SUSE CVE-2016-2376

A buffer overflow vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent from the server could potentially result in arbitrary code execution. A malicious server or an attacker who intercepts the network traffic can send an invalid size for a packet...

EcoStruxure Geo SCADA Expert 信任管理问题漏洞

EcoStruxure Geo SCADA Expert is an integrated, scalable, and reliable surveillance and data acquisition SCADA software A trust management issue vulnerability exists in EcoStruxure Geo SCADA Expert, which stems from a possible man-in-the-middle attack when communication between a client and the Ge...

Design/Logic Flaw

In MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2 an authenticated attacker can change the password of his account into a new password that violates the password policy by intercepting and modifying the request that is send to t...

DEBIAN-CVE-2013-4488

libgadu before 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers...

By wave CMS arbitrary file type upload get webshell-vulnerability warning-the black bar safety net

Brief description: There is no uploaded file type is determined, you can directly Upload a dynamic script to get webshell Detailed description: From the official website to download the cms code in the source directory edit directory batupload. aspx file By decompile to see source code as follows...

With SockOnline software easily break the port restriction-vulnerability warning-the black bar safety net

Fiis divided into the Sock, HTTP, FTP, and other types, respectively suitable for different applications. However, sometimes the network is only open 8 0 port for HTTP web browsing. Faced with this situation, we must do nothing? Of course not, in SockOnline this special agent software help, we ca...