Tag Archives: vulnerabilities

OpenSSL Fixed a Critical Vulnerability


This week OpenSSL Fixed a Critical Vulnerability, the new security vulnerability discovered in OpenSSL. CVE-2015-1793 is due to a problem with authentication certificate processing which may lead to MITM man in the middle attack. OpenSSL Foundation released the patch to

Critical Microsoft HTTP.sys Remote Code Execution Vulnerability

Microsoft have released over this week several security patches that comes to fix critical security vulnerabilities. One of these vulnerabilities is an HTTP.sys security issue that do not properly handle HTTP-requests and may lead to DoS or remote code execution.

Firefox 36.0.1 Released


New security update have been released by Mozilla Firefox 36.0.1, the list of patches include fix for nine security vulnerabilities. While users may apply the security update automatically from the browser update. Updates will fix the following: 36.0.1 – Disable

Vulnerability Update, February 17, 2015

The Vulnerability Update from Secunia Total number of new vulnerabilities in the Top 20* over the 3 month period: 1,357 Vendor with most vulnerable products in the 3 month period: IBM Product with the most vulnerabilities: X.Org XServer And 2015

Adobe critical zero day vulnerability to patch

flash player

Adobe has released over this week security updates to fix critical vulnerabilities in Adobe Flash. The patches are going to address 18 vulnerabilities 15 of them allows remote code execution. CVE 2015-0313 is actively used by attackers to compromise systems

Researchers released a script to decrypt and extract LastPass Master Password

master password

On DefCamp 2014 conference in Romania security researcher Alex Balan demonstrated a new way that allows attacker to grab master password on LastPass system which integrate itself in browser, mobile app or webapp. this technology gives user to have a

OpenSSL Released a fix to four vulnerabilities


OpenSSL have an update for the encryption package, the new version comes to fix four security vulnerabilities including a high severity vulnerability that allows attacker to perform a denial of service attack on vulnerable servers.this bug can be exploited by parsing