Latest activity

  • U
    Ubuntu security notices posted the thread USN-4524-1: TNEF vulnerabilities in Security.
    Paul Dreik discovered that TNEF incorrectly handled filenames. If a user were tricked into opening a specially crafted email attachment, an attacker could possibly use this issue to write arbitrary files to the filesystem or cause TNEF crash...
  • U
    Ubuntu security notices posted the thread USN-4523-1: LibOFX vulnerability in Security.
    It was discovered that LibOFX did not properly check for errors in certain situations, leading to a NULL pointer dereference. A remote attacker could use this issue to cause a denial of service attack. (CVE-2019-9656) Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4522-1: noVNC vulnerability in Security.
    It was discovered that noVNC did not properly manage certain messages, resulting in the remote VNC server injecting arbitrary HTML into the noVNC web page. An attacker could use this issue to conduct cross-site scripting (XSS) attacks...
  • P
    Phil Hodges posted the thread cPanel TSR-2020-0005 Announcement in Control Panels.
    cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system...
  • U
    Ubuntu security notices posted the thread USN-4521-1: pam_tacplus vulnerability in Security.
    It was discovered that pam_tacplus did not properly manage shared secrets if DEBUG loglevel and journald are used. A remote attacker could use this issue to expose sensitive information. Continue reading...
  • Quags
    It really depends on what versions are in use. Running a windows server can be complicated, and windows 2008 is end of life as far as I am aware. Generally I wouldn't recommend it unless you are familiar administrating a windows server. Plesk...
  • F
    Hello, I have a really old (circa 1998) mostly static website, which was hosted on IIS running/Windows 2008R2 and which I need to preserve it as-is. I believe it uses some older tech like ASP and server-side includes. Would your ASP.NET...
  • U
    Ubuntu security notices posted the thread USN-4520-1: Exim SpamAssassin vulnerability in Security.
    It was discovered that Exim SpamAssassin does not properly handle configuration strings. An attacker could possibly use this issue to execute arbitrary code. (CVE-2019-19920) Continue reading...
  • J
    To protect the server, follow these guidelines: Lock the computer room. Give the keys only to people you trust. Keep track of who has the keys. Mount the servers on cases or racks that have locks. Disable the floppy drive on the server. Hope...
  • J
    Data transfer refers to the total amount of bytes of data a server transfers to a particular website in a given period of time. Most hosting plans measure the amount of data transferred across a server over a 30 day or one month period.
  • J
    jessewalter375 replied to the thread Free web hosting.
    Web hosting is a service that allows organizations and individuals to post a website or web page onto the Internet. A web host, or web hosting service provider, is a business that provides the technologies and services needed for the website or...
  • J
    net is better than other specialty extensions, but since it isn't quite up there with .com and . org extensions, you may not get the same benefits of using a .com name. However, if your ideal .com name is not available, a . net can be a solid...
  • U
    Ubuntu security notices posted the thread USN-4517-1: Email-Address-List vulnerability in Security.
    It was discovered that Email-Address-List does not properly parse email addresses during email-ingestion. A remote attacker could use this issue to cause an algorithmic complexity attack, resulting in a denial of service. (CVE-2018-18898)...
  • U
    Ubuntu security notices posted the thread USN-4519-1: PulseAudio vulnerability in Security.
    Ratchanan Srirattanamet discovered that an Ubuntu-specific patch caused PulseAudio to incorrectly handle memory under certain error conditions in the Bluez 5 module. An attacker could use this issue to cause PulseAudio to crash, resulting in a...
  • U
    Ubuntu security notices posted the thread USN-4518-1: xawtv vulnerability in Security.
    Matthias Gerstner discovered that xawtv incorrectly handled opening files. A local attacker could possibly use this issue to open and write to arbitrary files and escalate privileges. (CVE-2020-13696) Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4516-1: GnuPG vulnerability in Security.
    It was discovered that GnuPG signatures could be forged when the SHA-1 algorithm is being used. This update removes validating signatures based on SHA-1 that were generated after 2019-01-19. In environments where this is still required, a new...
  • U
    Ubuntu security notices posted the thread USN-4515-1: Pure-FTPd vulnerability in Security.
    Antonio Norales discovered that Pure-FTPd incorrectly handled directory aliases. An attacker could possibly use this issue to access sensitive information. (CVE-2020-9274) Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4514-1: libproxy vulnerability in Security.
    It was discovered that libproxy incorrectly handled certain PAC files. An attacker could possibly use this issue to cause a denial of service. Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4513-1: apng2gif vulnerability in Security.
    Dileep Kumar Jallepalli discovered that apng2gif incorrectly handled loading APNG files. An attacker could exploit this with a crafted APNG file to access sensitive information. (CVE-2017-6960) Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4510-2: Samba vulnerability in Security.
    USN-4510-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: Tom Tervoort discovered that the Netlogon protocol implemented by Samba incorrectly handled the...
  • U
    Ubuntu security notices posted the thread USN-4512-1: util-linux vulnerability in Security.
    It was discovered that the umount bash completion script shipped in util-linux incorrectly handled certain mountpoints. If a local attacker were able to create arbitrary mountpoints, another user could be tricked into executing arbitrary code...
  • U
    Ubuntu security notices posted the thread USN-4511-1: QEMU vulnerability in Security.
    Ziming Zhang, Xiao Wei, Gonglei Arei, and Yanyu Zhang discovered that QEMU incorrectly handled certain USB packets. An attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service, or possibly execute...
  • U
    Ubuntu security notices posted the thread USN-4510-1: Samba vulnerability in Security.
    Tom Tervoort discovered that the Netlogon protocol implemented by Samba incorrectly handled the authentication scheme. A remote attacker could use this issue to forge an authentication token and steal the credentials of the domain admin. This...
  • U
    Ubuntu security notices posted the thread USN-4509-1: Perl DBI module vulnerabilities in Security.
    It was discovered that Perl DBI module incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. (CVE-2013-7490) It was discovered that Perl DBI module incorrectly handled certain files. An attacker...
  • U
    Ubuntu security notices posted the thread USN-4508-1: StoreBackup vulnerability in Security.
    It was discovered that StoreBackup did not properly manage lock files. A local attacker could use this issue to cause a denial of service or escalate privileges and run arbitrary code. (CVE-2020-7040) Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4507-1: ncmpc vulnerability in Security.
    It was discovered that ncmpc incorrectly handled long chat messages. A remote attacker could possibly exploit this with a crafted chat message, causing ncmpc to crash, resulting in a denial of service. (CVE-2018-9240) Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4506-1: MCabber vulnerability in Security.
    It was discovered that MCabber does not properly manage roster pushes. An attacker could possibly use this issue to remotely perform man-in-the-middle attacks. (CVE-2016-9928). Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4505-1: PHPMailer vulnerability in Security.
    Elar Lang discovered that PHPMailer did not properly escape double quote characters in filenames. A remote attacker could possibly exploit this with a crafted filename to bypass attachment filters that are based on matching filename extensions...
  • U
    Ubuntu security notices posted the thread USN-4504-1: OpenSSL vulnerabilities in Security.
    Robert Merget, Marcus Brinkmann, Nimrod Aviram, and Juraj Somorovsky discovered that certain Diffie-Hellman ciphersuites in the TLS specification and implemented by OpenSSL contained a flaw. A remote attacker could possibly use this issue to...
  • U
    Ubuntu security notices posted the thread USN-4502-1: websocket-extensions vulnerability in Security.
    It was discovered that websocket-extensions does not properly parse special headers. A remote attacker could use this issue to cause regex backtracking, resulting in a denial of service. (CVE-2020-7663) Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4503-1: Perl DBI module vulnerability in Security.
    It was discovered that Perl DBI module incorrectly handled certain calls. An attacker could possibly use this issue to execute arbitrary code. Continue reading...
  • R
    rohanjoshi0894 replied to the thread Regarding for Postgresql.
    The book which you are referring to is the best book to start with PostgreSQL. For the best tutorial visit this PostgreSQL Tutorials Link.
  • U
    Ubuntu security notices posted the thread USN-4501-1: LuaJIT vulnerability in Security.
    It was discovered that an out-of-bounds read existed in LuaJIT. An attacker could use this to cause a denial of service (application crash) or possibly expose sensitive information. (CVE-2020-15890) Continue reading...
  • F
    FreeBSD Security Advisories posted the thread FreeBSD-SA-20:30.ftpd in Security.
    Continue reading...
  • F
    FreeBSD Security Advisories posted the thread FreeBSD-SA-20:29.bhyve_svm in Security.
    Continue reading...
  • F
    FreeBSD Security Advisories posted the thread FreeBSD-SA-20:28.bhyve_vmcs in Security.
    Continue reading...
  • F
    FreeBSD Security Advisories posted the thread FreeBSD-SA-20:27.ure in Security.
    Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4500-1: bsdiff vulnerabilities in Security.
    It was discovered that bsdiff mishandled certain input. If a user were tricked into opening a malicious file, an attacker could cause bsdiff to crash or potentially execute arbitrary code. Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4498-1: Loofah vulnerability in Security.
    It was discovered that Loofah does not properly sanitize JavaScript in sanitized output. An attacker could possibly use this issue to perform XSS attacks. (CVE-2019-15587) Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4499-1: MilkyTracker vulnerabilities in Security.
    It was discovered that MilkyTracker did not properly handle certain input. If a user were tricked into opening a malicious file, an attacker could cause MilkyTracker to crash or potentially execute arbitrary code. Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4497-1: OpenJPEG vulnerabilities in Security.
    It was discovered that OpenJPEG incorrectly handled certain image files. A remote attacker could possibly use this issue to cause a denial of service. (CVE-2016-9112) It was discovered that OpenJPEG did not properly handle certain input. If...
  • U
    Ubuntu security notices posted the thread USN-4496-1: Apache XML-RPC vulnerability in Security.
    It was discovered that Apache XML-RPC (aka ws-xmlrpc) does not properly deserialize untrusted data. An attacker could possibly use this issue to execute arbitrary code. (CVE-2019-17570) Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4495-1: Apache Log4j vulnerability in Security.
    It was discovered that Apache Log4j does not properly deserialize untrusted data. An attacker could possibly use this issue to remotely execute arbitrary code. (CVE-2019-17571) Continue reading...
  • U
    Ubuntu security notices posted the thread USN-4494-1: GUPnP vulnerability in Security.
    It was discovered that GUPnP incorrectly handled certain subscription requests. A remote attacker could possibly use this issue to exfiltrate data or use GUPnP to perform DDoS attacks. Continue reading...
  • Godwillrex
    Godwillrex updated their status.
    Life is full joy and happiness when you've made it!!
  • U
    Ubuntu security notices posted the thread USN-4493-1: cryptsetup vulnerability in Security.
    It was discovered that cryptsetup incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. Continue reading...
  • J
    Unless you can setup something to redirect your links, you lose them. That is the advantage to getting your own domain name, whether you use free web hosting or a shared service. The links that are built to that domain name stay with domain name...
  • J
    Both the things need good quality content. At the end it all depends on you which area you can handle more easily or what you find easy to handle. It also totally depend on your traffic and country you are targeting. Hope this information is...
  • J
    Steps to Convert MBOX to PST Manually Open Microsoft Outlook and go to File. Click on Import and Export to open the Import/Export Wizard. Click on Import from another program or file -> Next. Click on Personal Folder File (. Click on Browse...
  • Quags
    Quags replied to the thread New backup system coming for VPS.
    To prevent any overwrites, we append the date and a random 4 digits number when creating the backup.
Top