Typo3 CMS versions 6.2.14 and below and 4.5.40 and below suffer from a cross site scripting vulnerability.
Monthly Archives: September 2015
New Debian Releases Fix PHP, VirtualBox Bugs
The maintainers of Debian have released new versions of the operating system to fix several vulnerabilities, including a number of bugs in PHP and an unspecified flaw in Oracle’s VirtualBox application. There are new versions of the stable and oldstable releases of Debian available, which fix the security vulnerabilities. Among the patches is one for […]
Kaspersky Lab Survey Shows Nearly Half of Participants Have Encountered Malware
OS X Privilege Escalation
The private Install.framework has a few helper executables in /System/Library/PrivateFrameworks/Install.framework/Resources, one of which is suid root and exploitable.
Avira Rainy Day Rescue
An elderly man in Bratislava, Slovakia, now has a new Avira t-shirt – and he might not remember how he got it.
The post Avira Rainy Day Rescue appeared first on Avira Blog.
GCHQ Wants UK Industry To Simplify Its Passwords
President Obama Cautions China On Cyber Attacks Ahead Of State Visit
Yokogawa Patches Widespread SCADA Vulnerability
Curiosity Rover's OS Has Backdoor Bug
CVE-2015-5997
Impero Education Pro before 5105 uses a hardcoded CBC key and initialization vector derived from a hash of the Imp3ro string, which makes it easier for remote attackers to obtain plaintext data by sniffing the network for ciphertext data.