Judge Orders Apple to Unlock iPhone Used by San Bernardino Shooters

The Tech Giant Apple has come into an entangled situation which could be a potential security threat for Apple users in near future: Help the FBI Unlock an iPhone. The US Magistrate Judge Sheri Pym has ordered Apple to provide a reasonable technical assistance in solving a critical case of Syed...

The vulnerability of Safari browser and iOS operating system allows a hacker to gain access to the history of web pages viewed.

The vulnerability of the WebKit module in the Safari browser and the iOS operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to the history of web pages by using a specially crafted...

The vulnerability of data backup and application protection tools such as IBM Spectrum Protect Snapshot, as well as protection mechanisms for virtual machines with IBM Spectrum Protect for Virtual Environments, allows attackers to execute arbitrary operating system commands.

The vulnerability of Data Protection extensions for data backup and application protection in IBM Spectrum Protect Snapshot, as well as the virtual machine protection provided by IBM Spectrum Protect for Virtual Environments, exists due to the lack of measures taken to neutralize special elements...

France Orders Facebook To Stop Tracking Non-Users or Face Fines

8th February 2016 would be considered as a cursed day in the history of Facebook. You might have known that just yesterday India bans Facebook's Free Basic Internet in the country. Now, Zuckerberg had got another bombshell in the form of a French Order from the European Data Protection Authority,...

The vulnerability of the Cisco Firepower Extensible Operating System allows a hacker to read arbitrary files.

The vulnerability of the Cisco Firepower Extensible Operating System is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to read arbitrary files through a parameter transmitted using pre-prepared executable code...

SA110 : Java Deserialization Vulnerabilities

SUMMARY Blue Coat products that deserialize unsafe Java objects from untrusted sources are susceptible to one or more vulnerabilities. A remote attacker can exploit these vulnerabilities to cause the target to execute arbitrary code. AFFECTED PRODUCTS Cloud Data Protection for Salesforce CDP-SFDC...

The vulnerability of the Internet Explorer browser, which allows a violator to obtain confidential information

The vulnerability in JavaScript-based browsers like Internet Explorer involves a lack of protection for operational data. Exploiting this vulnerability allows an attacker to obtain confidential information through a specially crafted web page...

The vulnerability in the Internet Explorer browser allows a perpetrator to bypass the ASLR protection mechanism.

The vulnerability of the Internet Explorer browser is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass the ASLR protection mechanism by using a specially crafted web page...

The vulnerability of the Windows operating system, which allows a perpetrator to gain access to protected information

The vulnerability of the win32k.sys driver in the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a local attacker to gain access to protected information through a specially crafted application...

Vulnerability of Microsoft Visio graphic editors, Microsoft Excel spreadsheet editors, Microsoft PowerPoint presentation preparation software, Microsoft Word word processors, Microsoft Visual Basic software development environment, Microsoft Office software suite – tools that allow attackers to bypass ASLR protection mechanisms.

The vulnerabilities of Microsoft Visio, a graphic editor; Microsoft Excel, an electronic spreadsheet editor; Microsoft PowerPoint, a presentation software; Microsoft Word, a text editor; the Microsoft Visual Basic development environment; and the Microsoft Office suite are related to the lack of...

IRS Releases Ninth Security Tip

The Internal Revenue Service IRS has released the ninth in a series of tips intended to help the public protect personal and financial data online and at home. This tip describes new procedures taken by the IRS, state governments, and the tax industry to provide a safer, more secure filing...

IBM Tivoli Storage FlashCopy Manager for VMware 3.1.x < 3.1.1.3 / 3.2.x < 3.2.0.6 / 4.1.x < 4.1.4.0 Command Execution

The version of IBM Tivoli Storage FlashCopy Manager for VMware installed on the remote host is affected by multiple vulnerabilities : - An unspecified flaw exists in the graphical user interface that allows an unauthenticated, remote attacker to perform backup and restore operations, along with...

IBM TSM for Virtual Environments 6.3.x < 6.3.2.5 / 6.4.x < 6.4.3.1 / 7.1.x < 7.1.4.0 RCE

The version of IBM Tivoli Storage Manager TSM for Virtual Environments installed on the remote host is 6.3.x prior to 6.3.2.5, 6.4.x prior to 6.4.3.1, or 7.1.x prior to 7.1.4.0. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists in the user interface that allows...

CVE-2015-7426

The Data Protection extension in the VMware GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware aka Spectrum Protect for Virtual Environments 7.1 before 7.1.3.0 and Tivoli Storage FlashCopy Manager for VMware aka Spectrum Protect Snapshot 4.1 before 4.1.3.0 allo...

Input validation

The Data Protection extension in the VMware GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware aka Spectrum Protect for Virtual Environments 7.1 before 7.1.3.0 and Tivoli Storage FlashCopy Manager for VMware aka Spectrum Protect Snapshot 4.1 before 4.1.3.0 allo...

CVE-2015-7426

The Data Protection extension in the VMware GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware aka Spectrum Protect for Virtual Environments 7.1 before 7.1.3.0 and Tivoli Storage FlashCopy Manager for VMware aka Spectrum Protect Snapshot 4.1 before 4.1.3.0 allo...

CVE-2015-7426

CVE-2015-7426 affects IBM Tivoli Storage Manager for Virtual Environments (Data Protection for VMware) and Tivoli Storage FlashCopy Manager for VMware. The Data Protection extension in the VMware GUI allows remote attackers to execute arbitrary OS commands via unspecified vectors. Affected versio...

CVE-2015-7429

The Data Protection extension in the VMware GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware aka Spectrum Protect for Virtual Environments 7.1 before 7.1.4 and Tivoli Storage FlashCopy Manager for VMware aka Spectrum Protect Snapshot 4.1 before 4.1.4 allows...

Design/Logic Flaw

The Data Protection extension in the VMware GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware aka Spectrum Protect for Virtual Environments 7.1 before 7.1.4 and Tivoli Storage FlashCopy Manager for VMware aka Spectrum Protect Snapshot 4.1 before 4.1.4 allows...

CVE-2015-7429

The Data Protection extension in the VMware GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware aka Spectrum Protect for Virtual Environments 7.1 before 7.1.4 and Tivoli Storage FlashCopy Manager for VMware aka Spectrum Protect Snapshot 4.1 before 4.1.4 allows...