A vulnerability in the debug plug-in functionality of the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Series Next-Generation Firewall (NGFW), and Cisco Firepower 9300 Security Appliance could allow an authenticated, local attacker to execute arbitrary commands, aka Privilege Escalation. More Information: CSCvb86725 CSCvb86797. Known Affected Releases: 2.0(1.68) 3.1(1k)A. Known Fixed Releases: 92.2(1.105) 92.1(1.1733) 2.1(1.69).
Monthly Archives: April 2017
CVE-2017-7579
inc/PMF/Faq.php in phpMyFAQ before 2.9.7 has XSS in the question field.
WikiLeaks Reveals CIA's Grasshopper Windows Hacking Framework
As part of its Vault 7 series of leaked documents, whistleblowing website WikiLeaks today released a new cache of 27 documents allegedly belonged to the US Central Intelligence Agency (CIA).
Named Grasshopper, the latest batch reveals a CLI-based framework developed by the CIA to build “customised malware” payloads for breaking into Microsoft’s Windows operating systems and bypassing
Amnesia Botnet Taking Over The Internet Of Things
Signs Of Cyber Espionage Before International Summit
Homeland Security Sues Twitter Over Secretive User
ISP privacy – how much should it cost?
ISPs have started to monetize customer information quietly while selling them bandwidth. The temptation is strong, as that kind of aggregate data has real value on the secondary market, but what about the customers’ privacy?
The post ISP privacy – how much should it cost? appeared first on WeLiveSecurity
Video: Avira goes Prime time with its new all-in-one premium subscription service
The post Video: Avira goes Prime time with its new all-in-one premium subscription service appeared first on Avira Blog.
curl-7.51.0-6.fc25
– fix out of bounds read in curl –write-out (CVE-2017-7407)
curl-7.53.1-4.fc26
– fix out of bounds read in curl –write-out (CVE-2017-7407)