Networking giant Cisco issued five security bulletins this week with two critical bugs allowing remote execute code.
Tag Archives: Vulnerabilities
Web-Based Keylogger Used to Steal Credit Card Data from Popular Sites
Researchers estimate thousands of ecommerce sites are under attack by a single threat actor that has infected servers with a web-based keylogger.
Hack Crashes Linux Distros with 48 Characters of Code
A Linux admin and open source developer has come up with a 48-character attack that crashes Linux servers, but experts argue the security implications of the bug.
Threatpost News Wrap, September 30, 2016
The latest on the Yahoo breach, Germany’s problem with WhatsApp-Facebook, Facebook’s osquery tool for Windows, and Zerodium’s $1.5M iOS bounty are all discussed.
Cisco Warns of Critical Flaw in Email Security Appliances
Cisco released a patch for a critical flaw that allowed a remote attacker to gain control of one of its email security appliances.
Microsoft Unveils Cloud-Based Fuzz-Testing Service
Microsoft announced a cloud-based fuzz testing service called Project Springfield that identifies software bugs in applications that could turn into vulnerabilities.
Drupal Patches Three Vulnerabilities in Core Engine
Three vulnerabilities were patched Wednesday in the Drupal content management system’s core engine, two of which were rated critical.
Cisco Warns of Command Injection Flaw in Cloud Platform
Cisco rolls out a bevy of patches tied to vulnerabilities found in its cloud services platform, IOS software and Prime Home products.
Mozilla Patches Certificate Pinning Vulnerability in Firefox
A remote code execution in Firefox caused by the expiration of certificate pins was patched by Mozilla in Firefox 49 and Firefox ESR 45.4.
Apple Squashes 68 Security Bugs With Sierra Release
With the introduction of macOS Sierra 10.12, Apple has patched dozens of security vulnerabilities and also tackled a few Safari 10 bugs to boot.