dimanche 19 mai 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Perl up to 5.28.0 Regex regcomp.c S_regatom Remote Code Execution

A vulnerability was found in Perl up to 5.28.0. It has been declared as critical. This vulnerability affects the function S_regatom of the file regcomp.c of the component Regex Handler. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB

Perl up to 5.28.0 Regex regcomp.c S_grok_bslash_N information disclosure

A vulnerability was found in Perl up to 5.28.0. It has been classified as problematic. This affects the function S_grok_bslash_N of the file regcomp.c of the component Regex Handler. The manipulation with an unknown input leads to a information...
Auteur: VulDB

Perl up to 5.28.0 Regex regcomp.c S_regatom memory corruption

A vulnerability was found in Perl up to 5.28.0 and classified as critical. Affected by this issue is the function S_regatom of the file regcomp.c of the component Regex Handler. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

Perl up to 5.28.0 Perl_my_setenv() memory corruption

A vulnerability has been found in Perl up to 5.28.0 and classified as critical. Affected by this vulnerability is the function Perl_my_setenv(). The manipulation with an unknown input leads to a memory corruption vulnerability (Heap-based). The...
Auteur: VulDB

Gestion commerciale et gestion des impayés : la CNIL lance une consultation publique sur les futurs référentiels

Depuis la mise en œuvre du RGPD et avec l’adoption de la nouvelle loi Informatique et Libertés, la CNIL peut édicter des référentiels afin de guider les organismes dans la mise en conformité de leur traitement. Ces référentiels actualisent les...
Auteur: Cnil

Applications mobiles : clôture des mises en demeure à l’encontre des sociétés FIDZUP et SINGLESPOT

Les 19 juillet et 23 octobre 2018, la Présidente de la CNIL a mis en demeure les sociétés FIDZUP et SINGLESPOT pour absence de consentement des personnes au traitement de leurs données de géolocalisation à des fins de ciblage publicitaire. Les...
Auteur: Cnil

Node.js up to 6.14.x/8.13.x/10.13.x/10.2.x javascript URL url.parse() spoofing

A vulnerability, which was classified as critical, has been found in Node.js up to 6.14.x/8.13.x/10.13.x/10.2.x. Affected by this issue is the function url.parse() of the component javascript URL Handler. The manipulation with an unknown input...
Auteur: VulDB

Node.js up to 6.14.x/8.13.x/10.13.x/10.2.x HTTP Header Slowloris denial of service

A vulnerability classified as problematic was found in Node.js up to 6.14.x/8.13.x/10.13.x/10.2.x. Affected by this vulnerability is an unknown function of the component HTTP Header Handler. The manipulation with an unknown input leads to a...
Auteur: VulDB

Node.js up to 6.14.x/8.13.x/10.13.x HTTP Header Heap-based denial of service

A vulnerability classified as problematic has been found in Node.js up to 6.14.x/8.13.x/10.13.x. Affected is an unknown function of the component HTTP Header Handler. The manipulation with an unknown input leads to a denial of service...
Auteur: VulDB

Node.js up to 6.14.x Debugger --debug=localhost privilege escalation

A vulnerability was found in Node.js up to 6.14.x. It has been rated as critical. This issue affects an unknown function of the component Debugger. The manipulation of the argument --debug=localhost with an unknown input leads to a privilege...
Auteur: VulDB

Node.js up to 6.14.x/8.13.x HTTP Request Response Splitting privilege escalation

A vulnerability was found in Node.js up to 6.14.x/8.13.x. It has been declared as critical. This vulnerability affects an unknown function of the component HTTP Request Handler. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB

Snapdragon Automobile/Mobile/Wear up to SDX24 Device Programmer Command Out-of-Bounds memory corruption

A vulnerability was found in Snapdragon Automobile, Mobile and Wear. It has been classified as critical. This affects an unknown function of the component Device Programmer. The manipulation as part of a Command leads to a memory corruption...
Auteur: VulDB

Snapdragon Automobile/Mobile/Wear up to SXR1130 SMMU Secure Camera privilege escalation

A vulnerability was found in Snapdragon Automobile, Mobile and Wear and classified as critical. Affected by this issue is an unknown function of the component SMMU Secure Camera. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB

Snapdragon Automobile/Mobile/Wear up to SXR1130 SUI Display unknown vulnerability

A vulnerability has been found in Snapdragon Automobile, Mobile and Wear and classified as critical. Affected by this vulnerability is an unknown function of the component SUI Display. The impact remains unknown. The summary by CVE is:Failure...
Auteur: VulDB

Snapdragon Automobile/Mobile/Wear up to SDA660 Ontario Fingerprint memory corruption

A vulnerability, which was classified as critical, was found in Snapdragon Automobile, Mobile and Wear. Affected is an unknown function of the component Ontario Fingerprint. The manipulation with an unknown input leads to a memory corruption...
Auteur: VulDB

Snapdragon Automobile/Mobile up to SD 820A CRL Validation privilege escalation

A vulnerability, which was classified as critical, has been found in Snapdragon Automobile and Mobile up to SD 820A. This issue affects an unknown function of the component CRL Validation. The manipulation with an unknown input leads to a...
Auteur: VulDB

Snapdragon Automobile/Mobile MSM8996AU/SD 410/12/SD 820/SD 820A Modem privilege escalation

A vulnerability classified as critical was found in Snapdragon Automobile and Mobile MSM8996AU/SD 410/12/SD 820/SD 820A. This vulnerability affects an unknown function of the component Modem. The manipulation with an unknown input leads to a...
Auteur: VulDB

Snapdragon Automobile/Mobile/Wear up to SXR1130 Ontario Kernel Driver Kernel Memory privilege escalation

A vulnerability classified as critical has been found in Snapdragon Automobile, Mobile and Wear. This affects an unknown function of the component Ontario Kernel Driver. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Snapdragon Mobile SD 600 ASN.1 Parser memory corruption

A vulnerability was found in Snapdragon Mobile SD 600. It has been rated as critical. Affected by this issue is an unknown function of the component ASN.1 Parser. The manipulation with an unknown input leads to a memory corruption vulnerability....
Auteur: VulDB

Yoast SEO Plugin up to 9.1.x on WordPress ZIP Import class-import-settings.php privilege escalation

A vulnerability classified as critical has been found in Yoast SEO Plugin up to 9.1.x on WordPress. Affected is an unknown function of the file admin/import/class-import-settings.php of the component ZIP Import. The manipulation with an unknown...
Auteur: VulDB

Subaru StarLink Harman Head Unit 2017/2018/2018 Firmware Persistent privilege escalation

A vulnerability was found in Subaru StarLink Harman Head Unit 2017/2018/2018. It has been rated as critical. This issue affects an unknown function of the component Firmware Handler. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB

Teledyne DALSA Sherlock 7.2.7.4 Stack-based memory corruption

A vulnerability was found in Teledyne DALSA Sherlock 7.2.7.4. It has been declared as critical. This vulnerability affects an unknown function. The manipulation with an unknown input leads to a memory corruption vulnerability (Stack-based). The...
Auteur: VulDB

FreeBSD up to 11.2 on 64-bit ICMP Reply Packet denial of service

A vulnerability was found in FreeBSD up to 11.2 on 64-bit. It has been classified as problematic. This affects an unknown function of the component ICMP Reply Handler. The manipulation as part of a Packet leads to a denial of service...
Auteur: VulDB

Samba 4.9.0/4.9.1/4.9.2 AD DC Configuration privilege escalation

A vulnerability was found in Samba 4.9.0/4.9.1/4.9.2 and classified as problematic. Affected by this issue is an unknown function of the component AD DC Configuration Handler. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB

Samba 4.7.0 Kerberos Crash denial of service

A vulnerability has been found in Samba 4.7.0 and classified as problematic. Affected by this vulnerability is an unknown function of the component Kerberos Handler. The manipulation with an unknown input leads to a denial of service...
Auteur: VulDB
First277278279280281282283284285286Last

Événements SSI

READY FOR IT

La première édition de Ready For IT se déroule du 20 au 22 mai 2019 à Monaco (Grimaldi Forum) : conférences, keynotes, ateliers et rendez-vous one-to-one. Organisé par DG Consultants.

Présentation de l'événement par l'organisateur

DG Consultants, l’organisateur depuis 18 ans des Assises de la Sécurité, innove en lançant Ready For It, un nouveau rendez-vous business, centré sur la convergence des technologies et l’expérience client.
Pourquoi ce nouvel événement ?
Parce que la demande explose de la part des entreprises qui sont toutes engagées dans la transformation numérique.
Tandis que les fournisseurs font évoluer leurs offres et s’organisent en écosystèmes technologiques afin d’ être au plus proches des besoins de leurs clients.
Entre les impératifs business, les demandes des métiers, les contraintes techniques, les promesses des nouveaux concepts (IA, BlockChain…), les organisations sont en attente de solutions, de conseils et de service.
S’engager dans le Cloud ?
Oui mais comment et avec quel partenaire ?
Structurer les données mais avec quelles technologies et dans quel cadre ? Et quid de la sécurité qui doit désormais être au cœur de tous les processus IT ?
Voilà pourquoi DG Consultants, la référence dans le monde des rencontres d’affaires a conçu Ready For It.
Pour réunir dans un cadre convivial et autour de contenu de qualité tous les acteurs importants de l’IT, mais également les start-ups qui savent apporter l’innovation et la « disruption ».
Rendez-vous du 20 au 22 mai 2019 à Monaco !

Plus d'infos sur le site dédié à l'événement.

 

HACK IN PARIS

Pour sa 9ème édition la conférence Hack In Paris sur la sécurité IT se tient du 16 au 20 juin 2019 à Paris, Maison de la Chimie. Organisée par Sysdream.

RSS