Top

Tag: vulnerabilities


Application security, Mobile security

What to Do When a Memory Corruption on an Input String Generates a DoS

April 19, 2018

Via: Security Intelligence

We often think of vulnerabilities as complex technical problems that are difficult to discover and exploit. But if a special character, such as a foreign-language character, in an application running on a common operating system generates a memory corruption issue, […]


Vulnerabilities

Adobe Patches Four Critical Bugs in Flash, InDesign

April 11, 2018

Via: Threat Post

Adobe fixed four critical vulnerabilities in its Flash Player and InDesign products as part of its regularly scheduled April Security Bulletin Tuesday morning. In all, Adobe released 19 patches for products including Adobe Experience Manager, Adobe InDesign CC, Adobe Digital […]


Wireless security

Microsoft Issues Rare Patch for Wireless Keyboard Flaw

April 11, 2018

Via: Dark Reading

Patch Tuesday includes 67 fixes – the most critical of which are browser-related. So much for a spring break: Microsoft today dropped 67 security patches in its April Patch Tuesday release, including one for a piece of one of its […]


Vulnerabilities

Unpatched Vulnerabilities the Source of Most Data Breaches

April 6, 2018

Via: Dark Reading

New studies show how patching continues to dog most organizations – with real consequences. Nearly 60% of organizations that suffered a data breach in the past two years cite as the culprit a known vulnerability for which they had not […]


Mobile security

Google Patches 9 Critical Android Vulnerabilities in April 2018 Update

April 4, 2018

Via: Security Week

Google this week has released its April 2018 set of Android security patches which address more than two dozen Critical and High severity vulnerabilities. 19 vulnerabilities were found to affect components such as Android runtime, Framework, Media framework, and System. […]


Vulnerabilities

Cisco Patches Two Critical RCE Bugs in IOS XE Software

March 29, 2018

Via: Threat Post

Three critical vulnerabilities were patched by Cisco Systems on Wednesday, each tied to the company’s widely used internetworking operating system IOS XE. Two of the bugs are remote code execution vulnerabilities that could allow an attacker to take control over […]


Vulnerabilities

Intel CPUs Vulnerable to New ‘BranchScope’ Attack

March 27, 2018

Via: Security Week

Researchers have discovered a new side-channel attack method that can be launched against devices with Intel processors, and the patches released in response to the Spectre and Meltdown vulnerabilities might not prevent these types of attacks. The new attack, dubbed […]


Application security, Vulnerabilities

An Introduction to HTTP Response Headers for Security

March 23, 2018

Via: Security Intelligence

The world is becoming more interconnected every day, and online services like social media and e-commerce are contributing to massive troves of sensitive business and personal data. These developments introduce new risks and vulnerabilities for cybercriminals to exploit via cross-site […]


Vulnerabilities

More Chrome OS Devices Receive Meltdown, Spectre Patches

March 22, 2018

Via: Security Week

The latest stable channel update for Google’s Chrome OS operating system includes mitigations for devices with Intel processors affected by the Spectre and Meltdown vulnerabilities. Meltdown and Spectre attacks exploit design flaws in Intel, AMD, ARM and other processors. They […]


Cloud security, Vulnerabilities

AMD Acknowledges Vulnerabilities, Will Roll Out Patches In Coming Weeks

March 21, 2018

Via: Threat Post

AMD on Tuesday acknowledged several vulnerabilities that had been previously reported in its Ryzen and EPYC chips, and said that it would roll out firmware patches for those flaws in the coming weeks. The response comes a week after Israel-based […]