visit News18 Urdu for latest news, breaking news, news headlines and updates from Munger on politics, sports, entertainment, cricket, crime and more.

ભારત સરકારે ત્રીજી મે બાદ લૉકડાઉન 3.0ની જાહેરાત કરી છે, જે 17મી મે સુધી ચાલશે. આ દરમિયાન દેશના અલગ અલગ જિલ્લાઓને ઝોન પ્રમાણે વહેંચી દેવામાં આવ્યા છે. આ ઉપરાંત ઝોન પ્રમાણે લૉકડાઉનના નિયમોમાં છૂટછાટ આપવામાં આવી છે. કયા ઝોનમાં શું છૂટછાટ આપવામાં આવી છે તે ઇન્ફોગ્રાફિસથી સમજીઓ...

વિશાખાપટ્ટનમ ખાતે ગુરુવારે થયેલી ગેસ લીકની દુર્ઘટનાએ ઇતિહાસની સૌથી મોટી ભોપાલ ગેસ દુર્ઘટનાની સ્મૃતિ તાજા કરી દીધી. દુનિયાએ જોયેલી કેટલીક આવી જ ઔદ્યોગિક દુર્ઘટનાઓ પર એક નજર કરીએ...

રાધનપુરઃ પાટણ જિલ્લામાં ખેતરમાં પાણી વાળતા ખેડૂત દંપતિનું આજે વિજ કંપનીની બેદરકારીને કારણે મોત નીપજ્યું છે. જિલ્લાના રાધનપુર તાલુકાના માંડલા ગામમાં ખેડૂત દંપતિ ખેતરમાં પાકમાં પાણી વાળતા હતા આ દરમિયાન અચાનક GEBનો મેઈન વાયર તુટીને દંપતી પર પડ્યા હતા. જેને લીધે બંનેને કરંટ લાગતા હાલત ગંભીર થઇ હતી અને મોત નીપજ્યું છે. પતિ-પત્નીના મૃતદેહને પીએમ માટે હોસ્પિટલ ખસેડાયા છે.પોલીસે વધુ તપાસ હાથ ધરી છે.

Fake Message: જનતા કર્ફ્યૂ સમયે તાળી અને થાળી વગાડવાના અવાજ બાદ એક સાઉન્ડ વેબ ક્રિએટ થયો અને કોરોના ભારતમાં નબળો પડી ગયો

visit News18 Urdu for latest news, breaking news, news headlines and updates from Bageshwar on politics, sports, entertainment, cricket, crime and more.

This Metasploit module exploits a vulnerability found in the ActiveX component of Adobe Flash Player before 12.0.0.43. By supplying a specially crafted swf file it is possible to trigger an integer underflow in several avm2 instructions, which can be turned into remote code execution under the context of the user, as exploited in the wild in February 2014. This Metasploit module has been tested successfully with Adobe Flash Player 11.7.700.202 on Windows XP SP3, Windows 7 SP1 and Adobe Flash Player 11.3.372.94 on Windows 8 even when it includes rop chains for several Flash 11 versions, as exploited in the wild.

This Metasploit module exploits a buffer overflow vulnerability in Advantec WebAccess. The vulnerability exists in the dvs.ocx ActiveX control, where a dangerous call to sprintf can be reached with user controlled data through the GetColor function. This Metasploit module has been tested successfully on Windows XP SP3 with IE6 and Windows 7 SP1 with IE8 and IE 9.

An issue was discovered in disable_priv_mode in shell.c in GNU Bash through 5.0 patch 11. By default, if Bash is run with its effective UID not equal to its real UID, it will drop privileges by setting its effective UID to its real UID. However, it does so incorrectly. On Linux and other systems that support "saved UID" functionality, the saved UID is not dropped. An attacker with command execution in the shell can use "enable -f" for runtime loading of a new builtin, which can be a shared object that calls setuid() and therefore regains privileges. However, binaries running with an effective UID of 0 are unaffected.

Exploit for fetchmail on Mac OSX versions 10.4.7 and below on the PPC architecture.

Linux 2.4 and 2.6 kernel sock_sendpage() NULL pointer dereference exploit. The third and final version of this exploit. This third version features: Complete support for i386, x86_64, ppc and ppc64; The personality trick published by Tavis Ormandy and Julien Tinnes; The TOC pointer workaround for data items addressing on ppc64 (i.e. functions on exploit code and libc can be referenced); Improved search and transition to SELinux types with mmap_zero permission.

Inout PPC Engine suffers from a cross site request forgery vulnerability.

The Linux kernel failed to properly initialize some entries the proto_ops struct for several protocols, leading to NULL being derefenced and used as a function pointer. By using mmap(2) to map page 0, an attacker can execute arbitrary code in the context of the kernel. Several public exploits exist for this vulnerability, including spender's wunderbar_emporium and rcvalle's ppc port, sock_sendpage.c. All Linux 2.4/2.6 versions since May 2001 are believed to be affected: 2.4.4 up to and including 2.4.37.4; 2.6.0 up to and including 2.6.30.4

Chkrootkit before 0.50 will run any executable file named /tmp/update as root, allowing a trivial privsec. WfsDelay is set to 24h, since this is how often a chkrootkit scan is scheduled by default.

This Metasploit module exploits a vulnerability in the FreeBSD kernel, when running on 64-bit Intel processors. By design, 64-bit processors following the X86-64 specification will trigger a general protection fault (GPF) when executing a SYSRET instruction with a non-canonical address in the RCX register. However, Intel processors check for a non-canonical address prior to dropping privileges, causing a GPF in privileged mode. As a result, the current userland RSP stack pointer is restored and executed, resulting in privileged code execution.

This Metasploit module exploits a vulnerability in the FreeBSD run-time link-editor (rtld). The rtld unsetenv() function fails to remove LD_* environment variables if __findenv() fails. This can be abused to load arbitrary shared objects using LD_PRELOAD, resulting in privileged code execution.

Slackware Security Advisory - New tigervnc packages are available for Slackware 14.2 and -current to fix security issues.