Krytyczna podatność (CVSS 9.8/10.0) w popularnym pakiecie do monitorowania urządzeń – Net-SNMP https://sekurak.pl/krytyczna-podatnosc-cvss-9-8-10-0-w-popularnym-pakiecie-do-monitorowania-urzadzen-net-snmp/ #Wbiegu #Bufferoverflow #DoS #Netsnmp #Podatno
#Bufferoverflow
Krytyczna podatność (CVSS 9.8/10.0) w popularnym pakiecie do monitorowania urządzeń – Net-SNMP
W popularnym pakiecie Net-SNMP, służącym do monitorowania i zarządzania urządzeniami sieciowymi wykryto krytyczną lukę bezpieczeństwa typu stack based buffer overflow. Podatność została znaleziona przez badacza bezpieczeństwa buddurid oraz zgłoszona w ramach programu Trend Micro Zero Day Initiative (ZDI). TLDR: Dla osób spotykających się z tym programem po raz pierwszy krótkie wyjaśnienie....
The SQL Slammer worm was the fastest spreading malware in Internet history. It exploited a buffer overflow vulnerability in Windows systems and could be transmitted and executed with minimal latency. Today, it is considered the precursor of ransomware and spyware attacks.
#SQLslammerWorm #computerWorms, #malware #bufferOverflow #vulnerabilities #cybersecurity #cyberattacks
https://negativepid.blog/the-sql-slammer-worm/
https://negativepid.blog/the-sql-slammer-worm/
🚨 CVE-2025-14534: CRITICAL buffer overflow in UTT 进取 512W (≤3.1.7.7-171114). Remote, unauthenticated exploit — public code available. Isolate & restrict /goform/formNatStaticMap now! https://radar.offseq.com/threat/cve-2025-14534-buffer-overflow-in-utt-512w-46bf1244 #OffSeq #CVE #BufferOverflow #NetworkSecurity
The SQL Slammer worm was the fastest spreading malware in Internet history. It exploited a buffer overflow vulnerability in Windows systems and could be transmitted and executed with minimal latency. Today, it is considered the precursor of ransomware and spyware attacks.
#SQLslammerWorm #computerWorms, #malware #bufferOverflow #vulnerabilities #cybersecurity #cyberattacks
https://negativepid.blog/the-sql-slammer-worm/
https://negativepid.blog/the-sql-slammer-worm/
⚠️ CVE-2025-14196 (HIGH, CVSS 8.7): Remote buffer overflow in H3C Magic B1 (≤100R004). Public exploit available, no patch. Isolate devices, restrict access, monitor for /goform/aspForm attacks. https://radar.offseq.com/threat/cve-2025-14196-buffer-overflow-in-h3c-magic-b1-e84401a0 #OffSeq #H3C #BufferOverflow #Vuln
The SQL Slammer worm was the fastest spreading malware in Internet history. It exploited a buffer overflow vulnerability in Windows systems and could be transmitted and executed with minimal latency. Today, it is considered the precursor of ransomware and spyware attacks.
#SQLslammerWorm #computerWorms, #malware #bufferOverflow #vulnerabilities #cybersecurity #cyberattacks
https://negativepid.blog/the-sql-slammer-worm/
https://negativepid.blog/the-sql-slammer-worm/
AAAAAAAAAAAAAHHHHHHHH
The SQL Slammer worm was the fastest spreading malware in Internet history. It exploited a buffer overflow vulnerability in Windows systems and could be transmitted and executed with minimal latency. Today, it is considered the precursor of ransomware and spyware attacks.
#SQLslammerWorm #computerWorms, #malware #bufferOverflow #vulnerabilities #cybersecurity #cyberattacks
https://negativepid.blog/the-sql-slammer-worm/
https://negativepid.blog/the-sql-slammer-worm/
🛡️ CVE-2025-13258: HIGH severity buffer overflow in Tenda AC20 routers (≤16.03.08.12) via /goform/WifiExtraSet. Public exploit out—remotely exploitable, no auth needed. Restrict access, monitor, and patch ASAP. https://radar.offseq.com/threat/cve-2025-13258-buffer-overflow-in-tenda-ac20-f036b48b #OffSeq #CVE2025 #Tenda #BufferOverflow
The SQL Slammer worm was the fastest spreading malware in Internet history. It exploited a buffer overflow vulnerability in Windows systems and could be transmitted and executed with minimal latency. Today, it is considered the precursor of ransomware and spyware attacks.
#SQLslammerWorm #computerWorms, #malware #bufferOverflow #vulnerabilities #cybersecurity #cyberattacks
https://negativepid.blog/the-sql-slammer-worm/
https://negativepid.blog/the-sql-slammer-worm/
🛡️ CVE-2025-58298: HIGH severity stack-based buffer overflow in Huawei HarmonyOS 5.0.1/5.1.0. Local attackers can disrupt availability; no patch yet. Review access controls & monitor for updates. https://radar.offseq.com/threat/cve-2025-58298-cwe-121-stack-based-buffer-overflow-d55dfbb2 #OffSeq #HarmonyOS #Vuln #BufferOverflow
ein ganz gemeiner #BufferOverflow um #remoters content reinzuhacken ;)
"There are no workarounds that address this vulnerability.", not a quote you want to read about your fleet of Cisco devices running IOS and IOS XE Software! You must patch!
Cisco devices have been under attack due to zero-day critical RCE flaws as detailed in CVE-2025-20333, CVE-2025-20363, and CVE-2025-20362, resulting in a denial of service (DoS) condition.
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-cli-EB7cZ6yO #Cisco #CitrixIOS #Networks #CyberAttack #CyberSecurity #DDOS #bufferoverflow #CISA
🛡️ CVE-2025-10756: HIGH-severity buffer overflow in UTT HiPER 840G (≤3.1.1-190328) via /goform/getOneApConfTempEntry. Public exploit released, no patch from vendor. Isolate devices, restrict endpoint access, monitor closely. https://radar.offseq.com/threat/cve-2025-10756-buffer-overflow-in-utt-hiper-840g-91f9cd40 #OffSeq #Vuln #BufferOverflow
Steigerung der Gerätesicherheit mit MIE: A19-Chip erhöht Gerätesicherheit
Apple hat mit Memory Integrity Enforcement (MIE) einen neuen Sicherheitsstandard vorgestellt, der vorerst exklusiv in den Modellen mit A19-Chip zum Ei https://www.iphone-blog.ch/2025/09/20/steigerung-der-geraetesicherheit-mit-mie-a19-chip-erhoeht-geraetesicherheit
#a19 #a19pro #bufferoverflow #mie #sicherheit
Neuer Artikel auf iPhone-Blog.ch veröffentlicht:
Steigerung der Gerätesicherheit mit MIE: A19-Chip erhöht Gerätesicherheit
Apple hat mit Memory Integrity Enforcement (MIE) einen neuen Sicherheitsstandard vorgestellt, der vorerst exklusiv in den Modellen mit A19-Chip zum Einsatz kommt – sprich im iPhone 17 (Pro) und dem neuen iPhone Air. Dank der Kombination aus Hardware-F
Artikel lesen: https://www.iphone-blog.ch/2025/09/20/steigerung-der-geraetesicherheit-mit-mie-a19-chip-erhoeht-geraetesicherheit/
🚨 CVE-2025-9961: HIGH severity buffer overflow in TP-Link AX10 & AX1500 (pre-1.2.1/1.3.11) enables RCE via MITM on CWMP. Patch firmware, limit CWMP access, enforce strong creds! 🔐 https://radar.offseq.com/threat/cve-2025-9961-cwe-120-buffer-copy-without-checking-dc3818c1 #OffSeq #TPLink #Vuln #BufferOverflow #RCE
🛡️ CVE-2025-10034 (HIGH): Buffer overflow in D-Link DIR-825 v1.08.01—public exploit available, no patch (EOL). Replace, segment, or restrict IPv6 now. Monitor for exploitation attempts. Details: https://radar.offseq.com/threat/cve-2025-10034-buffer-overflow-in-d-link-dir-825-6b5651eb #OffSeq #DLink #Vuln #BufferOverflow
🚨 CVE-2025-9393 (HIGH): Stack-based buffer overflow in Linksys RE6250 & related models—remote exploit now public, no patch. Isolate or replace affected devices. Monitor for attacks! https://radar.offseq.com/threat/cve-2025-9393-stack-based-buffer-overflow-in-links-f35428e6 #OffSeq #Vuln #BufferOverflow #Linksys
Client Info
Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst