object, which allows local users to crash the system. Solution Install latest...