Skip to content

Joomfish System Plugin not enabled Home
Advisory


Microsoft Office365/ProPlus Auto Macro Code Execution/Protection Bypass
Friday, 23 August 2019 14:17

Multiple Microsoft Office Products suffer from an inappropriate default configuration that allows auto-execution of Macros. Standard users can download macro-enabled Access, Excel, PowerPoint, Word documents and bypass built-in protections without user consent, when these documents are located in specific trusted directories/locations on the host machine. It's recommended to disable 'Trusted Locations' in future Office editions. This is because users often do not use the default trusted locations, potentially leaving average users vulnerable to such attacks when there is no need.

 
Microsoft Security Updates (August 2019)
Friday, 23 August 2019 11:39

Microsoft monthly patches have been released. The August security release consists of security updates for the following software: Microsoft Windows, Internet Explorer, Microsoft Edge, ChakraCore, Microsoft Office, Microsoft Office Services and Web Apps, Visual Studio, Online Services, Active Directory and Microsoft Dyanmics. There are 94 vulnerabilities, 29 of them rated critical. 2 critical wormable Remote Desktop Service (not RDP) vulnerabilities have been patched.Users are advised to update as soon as possible.

 
Microsoft Security Updates (July 2019)
Wednesday, 10 July 2019 16:07

Microsoft monthly patches have been released. There are 78 vulnerabilities, 6 publicly disclosed, 15 rated critical, 2 exploited which are privilege escalation issues. These updates address vulnerabilities in Microsoft Windows, Internet Explorer, Microsoft Edge, Microsoft Office, Microsoft Office Services and Web Apps, Azure DevOps, Open Source Software, .NET Framework, Azure, SQL Server, ASP.NET, Visual Studio and Microsoft Exchange Serve. Users are advised to update as soon as possible.

 
Apple Security Updates
Wednesday, 26 June 2019 11:43

Apple released the security updates to address the vulnerabilities in AirPort Express, AirPort Extreme and AirPort Time Capsule wireless routers with 802.11n. A remote attacker could take control of an affected system by exploiting some of these vulnerabilities. Users are advised to update as soon as possible.

 
Linux Security Update Overview (Jun 18, 2019)
Tuesday, 18 June 2019 10:44

The following Linux distributions have released security updates to fix vulnerabilities:
Debian: Security updates for linux, thunderbird, znc, dbus, zookeeper, mediawiki, vlc, cyrus-imapd, evoluation, exim4 and heimdal.
Redhat: Security updates for flash-plugin, chromium-browser, Bind and kernel.
OpenSUSE: Security updates for vim, chromium, neovim, rubygem-rack, and virtualbox.

 
<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>

Page 1 of 377
[YOUR IP: 3.227.233.78: 59462] ...   [YOUR BROWSER: CCBot/2.0 (https://commoncrawl.org/faq/)] ...