cpio privilege escalation vulnerability via setuid files in cpio archive
Posted by Georgi Guninski on Jan 08 cpio privilege escalation vulnerability via setuid files in cpio archive Happy New Year, let in 2024 happiness be...
OXAS-ADV-2023-0006: OX App Suite Security Advisory
Posted by Martin Heiland via Fulldisclosure on Jan 08 Dear subscribers, We're sharing our latest advisory with you and like to thank everyone who contributed...
OXAS-ADV-2023-0005: OX App Suite Security Advisory
Posted by Martin Heiland via Fulldisclosure on Jan 08 Dear subscribers, We're sharing our latest advisory with you and like to thank everyone who contributed...
SSH-Snake: Automated SSH-Based Network Traversal
Posted by Joshua Rogers on Jan 08 SSH-Snake is a powerful tool designed to perform automatic network traversal using SSH private keys discovered on systems,...
Sexual assault in the metaverse investigated by British police
British police say that they are investigating reports that a girl under the age of 16 was sexually assaulted... in an online virtual reality game....
6 Cybersecurity Predictions for 2024 – Staying Ahead of the Latest Hacks and Attacks
AI and major elections, deepfakes and the Olympics — they all feature prominently in our cybersecurity predictions for 2024. That’s quite the mix. And that...
Apache OFBiz Authentication Bypass (CVE-2023-51467, CVE-2023-49070)
What is the vulnerability? There is an authentication bypass vulnerability in Apache OFBiz tracked under CVE-2023-51467 and CVE-2023-49070. Successful exploitation would let an attacker circumvent...
USN-6569-1: libclamunrar vulnerabilities
it was discovered that libclamunrar incorrectly handled directories when extracting RAR archives. A remote attacker could possibly use this issue to overwrite arbitrary files and...
USN-6568-1: ClamAV update
The ClamAV package was updated to a new upstream version to remain compatible with signature database downloads. Read More
Meet Ika & Sal: The Bulletproof Hosting Duo from Hell
In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and...