Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-37452PUBLISHED: 2022-08-07Exim before 4.95 has a heap-based buffer overflow for the alias list in host_name_lookup in host.c when sender_host_name is set.
CVE-2022-26979PUBLISHED: 2022-08-06Foxit PDF Reader before 12.0.1 and PDF Editor before 12.0.1 allow a NULL pointer dereference when this.Span is used for oState of Collab.addStateModel, because this.Span.text can be NULL.
CVE-2022-27944PUBLISHED: 2022-08-06Foxit PDF Reader before 12.0.1 and PDF Editor before 12.0.1 allow an exportXFAData NULL pointer dereference.
CVE-2022-2688PUBLISHED: 2022-08-06
A vulnerability was found in SourceCodester Expense Management System. It has been rated as critical. This issue affects the function fetch_report_credit of the file report.php of the component POST Parameter Handler. The manipulation of the argument from/to leads to sql injection. The attack may be...
CVE-2022-2689PUBLISHED: 2022-08-06
A vulnerability classified as problematic has been found in SourceCodester Wedding Hall Booking System. Affected is an unknown function of the file /whbs/?page=contact_us of the component Contact Page. The manipulation of the argument Message leads to cross site scripting. It is possible to launch t...
User Rank: Ninja
12/27/2014 | 9:19:08 PM
Instead of getting angry to attackers or trying to get even we need to figure it what we do so we can avoid similar types of attacks.
@Dr. T Couldn't agree more. What we are actually witnessing is how leaders of industry ( film in this case ) mishandle the "new-age" world in which we live. I have heard everything from Sony except what they are doing so that this might never happen again.
I guess they really have no time to answer that question as they are busy working on their latest breech - their Playstation feeds.
Sony is really becoming a national "eye-sore". It might be time for those over paid leaders at Sony to actually earn their pay.
Don't count on it.