Microsoft issues out-of-band security update for SharePoint Server vulnerability (CVE-2019-1491)
Microsoft issued an out-of-bound security update for a SharePoint Server vulnerability CVE-2019-1491.
Vulnerabilities
Hackers exploiting Exim vulnerabilities
Hackers have been recently targeting at least two vulnerabilities on unpatched Exim email systems. Exim has already released two updates in September that fixes each of the flaws.
Hackers exploiting Exim vulnerabilities Read More »
Hacker publishes vBulletin zero-day exploit
An anonymous hacker posted exploit code for a remote code execution vulnerability in version 5 of the popular vBulletin forum software, used on over 100,000 social websites.
Hacker publishes vBulletin zero-day exploit Read More »
“SACK Panic” Linux vulnerabilities
The CERT Coordination Center (CERT/CC) has released a security advisory for multiple “SACK Panic” vulnerabilities that impact Linux kernels. To add, a related flaw also impacts FreeBSD.
“SACK Panic” Linux vulnerabilities Read More »
Firefox 67 security updates
Mozilla has released Firefox version 67, ESR 60.7 and Thunderbird 60.7 to address multiple vulnerabilities.
Firefox 67 security updates Read More »
Misconfigured SAP systems vulnerable to ’10KBlaze’ cyberattacks
Security researchers have discovered nearly 50,000 misconfigured SAP systems may be vulnerable to exploits called “10KBlaze” that could lead to the full compromise of SAP applications.
Misconfigured SAP systems vulnerable to ’10KBlaze’ cyberattacks Read More »
Oracle Critical Patch Update for January 2019
Oracle has released its Critical Patch Update for January 2019 to include 284 vulnerability fixes across multiple products. Oracle continues to receive reports of remote attackers attempting to maliciously exploit unpatched vulnerabilities.
Oracle Critical Patch Update for January 2019 Read More »
Miori IoT botnet spreads through PHP framework RCE vulnerability
Attackers are using a variant of the infamous Mirai IoT botnet dubbed “Miori” to exploit a Remote Code Execution (RCE) vulnerability in ThinkPHP, a free open-source PHP framework.
Miori IoT botnet spreads through PHP framework RCE vulnerability Read More »
Microsoft issues critical out-of-band security patch
The critical zero-day “Scripting Engine Memory Corruption” vulnerability (CVE-2018-8653) is being actively exploited on Windows systems by hackers.
Microsoft issues critical out-of-band security patch Read More »
Critical Cisco ASA security update
Cisco has patched a vulnerability in the authorization subsystem of Cisco’s Adaptive Security Appliance (ASA) Software. An authenticated, unprivileged remote attacker could exploit the vulnerability to perform privileged actions by using the ASA web management interface.
Critical Cisco ASA security update Read More »