Security
Headlines
HeadlinesLatestCVEs

Tag

#mac

CVE-2022-32032: IoT-vuln/Tenda/A18/formAddMacfilterRule at main · d1tto/IoT-vuln

Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the deviceList parameter in the function formAddMacfilterRule.

CVE
Open in Source
#vulnerability#web#mac
YTStealer targets YouTube content creators

We take a look at reports of scammers targeting Youtuber's channels with malware called YTStealer, that eats authentication cookies. The post YTStealer targets YouTube content creators appeared first on Malwarebytes Labs.

DragonForce Malaysia Releases LPE Exploit, Threatens Ransomware

The hacktivist group is ramping up its activities and ready to assault governments and businesses with escalating capabilities.

Hardwear.io NL 2022 Call For Papers

The call for papers for Hardwear.io NL 2022 is now open. It will take place October 27th through the 28th, 2021 in the Netherlands.

Red Hat Security Advisory 2022-5439-01

Red Hat Security Advisory 2022-5439-01 - The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host. Red Hat Virtualization Hosts are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. Issues addressed include heap overflow, privilege escalation, and use-after-free vulnerabilities.

Red Hat Security Advisory 2022-5263-01

Red Hat Security Advisory 2022-5263-01 - Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Issues addressed include a memory leak vulnerability.

Ubuntu Security Notice USN-5499-1

Ubuntu Security Notice 5499-1 - Florian Kohnhuser discovered that curl incorrectly handled returning a TLS server’s certificate chain details. A remote attacker could possibly use this issue to cause curl to stop responding, resulting in a denial of service. Harry Sintonen discovered that curl incorrectly handled certain FTP-KRB messages. An attacker could possibly use this to perform a machine-in-the-middle attack.

Is Your New Car a Threat to National Security?

Putting sensor-packed Chinese cars on Western roads could be a privacy issue. Just ask Tesla.

Latest web hacking tools – Q3 2022

We take a look at the latest additions to security researchers’ armory

CVE-2022-2279: NULL Pointer Dereference in function mobi_build_opf_metadata at opf.c:1161 in libmobi

NULL Pointer Dereference in GitHub repository bfabiszewski/libmobi prior to 0.11.