Kaspersky Lab North America announced today that CRN, a brand of The Channel Company, has named Leslie Bois, Vice President, Channel Sales, to its 2016 list of Top 100 Executives.
Monthly Archives: August 2016
Connect to open Wi-Fi networks without getting hacked!
Connecting to public Wi-Fi networks can get us out of a jam… and also get us into one! Use these 10 security tips and surf the web carefully.
Vai in vacanza con l’iPhone e le Beats
Non vedi il contenuto di questa Email? Clicca Quì http://campaign.r20.constantcontact.com/render?m=1103299326490&ca=1bbacc64-00a9-4a60-a35f-33f98efe0ab6 Greetings! Inotra questa email http://ui.constantcontact.com/sa/fwtf.jsp?llr=9qmh7qdab&m=1103299326490&ea=broadcast%40simpaticotech.it&a=1125465391724 Questa mail è stata inviata a [email protected], da parte di [email protected] Aggiorna profilo/indirizzo e-mail https://visitor.constantcontact.com/do?p=oo&m=001ppwvHtrFNf1h59YxsVHM6Q%3D%3D&ch=ce81b4a0-be9c-11e4-90fa-d4ae528eb986&ca=1bbacc64-00a9-4a60-a35f-33f98efe0ab6 Rimozione istantanea con SafeUnsubscribe(TM) https://visitor.constantcontact.com/do?p=un&m=001ppwvHtrFNf1h59YxsVHM6Q%3D%3D&ch=ce81b4a0-be9c-11e4-90fa-d4ae528eb986&ca=1bbacc64-00a9-4a60-a35f-33f98efe0ab6 Informativa sulla privacy: http://ui.constantcontact.com/roving/it/CCPrivacyPolicy.jsp Online Marketing by Constant Contact(R) www.constantcontact.com Simpatico Network srl | Via Volta 7 | BUCCINASCO | 20090 | Italy
CVE-2016-4833
Cross-site scripting (XSS) vulnerability in the Nofollow Links plugin before 1.0.11 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2016-5639
Directory traversal vulnerability in cgi-bin/login.cgi on Crestron AirMedia AM-100 devices with firmware before 1.4.0.13 allows remote attackers to read arbitrary files via a .. (dot dot) in the src parameter.
CVE-2016-5640
Directory traversal vulnerability in cgi-bin/rftest.cgi on Crestron AirMedia AM-100 devices with firmware before 1.4.0.13 allows remote attackers to execute arbitrary commands via a .. (dot dot) in the ATE_COMMAND parameter.
CVE-2016-5666
Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 rely on the client to perform authentication, which allows remote attackers to obtain access by setting the value of objresp.authenabled to 1.
CVE-2016-5667
Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 allow remote attackers to bypass authentication via a direct request to a page other than index.html.
CVE-2016-5668
Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 allow remote attackers to bypass authentication and change settings via a JSON API call.
CVE-2016-5669
Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 use a hardcoded X.509 certificate from an OpenSSL Test Certification Authority, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.