Tag Archives: Vulnerabilities & attacks

Critical Microsoft HTTP.sys Remote Code Execution Vulnerability

Microsoft have released over this week several security patches that comes to fix critical security vulnerabilities. One of these vulnerabilities is an HTTP.sys security issue that do not properly handle HTTP-requests and may lead to DoS or remote code execution.

New release for OpenSSL to fix several security vulnerabilities

openssl

Heartbleed OpenSSL security vulnerability is still not the last vulnerability we see for OpenSSL but we continue to find new and critical security issues in OpenSSL library. New security advisory have been published that include several high severity vulnerabilities that

Adobe critical zero day vulnerability to patch

flash player

Adobe has released over this week security updates to fix critical vulnerabilities in Adobe Flash. The patches are going to address 18 vulnerabilities 15 of them allows remote code execution. CVE 2015-0313 is actively used by attackers to compromise systems

Researchers released a script to decrypt and extract LastPass Master Password

master password

On DefCamp 2014 conference in Romania security researcher Alex Balan demonstrated a new way that allows attacker to grab master password on LastPass system which integrate itself in browser, mobile app or webapp. this technology gives user to have a

Bypassing Lockscreen Vulnerability on Ubuntu 14.04 Patched

On the 16th of April a vulnerability report has been issued for Ubuntu operating system that allow user to bypass lock screen interface password protection. The system can be accessed without authorization, payload or any code while all what you

Microsoft prepares 14 patches for the next Tuesday

Patch Windows

Over this week Microsoft issued their monthly advance notification of security bulletins. The next update will contain 14 security patches to fix critical vulnerabilities in Microsoft Office, Internet Explorer and Microsoft Windows SharePoint. This month we have 8 security update

Oracle plans to fix 40 holes in Java

Oracle is planning Critical security patch update for the Java SE that are going to be released on Tuesday, June 18, 2013. This Critical Patch Update is a collection of patches for multiple security vulnerabilities in Oracle Java SE. This