Info collector

Recent Vulnerabilities

Oracle Releases Security Bulletin

By on July 19, 2016 in Recent Vulnerabilities

Original release date: July 19, 2016 Oracle has released its Critical Patch Update for July 2016 to address 276 vulnerabilities across multiple products. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the Oracle July 2016 Critical Patch Update […]

Continue Reading »

Drupal Releases Security Advisory

By on July 18, 2016 in Recent Vulnerabilities

Original release date: July 18, 2016 Drupal has released an advisory to address a vulnerability in Drupal core 8.x versions prior to 8.1.7. Exploitation of  this vulnerability could allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review Drupal’s Security Advisory and apply the necessary update. This […]

Continue Reading »

Apple Releases Multiple Security Updates

By on July 18, 2016 in Recent Vulnerabilities

Original release date: July 18, 2016 Apple has released security updates for iTunes, Safari, tvOS, watchOS, iOS, and OS X El Captain. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Available updates include: iTunes 12.4.2 for Windows 7 and later Safari 9.1.2 for OS X […]

Continue Reading »

Microsoft Releases Security Updates

By on July 12, 2016 in Recent Vulnerabilities

Original release date: July 12, 2016 Microsoft has released 11 updates to address vulnerabilities in Microsoft software. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review Microsoft Security Bulletins MS16-084 through MS16-094 and apply the necessary updates. This product […]

Continue Reading »

Adobe Releases Security Updates

By on July 12, 2016 in Recent Vulnerabilities

Original release date: July 12, 2016 Adobe has released security updates to address vulnerabilities in Acrobat, Flash Player, Reader, and XMP Tookit for Java. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system Users and administrators are encouraged to review Adobe Security Bulletins APSB16-24, APSB16-25, and […]

Continue Reading »

TA16-187A: Symantec and Norton Security Products Contain Critical Vulnerabilities

By on July 9, 2016 in Recent Vulnerabilities

Original release date: July 05, 2016 Systems Affected All Symantec and Norton branded antivirus products Overview Symantec and Norton branded antivirus products contain multiple vulnerabilities. Some of these products are in widespread use throughout government and industry. Exploitation of these vulnerabilities could allow a remote attacker to take control of an affected system. Description The […]

Continue Reading »

SB16-186: Vulnerability Summary for the Week of June 27, 2016

By on July 5, 2016 in Recent Vulnerabilities

Original release date: July 04, 2016 The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center […]

Continue Reading »

TA16-144A: WPAD Name Collision Vulnerability

By on June 27, 2016 in Recent Vulnerabilities

Original release date: May 23, 2016 | Last revised: June 01, 2016 Systems Affected Windows, OS X, Linux systems, and web browsers with WPAD enabled Networks using unregistered or unreserved TLDs Overview Web Proxy Auto-Discovery (WPAD) Domain Name System (DNS) queries that are intended for resolution on private or enterprise DNS servers have been observed […]

Continue Reading »

TA16-132A: Exploitation of SAP Business Applications

By on June 27, 2016 in Recent Vulnerabilities

Original release date: May 11, 2016 Systems Affected Outdated or misconfigured SAP systems Overview At least 36 organizations worldwide are affected by an SAP vulnerability [1]. Security researchers from Onapsis discovered indicators of exploitation against these organizations’ SAP business applications. The observed indicators relate to the abuse of the Invoker Servlet, a built-in functionality in […]

Continue Reading »

TA16-105A: Apple Ends Support for QuickTime for Windows; New Vulnerabilities Announced

By on June 27, 2016 in Recent Vulnerabilities

Original release date: April 14, 2016 Systems Affected Microsoft Windows with Apple QuickTime installed Overview According to Trend Micro, Apple will no longer be providing security updates for QuickTime for Windows, leaving this software vulnerable to exploitation. [1] Description All software products have a lifecycle. Apple will no longer be providing security updates for QuickTime […]

Continue Reading »

Top