메뉴 건너뛰기

메리메리쩜넷넷

Since 2002

Python || Malware || Security News Grabber

Do NOT Hack this machine!!

컨텐츠 보기기

   보안뉴스 | 최신기사
   보안뉴스 | 긴급경보
   AhnLab 최신 보안뉴스
   AhnLab 악성코드 정보
   NIST NDV
   Krebs On Security
  • CVE-2011-4455 (tiki)

    2019년 11월 21일

    Multiple cross-site scripting vulnerabilities in Tiki 7.2 and earlier allow remote attackers to inject a

  • CVE-2011-4454 (tiki)

    2019년 11월 21일

    Multiple cross-site scripting vulnerabilities in Tiki 8.0 RC1 and earlier allow remote attackers to inje

  • CVE-2010-4659 (statusnet)

    2019년 11월 21일

    Cross-site scripting (XSS) vulnerability in statusnet through 2010 in error message contents.

  • CVE-2011-0529 (debian_linux, weborf)

    2019년 11월 21일

    Weborf before 0.12.5 is affected by a Denial of Service (DOS) due to malformed fields in HTTP.

  • CVE-2010-4660 (statusnet)

    2019년 11월 21일

    Unspecified vulnerability in statusnet through 2010 due to the way addslashes are used in SQL string esc

  • CVE-2011-1028 (debian_linux, smarty)

    2019년 11월 21일

    The $smarty.template variable in Smarty3 allows attackers to possibly execute arbitrary PHP code via the

  • CVE-2011-3352 (zikula)

    2019년 11월 20일

    Zikula 1.3.0 build #3168 and probably prior has XSS flaw due to improper sanitization of the 'themename'

  • CVE-2011-2922 (ktsuss)

    2019년 11월 20일

    ktsuss versions 1.4 and prior spawns the GTK interface to run as root. This can allow a local attacker t

  • CVE-2011-2921 (ktsuss)

    2019년 11월 20일

    ktsuss versions 1.4 and prior has the uid set to root and does not drop privileges prior to executing us

  • CVE-2011-4967 (enterprise_linux, tog-pegasus)

    2019년 11월 20일

    tog-Pegasus has a package hash collision DoS vulnerability

  • CVE-2011-4954 (cobbler)

    2019년 11월 20일

    cobbler has local privilege escalation via the use of insecure location for PYTHON_EGG_CACHE

  • CVE-2011-4952 (cobbler)

    2019년 11월 20일

    cobbler: Web interface lacks CSRF protection when using Django framework

  • CVE-2011-4919 (mpack)

    2019년 11월 20일

    mpack 1.6 has information disclosure via eavesdropping on mails sent by other users

  • CVE-2008-7273 (iceweasel-firegpg)

    2019년 11월 19일

    A symlink issue exists in Iceweasel-firegpg before 0.6 due to insecure tempfile handling.

  • CVE-2011-2916 (qtnx)

    2019년 11월 16일

    qtnx 0.9 stores non-custom SSH keys in a world-readable configuration file. If a user has a world-readab

  • CVE-2009-5047 (debian_linux, jetty)

    2019년 11월 16일

    Jetty 6.x through 6.1.22 suffers from an escape sequence injection vulnerability from an attack vector b

  • CVE-2011-1930 (debian_linux, klibc)

    2019년 11월 14일

    In klibc 1.5.20 and 1.5.21, the DHCP options written by ipconfig to /tmp/net-$DEVICE.conf are not proper

  • CVE-2011-1588 (debian_linux, opensuse, thunar)

    2019년 11월 14일

    Thunar before 1.3.1 could crash when copy and pasting a file name with % format characters due to a form

  • CVE-2011-1490 (debian_linux, opensuse, rsyslog)

    2019년 11월 14일

    A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages are logged when

  • CVE-2011-1489 (debian_linux, opensuse, rsyslog)

    2019년 11월 14일

    A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages were logged whe

  • CVE-2011-1488 (debian_linux, opensuse, rsyslog)

    2019년 11월 14일

    A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages are logged when

  • CVE-2011-1145 (debian_linux, enterprise_linux, opensuse, unixodbc)

    2019년 11월 14일

    The SQLDriverConnect() function in unixODBC before 2.2.14p2 have a possible buffer overflow condition wh

  • CVE-2011-1136 (debian_linux, tesseract)

    2019년 11월 14일

    In tesseract 2.03 and 2.04, an attacker can rewrite an arbitrary user file by guessing the PID and creat

  • CVE-2011-1070 (debian_linux, v86d)

    2019년 11월 14일

    v86d before 0.1.10 do not verify if received netlink messages are sent by the kernel. This could allow u

  • CVE-2010-5108 (debian_linux, trac)

    2019년 11월 14일

    Trac 0.11.6 does not properly check workflow permissions before modifying a ticket. This can be exploite

  • CVE-2010-4664 (consolekit, debian_linux, enterprise_linux)

    2019년 11월 14일

    In ConsoleKit before 0.4.2, an intended security policy restriction bypass was found. This flaw allows a

  • CVE-2010-4661 (debian_linux, enterprise_linux, fedora, opensuse, udisks)

    2019년 11월 14일

    udisks before 1.0.3 allows a local user to load arbitrary Linux kernel modules.

  • CVE-2010-4657 (debian_linux, enterprise_linux, php)

    2019년 11월 14일

    PHP5 before 5.4.4 allows passing invalid utf-8 strings via the xmlTextWriterWriteAt-tribute, which are th

  • CVE-2010-4654 (debian_linux, poppler)

    2019년 11월 14일

    poppler before 0.16.3 has malformed commands that may cause corruption of the internal stack.

  • CVE-2010-4653 (debian_linux, poppler)

    2019년 11월 14일

    An integer overflow condition in poppler before 0.16.3 can occur when parsing CharCodes for fonts.

  • DDoS-for-Hire Boss Gets 13 Months Jail Time

    Br
    2019년 11월 20일

    A 21-year-old Illinois man was sentenced last week to 13 months in prison for running multiple DDoS-for-

  • Ransomware Bites 400 Veterinary Hospitals

    Br
    2019년 11월 19일

    National Veterinary Associates (NVA), a California company that owns more than 700 animal care facilitie

  • Why Were the Russians So Set Against This Hacker Being Extradited?

    Br
    2019년 11월 19일

    The Russian government has for the past four years been fighting to keep 29-year-old alleged cybercrimin

  • Orcus RAT Author Charged in Malware Scheme

    Br
    2019년 11월 14일

    In July 2016, KrebsOnSecurity published a story identifying a Toronto man as the author of the Orcus RAT

  • Patch Tuesday, November 2019 Edition

    Br
    2019년 11월 13일

    Microsoft today released updates to plug security holes in its software, including patches to fix at lea

  • Retailer Orvis.com Leaked Hundreds of Internal Passwords on Pastebin

    Br
    2019년 11월 12일

    Orvis, a Vermont-based retailer that specializes in high-end fly fishing equipment and other sporting go

  • Study: Ransomware, Data Breaches at Hospitals tied to Uptick in Fatal Heart Attacks

    Br
    2019년 11월 8일

    Hospitals that have been hit by a data breach or ransomware attack can expect to see an increase in the

  • NCR Barred Mint, QuickBooks from Banking Platform During Account Takeover Storm

    Br
    2019년 11월 4일

    Banking industry giant NCR Corp. [NYSE: NCR] late last month took the unusual step of temporarily blocki

  • Breaches at NetworkSolutions, Register.com, and Web.com

    Br
    2019년 10월 31일

    Top domain name registrars NetworkSolutions.com-, Register.com and Web.com are asking customers to reset

  • Takeaways from the $566M BriansClub breach

    Br
    2019년 10월 30일

    Reporting on the exposure of some 26 million stolen credit cards leaked from a top underground cybercrim

   AlienVault
   TheHackerNews
위로