And this is why I prefer #lowtech #solutions to #editing #code - #vscode had a #remote #code #execution ( #rce ) #bug https://github.com/google/security-resea.. Somebody could literally #hack you because your #ide was trying to be too smart.
Ouch, the #spring #framework in #java 9 has an #rce #zeroday #exploit https://www.praetorian.com/blog/spring-c.. This is for sure the problem with using such massive and difficult to #test #codebase #projects ...
@barray on Sat Dec 11 15:55:38 UTC 2021 said: &eI wrote a #coffeespace #article about the serious #java #log #bug #rce log4j the other day: https://coffeespace.org.uk/projects/log4.. I've seen people try to actively #exploit my #server ! There are some great #memes that have appeared as a result of this very real #security #issue https://log4jmemes.com/ Have a look through and give yourself a laugh!Ouch, the #serious #java #log #bug #rce in log4j is being actively #exploited - perhaps as early as March: https://www.rapid7.com/blog/post/2021/12.. Many #servers are being actively #attacked and #hacked right now. All from using a #logging #library !
@barray on Fri Dec 10 16:44:06 UTC 2021 said: &eOuch, the #serious #java #log #bug #rce in log4j is being actively #exploited - perhaps as early as March: https://www.rapid7.com/blog/post/2021/12.. Many #servers are being actively #attacked and #hacked right now. All from using a #logging #library !Man, quite a #serious #java #log #bug #rce found in log4j: https://www.lunasec.io/docs/blog/log4j-z.. This has *massive* ramifications against tonnes of existing #software , including even #minecraft #servers !
Man, quite a #serious #java #log #bug #rce found in log4j: https://www.lunasec.io/docs/blog/log4j-z.. This has *massive* ramifications against tonnes of existing #software , including even #minecraft #servers !
Ouch, it appears the #espressif #esp 32 has a #bluetooth #bug that allows #rce https://hackaday.com/2021/09/23/bluetoot.. I absolutely dread to think what is #vulnerable in their #wifi #stack !