Found 2 bookmarks
Custom sorting
Security Alert: CVE-2024-4577 - PHP CGI Argument Injection Vulnerability
Security Alert: CVE-2024-4577 - PHP CGI Argument Injection Vulnerability
While implementing PHP, the team did not notice the Best-Fit feature of encoding conversion within the Windows operating system. This oversight allows unauthenticated attackers to bypass the previous protection of CVE-2012-1823 by specific character sequences. Arbitrary code can be executed on remote PHP servers through the argument injection attack.
#devco.re#EN#2024#CVE-2024-4577#PHP#CVE-2012-1823#php-cgi
·devco.re·
Security Alert: CVE-2024-4577 - PHP CGI Argument Injection Vulnerability
Pwn2Own Toronto 2022 : A 9-year-old bug in MikroTik RouterOS
Pwn2Own Toronto 2022 : A 9-year-old bug in MikroTik RouterOS
DEVCORE research team found a 9-year-old WAN bug on RouterOS, the product of MikroTik. Combined with another bug of the Canon printer, DEVCORE becomes the first team ever to successfully complete an attack chain in the brand new SOHO Smashup category of Pwn2Own. And DEVCORE also won the title of Master of Pwn in Pwn2Own Toronto 2022.
#devco.re#EN#2024#CVE-2023-32154#Pwn2Own#MikroTik-RouterOS
·devco.re·
Pwn2Own Toronto 2022 : A 9-year-old bug in MikroTik RouterOS