Foxit reader is prone to two remote code execution zero day vulnerabilities, which are found by Steven Seeley (mr_me) and Ariele Caltabiano (kimiya). Both vulnerabilities are due to the lack of proper validation of user-supplied data, which can lead to writing arbitrary files into attacker controlled locations and also launching of any executable files. User interaction is […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:41829 CVE-2017-6418 CVE-2017-6420 USN-3393-1 USN-3393-1 — clamav vulnerabilities oval:org.secpod.oval:def:502129 CVE-2017-1000061 RHSA-2017:2492-01 RHSA-2017:2492-01 — Redhat xmlsec1 oval:org.secpod.oval:def:703767 USN-3391-3 USN-3391-3 — firefox regression oval:org.secpod.oval:def:703768 CVE-2017-10053 CVE-2017-10067 CVE-2017-10074 CVE-2017-10081 CVE-2017-10087 CVE-2017-10089 CVE-2017-10090 […]

Read More →

 Image Source: pcworld   Ever wonder why your system running slower than usual, and how those annoying random messages pop-up? or the newly added extensions in your browser, which you never used. The browser can’t load pages, internet connectivity is one thing but your computer is always slow. Those crashes that happen every now and then, […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod Saner solution. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:204548 CESA-2017:2485 CVE-2017-1000117 CESA-2017:2485 — centos 6 git oval:org.secpod.oval:def:603056 CVE-2016-10376 DSA-3943-1 DSA-3943-1 gajim — gajim oval:org.secpod.oval:def:603057 CVE-2017-11423 CVE-2017-6419 DSA-3946-1 DSA-3946-1 libmspack — libmspack oval:org.secpod.oval:def:603061 CVE-2014-9940 CVE-2017-1000363 CVE-2017-1000365 CVE-2017-10911 […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:204546 CESA-2017:2478 CVE-2017-3167 CVE-2017-3169 CVE-2017-7679 CVE-2017-9788 CESA-2017:2478 — centos 6 httpd oval:org.secpod.oval:def:204547 CESA-2017:2424 CVE-2017-10053 CVE-2017-10067 CVE-2017-10074 CVE-2017-10081 CVE-2017-10087 CVE-2017-10089 CVE-2017-10090 CVE-2017-10096 CVE-2017-10101 CVE-2017-10102 CVE-2017-10107 CVE-2017-10108 CVE-2017-10109 CVE-2017-10110 CVE-2017-10115 CVE-2017-10116 […]

Read More →

SMBLoris is a remote, unauthenticated application-level denial of service (DoS) attack against Microsoft Windows operating systems. It is caused by a very old memory-handling bug in the Server Message Block (SMB) network protocol implementation. The vulnerability lies in the way SMB packets are processed and memory is allocated. It was discovered by two RiskSense security researchers — Sean […]

Read More →