Outer Web | Explore

Explore >> Select a destination

You are here		www.sonarsource.com Parallel Code Security: The Challenge of Concurrency \| Sonar
\|	\|	roundofthree.github.io Exploitation of AIxCC Nginx bugs: Part I \| RoundofThree	5.1 parsecs away Travel
\|	\|	This blog post will analyse the exploitability of the temporal safety vulnerabilities in Nginx AIxCC. AIxCC is a DARPA competition to find vulnerabilities in codebases using AI. The competitors are not looking for 0-days but rather intentionally added vulnerabilities in existing codebases. One of them was Nginx in the semifinals, which already took place. In this blog post, I will have a different focus on whether these added vulnerabilities can be exploited to achieve more than just crashes.	5.1 parsecs away Travel
\|	\|	landave.io F-Secure Anti-Virus: Remote Code Execution via Solid RAR Unpacking \| landave's blog	4.2 parsecs away Travel
\|	\|	Blog about anti-virus software vulnerabilities.	4.2 parsecs away Travel
\|	\|	blog.quarkslab.com Attacking Titan M with Only One Byte - Quarkslab's blog	4.1 parsecs away Travel
\|	\|	Following our presentation at Black Hat USA, in this blog post we provide some details on CVE-2022-20233, the latest vulnerability we found on Titan M, and how we exploited it to obtain code execution on the chip.	4.1 parsecs away Travel
\|	\|	www.imperva.com Imperva Protects Against Critical Apache OFBiz Vulnerability (CVE-2024-45195) \| Imperva	26.9 parsecs away Travel
\|		Recently, a critical vulnerability in the widely used Apache OFBiz framework was disclosed, designated CVE-2024-45195. This vulnerability allows for unauthenticated remote code execution (RCE), making it an especially dangerous flaw for organizations using OFBiz in their business operations. An attacker without valid credentials can exploit missing view authorization checks in the web application, bypassing previous [...]	26.9 parsecs away Travel