#perl

Ubuntu Security Notice USN-6926-3

Ubuntu Security Notice 6926-3 - 黄思聪 discovered that the NFC Controller Interface implementation in the Linux kernel did not properly handle certain memory allocation failure conditions, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service. It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel when modifying certain settings values through debugfs. A privileged local attacker could use this to cause a denial of service.

3 months ago

Packet Storm

Open in Source

#vulnerability #microsoft #ubuntu #linux #dos #perl #samba

Goati Track 1.0-2023 Insecure Settings

Gaati Track version 1.0-2023 suffers from an ignored default credential vulnerability.

3 months ago

Packet Storm

Open in Source

#sql #xss #csrf #vulnerability #web #ios #mac #windows #apple #google #ubuntu #linux #debian #cisco #java #php #perl #auth #ruby #firefox

Farmacia Gama 1.0 Insecure Direct Object Reference

Farmacia Gama version 1.0 suffers from an insecure direct object reference vulnerability.

3 months ago

Packet Storm

Open in Source

#sql #xss #csrf #vulnerability #web #ios #mac #windows #apple #google #ubuntu #linux #debian #cisco #java #php #perl #auth #ruby #firefox

Employee Management System 1.0 Insecure Settings

Employee Management System version 1.0 suffers from an ignored default credential vulnerability.

3 months ago

Packet Storm

Open in Source

#sql #xss #csrf #vulnerability #web #ios #mac #windows #apple #google #ubuntu #linux #debian #cisco #java #php #perl #auth #ruby #firefox

How Phishing Attacks Adapt Quickly to Capitalize on Current Events

In 2023, no fewer than 94 percent of businesses were impacted by phishing attacks, a 40 percent increase compared to the previous year, according to research from Egress. What's behind the surge in phishing? One popular answer is AI – particularly generative AI, which has made it trivially easier for threat actors to craft content that they can use in phishing campaigns, like malicious emails

3 months ago

The Hacker News

Open in Source

#web #mac #windows #apple #google #git #perl #auth #The Hacker News

New Flaws in Sonos Smart Speakers Allow Hackers to Eavesdrop on Users

Cybersecurity researchers have uncovered weaknesses in Sonos smart speakers that could be exploited by malicious actors to clandestinely eavesdrop on users. The vulnerabilities "led to an entire break in the security of Sonos's secure boot process across a wide range of devices and remotely being able to compromise several devices over the air," NCC Group security researchers Alex Plaskett and

3 months ago

The Hacker News

Open in Source

#vulnerability #ios #linux #rce #perl #bios #wifi #The Hacker News

CISA Warns of Hackers Exploiting Legacy Cisco Smart Install Feature

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has disclosed that threat actors are abusing the legacy Cisco Smart Install (SMI) feature with the aim of accessing sensitive data. The agency said it has seen adversaries "acquire system configuration files by leveraging available protocols or software on devices, such as abusing the legacy Cisco Smart Install feature." It also

3 months ago

The Hacker News

Open in Source

#vulnerability #cisco #dos #perl #buffer_overflow #auth #The Hacker News

Stolen data from scraping service National Public Data leaked online

Cybercriminals have leaked records from National Public Data, a data scraping service that provides background checks.

3 months ago

Malwarebytes

Open in Source

#web #git #perl

Microsoft’s AI Can Be Turned Into an Automated Phishing Machine

Attacks on Microsoft’s Copilot AI allow for answers to be manipulated, data extracted, and security protections bypassed, new research shows.