Vulnerabilities & Exploits Archives - Page 97 of 106

Microsoft August 2018 patch updates

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / August 15, 2018 / .NET, Edge, Exchange, Microsoft, Office, SQL Server, Windows

Microsoft issued the August 2018 Security Updates that include over 60 unique vulnerability fixes, 19 of them rated critical and two zero days actively exploited.

Microsoft August 2018 patch updates Read More »

Oracle Database security alert

Leave a Comment / Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / August 14, 2018 / CVE-2018-3110, Database, Oracle, Vulnerabilities

Oracle has released a Security Alert Advisory for an Oracle Database vulnerability (CVE-2018-3110) in versions 11.2.0.4 and 12.2.0.1 on Windows.

Oracle Database security alert Read More »

Security researcher discovers macOS zero-day vulnerability

Leave a Comment / Vulnerabilities & Exploits, Zero-days / Frank Crast / August 13, 2018 / Apple, CVE-2017-7150, Defcon

A security researcher was able to demonstrate in last week’s Defcon conference how a vulnerability (CVE-2017-7150) in recent versions of macOS could be exploited and lead to a “synthetic” mouse-click cyber attack.

Security researcher discovers macOS zero-day vulnerability Read More »

Many organizations lacking adoption of key CIS controls

Asset Management, Configuration Management, Cybersecurity Articles, Endpoint Security, Identity & Access Management, Vulnerabilities & Exploits / Frank Crast / August 11, 2018 / CIS, SANS

A recent survey conducted by Tripwire revealed organizations are not fully adopting security controls from key benchmarks, such as the Center for Internet Security (CIS).

Many organizations lacking adoption of key CIS controls Read More »

BIND security advisory

Leave a Comment / Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / August 8, 2018 / BIND, DNS, ISC, Vulnerabilities

The Internet Systems Consortium (ISC) has issued a high severity security advisory that addresses a security vulnerability in multiple versions of ISC Berkeley Internet Name Domain (BIND).

BIND security advisory Read More »

Linux kernel DoS vulnerability

Leave a Comment / Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / August 7, 2018 / CVE-2018-5390, DOS, kernel, Linux, NCCIC, Vulnerabilities

A Linux kernel TCP implementation is vulnerable to Denial of Service (DoS) condition with low rates of specially modified packets.

Linux kernel DoS vulnerability Read More »

Critical HP vulnerabilities patched

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / August 6, 2018 / firmware, HP, Printer, Vulnerabilities

HP has identified and patched two critical security vulnerabilities that impact multiple HP Inkjet printers.

Critical HP vulnerabilities patched Read More »

Bluetooth vulnerability alert

Leave a Comment / Vulnerabilities & Exploits / Frank Crast / July 24, 2018 / bluetooth, CVE-2018-5383, encryption, firmware, Network

NCCIC has issued a security advisory and mitigation guidance for a bluetooth vulnerability that impacts Bluetooth firmware and operating system software drivers from multiple vendors.

Bluetooth vulnerability alert Read More »