Security Updates for Microsoft Office Compatibility Pack SP3 (September 2017)

Microsoft Office Compatibility Pack SP3 is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in Microsoft Office software when it fails to properly handle objects in memory. An attacker who successfully exploited the...

The vulnerability of the mechanism for implementing compatibility policies for the Apache Ranger software platform allows a violator to induce unpredictable behavior from the program.

The vulnerability of the compatibility policy implementation mechanism in the Apache Ranger software platform arises from the disregard of symbols located after the "" symbol. Exploiting this vulnerability can allow a remote attacker to cause unpredictable behavior in the program...

Important: Red Hat Security Advisory: jboss-ec2-eap security, bug fix, and enhancement update

An update for jboss-ec2-eap is now available for Red Hat JBoss Enterprise Application Platform 6.4 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

SUSE-SU-2017:2350-1 Security update for python-pycrypto

This update for python-pycrypto fixes the following issues: - CVE-2013-7459: Fixed a potential heap buffer overflow in ALGnew bsc1017420. python-paramiko was adjusted to work together with this python-pycrypto change. bsc1047666...

SUSE-SU-2017:2315-1 Security update for libreoffice

LibreOffice was updated to version 5.3.5.2, bringing new features and enhancements: Writer: - New 'Go to Page' dialog for quickly jumping to another page. - Support for 'Table Styles'. - New drawing tools were added. - Improvements in the toolbar. - Borderless padding is displayed. Calc: - New...

CentOS 7 : mariadb (CESA-2017:2192)

An update for mariadb is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Upgrading to Citrix Receiver for Windows

Beginning August 2018, Citrix Receiver has been replaced by Citrix Workspace app. While you can still download older versions of Citrix Receiver, new features and enhancements will be released for Citrix Workspace App. ​​​​​​​ Citrix Receiver for Windows has evolved to meet the platform and user...

Fedora 26 : glibc (2017-92f8958310)

This update improves compatibility with legacy 32-bit i386 applications RHBZ1471427 and addresses a minor security vulnerability in the DNS stub resolver CVE-2017-12132. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...

SUSE SLED12 Security Update : puppet (SUSE-SU-2017:2113-1)

This update for puppet fixes the following issues: Security issue fixed : - CVE-2017-2295: Possible code execution vulnerability where an attacker could force YAML deserialization in an unsafe manner. In default, this update breaks a backwards compatibility with Puppet agents older than 3.2.2 as...

SUSE-SU-2017:2113-1 Security update for puppet

This update for puppet fixes the following issues: Security issue fixed: - CVE-2017-2295: Possible code execution vulnerability where an attacker could force YAML deserialization in an unsafe manner. In default, this update breaks a backwards compatibility with Puppet agents older than 3.2.2 as t...

Koadic C3 COM Command & Control – JScript RAT

Koadic, or COM Command & Control, is a Windows post-exploitation rootkit similar to other penetration testing tools such as Meterpreter and Powershell Empire. The major difference is that Koadic does most of its operations using Windows Script Host a.k.a. JScript/VBScript, with compatibility in t...

pydictor - A Powerful and Useful Hacker Dictionary Builder for a Brute-Force Attack

pydictor is a powerful and useful hacker dictionary builder for a brute-force attack. Why I need to use pydictor ? 1. it always can help you You can use pydictor to generate a general blast wordlist, a custom wordlist based on Web content, a social engineering wordlist, and so on. You can use the...

RHEL 6 / 7 : eap7-jboss-ec2-eap (RHSA-2017:1837)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:1837 advisory. The eap7-jboss-ec2-eap packages provide scripts for Red Hat JBoss Enterprise Application Platform running on the Amazon Web Services AWS...

Moderate: Red Hat Security Advisory: mariadb security and bug fix update

An update for mariadb is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Debian DSA-3921-1 : enigmail - security update

In DSA 3918 Thunderbird was upgraded to the latest ESR series. This update upgrades Enigmail, the OpenPGP extention for Thunderbird, to version 1.9.8.1 to restore full compatibility. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

Weblate: DKIM records not present, Email Hijacking is possible.....

Your SPF record is present attachments : spf Which very well shows that you don't want spoofed email to be sent from your domains, but you just forget one thing: DKIM DomainKeys Identified Mail is an important authentication mechanism to help protect both email receivers and email senders from...

Unspecified vulnerability in nss_compat_ossl

nsscompatossl is a compatibility conversion program that converts OpenSSL to an NSS cryptographic library. A security vulnerability exists in the cipherstring parsing code in nsscompatossl, which stems from the program failing to match the corresponding cipherstring in multiple keyword patterns. ...

Windows 10 & 11 Compatibility with Citrix Virtual Desktops (XenDesktop)

With the release of the Windows 10 & 11 Operating Systems, Microsoft introduced a new way to build, deploy, and service Windows:Windows as a service. New features are packaged into Feature Updates. Bug fixes and security fixes are packaged into Quality/Feature Updates. These updates can be deploy...

HTML5 Receiver Citrix PDF Print Function is Not Working with Chrome Browser v57

This article is intended for Citrix administrators and technical teams only. Non-admin users must contact their company's Help Desk/IT support team and can refer to CTX297149 for more information. HTML5 Receiver - Citrix PDF Printer Prints blank document in Chrome 57. IE and FireFox work fine...

Vulnerability of Microsoft Office Online Server, Microsoft Excel Viewer, Microsoft Office Compatibility Pack, Microsoft SharePoint Server, Microsoft Office, and Microsoft Excel, allowing a perpetrator to execute arbitrary code

The vulnerabilities of Microsoft Office Online Server, Microsoft Excel Viewer, Microsoft Office Compatibility Pack, Microsoft SharePoint Server, Microsoft Office, and Microsoft Excel are related to object handling in memory. Exploitation of these vulnerabilities can allow a malicious actor to...