Directory traversal

In Apache RocketMQ 4.2.0 to 4.6.0, when the automatic topic creation in the broker is turned on by default, an evil topic like “../../../../topic2020” is sent from rocketmq-client to the broker, a topic folder will be created in the parent directory in brokers, which leads to a directory traversa...

Solving Uninitialized Stack Memory on Windows

This blog post outlines the work that Microsoft is doing to eliminate uninitialized stack memory vulnerabilities from Windows and why we’re on this path. This blog post will be broken down into a few parts that folks can jump to: Uninitialized Memory Background Potential Solutions to Uninitialize...

Design/Logic Flaw

An issue was discovered in Ignite Realtime Spark 2.8.3 and the ROAR plugin for it on Windows. A chat message can include an IMG element with a SRC attribute referencing an external host's IP address. Upon access to this external host, the NTLM hashes of the user are sent with the HTTP request. Th...

Automatic Instacart Bots

Instacart is taking legal action against bots that automatically place orders: Before it closed, to use Cartdash users first selected what items they want from Instacart as normal. Once that was done, they had to provide Cartdash with their Instacart email address, password, mobile number, tip...

OpenSSL: EDIPARTYNAME NULL Pointer De-reference Vulnerability (CVE-2020-1971) - Linux

OpenSSL is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openssl:openssl";...

You receive an access violation error and the system may appear to become unresponsive when you try to install an update from Windows Update or from Microsoft Update

You receive an access violation error and the system may appear to become unresponsive when you try to install an update from Windows Update or from Microsoft Update The problem that the "Symptoms" section describes was corrected in Windows Update Agent 3.0 and in update 927891. These updates wer...

Description of the Office Web Apps Server update: March 12, 2013

Description of the Office Web Apps Server update: March 12, 2013 INTRODUCTION Microsoft has released an update for Microsoft Office Web Apps Server. This update provides the latest fixes for Office Web Apps Server. Additionally, this update contains stability and performance improvements. Known...

Threat Roundup for April 3 to April 10

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between April 3 and April 10. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristic...

CVE-2019-7306

CVE-2019-7306 concerns Byobu, where the Apport hook may disclose sensitive information by auto-uploading the local user’s .screenrc (potentially exposing hostnames, usernames, and passwords). The connected OSV/Ubuntu entries confirm Byobu as the affected component and describe the disclosure risk...

Security Updates for Windows Defender (April 2020)

The engine version of Microsoft Windows Defender installed on the remote Windows host is prior to 4.18.2001.112. It is, therefore, affected by a hard link elevation of privilege vulnerability which could allow an attacker who successfully exploited this vulnerability to elevate privileges on the...

MS15-046: Description of the security update for Word 2013: May 12, 2015

Describes an update that resolves vulnerabilities in Microsoft Office that could allow remote code execution when an Office file that is located in the same network directory as a specially crafted library file is opened.IntroductionThis update resolves vulnerabilities in Microsoft Office that...

MS15-012: Description of the security update for Microsoft Excel 2013: February 10, 2015

Resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Office file in an affected version of Office software.IntroductionThis security update resolves vulnerabilities in Microsoft Office that could...

MS15-022: Description of the security update for Office Web Apps Server 2013: March 10, 2015

Resolves vulnerabilities in Office Web Apps Server 2013 that could allow remote code execution if an authenticated attacker sends specially crafted page content to a targeted computer that is running SharePoint Server.IntroductionThis update resolves vulnerabilities in Microsoft Office Web Apps...

MS16-070: Description of the security update for OneNote 2016: June 14, 2016

MS16-070: Description of the security update for OneNote 2016: June 14, 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft...

MS16-019: Description of the security update for the .NET Framework 4.6 and 4.6.1 in Windows Vista Service Pack 2, Windows Server 2008 Service Pack 2, Windows 7 Service Pack 1, and Windows Server 2008 R2 Service Pack 1: February 9, 2016

MS16-019: Description of the security update for the .NET Framework 4.6 and 4.6.1 in Windows Vista Service Pack 2, Windows Server 2008 Service Pack 2, Windows 7 Service Pack 1, and Windows Server 2008 R2 Service Pack 1: February 9, 2016 View products that this article applies to. Summary This...

Description of the security update for Office 2010: October 10, 2017

Description of the security update for Office 2010: October 10, 2017 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft advisory...

MS15-013: Description of the security update for Microsoft Office 2013: February 10, 2015

MS15-013: Description of the security update for Microsoft Office 2013: February 10, 2015 Introduction This security update resolves vulnerabilities that could allow security feature bypass if a specially crafted file is opened in an affected edition of Microsoft Office. Summary Microsoft has...

MS16-029: Description of the security update for 2007 Microsoft Office Suite: March 8, 2016

MS16-029: Description of the security update for 2007 Microsoft Office Suite: March 8, 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities,...

Privacy Badger - A Browser Extension That Automatically Learns To Block Invisible Trackers

Privacy Badger is a browser extension that automatically learns to block invisible trackers. Instead of keeping lists of what to block, Privacy Badger learns by watching which domains appear to be tracking you as you browse the Web. Privacy Badger sends the Do Not Track signal with your browsing...

Denial Of Service (DoS)

Python is vulnerable to denail of service DoS. Due to a flaw found in the Python urllib and urllib2 libraries where they would not differentiate between different target URLs when handling automatic redirects, it caused Python applications using these modules to follow any new URL that they...