메뉴 건너뛰기

메리메리쩜넷넷

Since 2002

Python || Malware || Security News Grabber

Do NOT Hack this machine!!

컨텐츠 보기기

   보안뉴스 | 최신기사
   보안뉴스 | 긴급경보
   AhnLab 최신 보안뉴스
   AhnLab 악성코드 정보
   NIST NDV
   Krebs On Security
  • CVE-2018-11105 (wp_live_chat_support)

    2018년 5월 16일

    There is stored cross site scripting in the wp-live-chat-support plugin before 8.0.08 for WordPress via

  • CVE-2018-3661 (selview, syscfg)

    2018년 5월 15일

    Buffer overflow in Intel system Configuration utilities selview.exe and syscfg.exe before version 14 bui

  • CVE-2018-3634 (online_connect_access)

    2018년 5월 15일

    Parameter corruption in NDIS filter driver in Intel Online Connect Access 1.9.22.0 allows an attacker to

  • CVE-2018-3611 (graphics_driver)

    2018년 5월 15일

    Bounds check vulnerability in User Mode Driver in Intel Graphics Driver 15.40.x.4 and 21.20.x.x allows u

  • CVE-2018-1131 (infinispan, jboss_data_grid)

    2018년 5월 15일

    Infinispan permits improper deserialization of trusted data via XML and JSON transcoders under certain s

  • CVE-2018-10825 (mimo_baby_2_firmware)

    2018년 5월 15일

    Mimo Baby 2 devices do not use authentication or encryption for the Bluetooth Low Energy (BLE) communica

  • CVE-2018-11102 (libav)

    2018년 5월 15일

    An issue was discovered in Libav 12.3. A read access violation in the mov_probe function in libavformat/

  • CVE-2018-11100 (libming)

    2018년 5월 15일

    The decompileSETTARGET function in decompile.c in libming through 0.4.8 mishandles cases where the heade

  • CVE-2018-11098 (frog_cms)

    2018년 5월 15일

    An issue was discovered in Frog CMS 0.9.5. There is a file upload vulnerability via the admin/?/plugin/f

  • CVE-2018-11097 (cstring)

    2018년 5월 15일

    An issue was discovered in cloudwu/cstring through 2016-11-09. There is a memory leak vulnerability that

  • CVE-2018-11095 (libming)

    2018년 5월 15일

    The decompileJUMP function in decompile.c in libming through 0.4.8 mishandles cases where the header ind

  • CVE-2018-11091 (myprocurenet)

    2018년 5월 15일

    An issue was discovered in MyBiz MyProcureNet 5.0.0. A malicious file can be uploaded to the webserver b

  • CVE-2017-12127 (edr-810_firmware)

    2018년 5월 15일

    A password storage vulnerability exists in the operating system functionality of Moxa EDR-810 V4.1 build

  • CVE-2017-12126 (edr-810_firmware)

    2018년 5월 15일

    An exploitable cross-site request forgery vulnerability exists in the web server functionality of Moxa E

  • CVE-2017-12123 (edr-810_firmware)

    2018년 5월 15일

    An exploitable clear text transmission of password vulnerability exists in the web server and telnet fun

  • CVE-2018-8843 (arena)

    2018년 5월 15일

    Rockwell Automation Arena versions 16.10.00 and prior contains a use after free vulnerability caused by

  • CVE-2018-10990 (tg1682g_firmware)

    2018년 5월 14일

    On Arris Touchstone Telephony Gateway TG1682G 9.1.103J6 devices, a logout action does not immediately de

  • CVE-2018-10989 (tg1682g_firmware)

    2018년 5월 14일

    Arris Touchstone Telephony Gateway TG1682G 9.1.103J6 devices are distributed by some ISPs with a default

  • CVE-2018-10252 (wcb6200q_firmware)

    2018년 5월 14일

    An issue was discovered on Actiontec WCB6200Q before 1.1.10.20a devices. The admin login session cookie

  • CVE-2018-5230 (jira)

    2018년 5월 14일

    The issue collector in Atlassian Jira before version 7.6.6, from version 7.7.0 before version 7.7.4, fro

  • CVE-2018-0580 (clip_studio_action, clip_studio_modeler, clip_studio_paint)

    2018년 5월 14일

    Untrusted search path vulnerability in CELSYS, Inc CLIP STUDIO series (CLIP STUDIO PAINT (for Windows) E

  • CVE-2018-0579 (open_graph_for_facebook,_google+_and_twitter_card_tags)

    2018년 5월 14일

    Cross-site scripting vulnerability in Open Graph for Facebook, Google+ and Twitter Card Tags plugin prio

  • CVE-2018-0568 (joruri_gw)

    2018년 5월 14일

    Unrestricted file upload vulnerability in SiteBridge Inc. Joruri Gw Ver 3.2.0 and earlier allows remote

  • CVE-2017-16860 (application_links)

    2018년 5월 14일

    The invalidRedirectUrl template in Atlassian Application Links before version 5.2.7, from version 5.3.0

  • CVE-2018-10944 (rasputin_online_coin)

    2018년 5월 14일

    The request_dividend function of a smart contract implementation for ROC (aka Rasputin Online Coin), an

  • CVE-2018-11033 (xpdf)

    2018년 5월 14일

    The DCTStream::readHuffS-ym function in Stream.cc in the DCT decoder in xpdf before 4.00 allows remote at

  • CVE-2018-11032 (phprap)

    2018년 5월 14일

    PHPRAP 1.0.4 through 1.0.8 has SQL Injection via the application/home/con-troller/project.php search() fu

  • CVE-2018-11031 (phprap)

    2018년 5월 14일

    application/home/con-troller/debug.php in PHPRAP 1.0.4 through 1.0.8 has SSRF via the /debug URI, as demo

  • CVE-2018-11013 (dir-816_a2_firmware)

    2018년 5월 14일

    Stack-based buffer overflow in the websRedirect function in GoAhead on D-Link DIR-816 A2 (CN) routers wi

  • CVE-2018-8897 (debian_linux, diskstation_manager, enterprise_linux_server, enterprise_linux_workstation, enterprise_virtualization_manager, freebsd, mac_os_x, skynas, ubuntu_linux, xen, xenserver)

    2018년 5월 9일

    A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Software Developer's

  • Supreme Court: Police Need Warrant for Mobile Location Data

    Br
    2018년 6월 23일

    The U.S. Supreme Court today ruled that the government needs to obtain a court-ordered warrant to gather

  • AT&T, Sprint, Verizon to Stop Sharing Customer Location Data With Third Parties

    Br
    2018년 6월 20일

    In the wake of a scandal involving third-party companies leaking or selling precise, real-time location

  • Google to Fix Location Data Leak in Google Home, Chromecast

    Br
    2018년 6월 18일

    Google in the coming weeks is expected to fix a location privacy leak in two of its most popular consume

  • Librarian Sues Equifax Over 2017 Data Breach, Wins $600

    Br
    2018년 6월 14일

    In the days following revelations last September that big-three consumer credit bureau Equifax had been

  • Microsoft Patch Tuesday, June 2018 Edition

    Br
    2018년 6월 13일

    Microsoft today pushed out a bevy of software updates to fix more than four dozen security holes in Wind

  • Bad .Men at .Work. Please Don’t .Click

    Br
    2018년 6월 11일

    Web site names ending in new top-level domains (TLDs) like .men, .work and .click are some of the riskie

  • Adobe Patches Zero-Day Flash Flaw

    Br
    2018년 6월 8일

    Adobe has released an emergency update to address a critical security hole in its Flash Player browser p

  • Further Down the Trello Rabbit Hole

    Br
    2018년 6월 6일

    Last month's story about organizations exposing passwords and other sensitive data via collaborative onl

  • Researcher Finds Credentials for 92 Million Users of DNA Testing Firm MyHeritage

    Br
    2018년 6월 6일

    MyHeritage, an Israeli-based genealogy and DNA testing company, disclosed today that a security research

  • Are Your Google Groups Leaking Data?

    Br
    2018년 6월 1일

    Google is reminding organizations to review how much of their Google Groups mailing lists should be publ

   AlienVault
   TheHackerNews
  • MassMiner Malware Targeting Web Servers

    2018년 5월 2일

    Written in collaboration wih Fernando Martinez One of the biggest malware-trends of 2018 has been th

  • AlienVault Monthly Product Roundup April 2018

    2018년 5월 1일

    We are continuously making improvements and rolling out new features to USM Anywhere to help your team

  • Patching Frequency Best Practices

    2018년 4월 30일

    A client asked the other day for guidance on best practices regarding how often they ought to patch

  • Things I Hearted this Week, 27th April 2018

    2018년 4월 27일

    Master Keys F-Secure researchers have found that global hotel chains and hotels worldwide are using a

  • Financial Fraud: What Can You Do About It?

    2018년 4월 26일

    Financial fraud used to be simple. Erase the ink from a check, make it out for more money, and laug

  • Certificate Lifecycle Management: People, Process and Technology

    2018년 4월 25일

    Trust and Digital Certificates Trust is a valuable commodity in the age of data proliferation. An abu

  • RSA 2018 Recap and Launch of OTX Endpoint Threat Hunter!

    2018년 4월 24일

    RSA 2018 was the best RSA ever from an AlienVault perspective! It was a "giant leap" for sure. The b

  • The InfoSec Marshmallow

    2018년 4월 23일

    I was listening to the Jordan Harbinger podcast the other day. If you are a student of social dynam

  • Things I Hearted this Week – the RSA 2018 Edition

    2018년 4월 20일
  • Let’s be Fools

    2018년 4월 19일

    The Roman poet Lucretius once wrote: “A fool believes that the tallest mountain in the world

위로