Adobe has released three security updates for Adobe Flash Player (APSB17-04), Adobe Digital Editions (APSB17-05), and Adobe Campaign (APSB17-06) which covers a total of 24 CVEs. These updates for Adobe Flash Player address critical vulnerabilities that could potentially allow an attacker to take control of the affected system. For Digital Editions it resolves a critical heap buffer overflow vulnerability that could lead to […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:33967 CVE-2016-0167, Elevation of Privilege Vulnerability in Windows Kernel-Mode Drivers – CVE-2016-0167 oval:org.secpod.oval:def:33966 CVE-2016-0165, Elevation of Privilege Vulnerability in Windows Kernel-Mode Drivers – CVE-2016-0165 oval:org.secpod.oval:def:33965 CVE-2016-0143, Elevation of Privilege […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:33385 CVE-2016-1009, Arbitrary code execution vulnerability in Adobe Acrobat and Reader products via unspecified vectors – CVE-2016-1009 oval:org.secpod.oval:def:33384 CVE-2016-1007, Arbitrary code execution vulnerability in Adobe Acrobat and Reader products […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:33182 CVE-2016-2842, Denial of service vulnerability in the doapr_outch function in OpenSSL via a long string oval:org.secpod.oval:def:33183 CVE-2015-8652, Out-of-bounds read vulnerability in Adobe Flash Player or Adobe AIR via […]

Read More →

Microsoft February 2016 Patch Tuesday bring 13 Security Bulletins, which is addressing 37 vulnerabilities. Six are rated as Critical and 7 are Important. Following six bulletins are rated as Critical, MS16-009 for Internet Explorer.  MS16-011 for Microsoft Edge. MS16-012 for Windows PDF Library.  MS16-013 for Windows Journal. MS16-015 for Microsoft Office and MS16-022  for Adobe Flash Player.   Microsoft security bulletin summary for February 2016 in order of severity […]

Read More →

Oracle has released  248 security updates as part of the quarterly patch release cycle. The Oracle Critical Patch Update – January 2016 provides fixes for: E-business suite, Java SE, Database Server, MySQL Server, GoldenGate, WebLogic, PeopleSoft Enterprise, Retail applications suite and Fusion applications. The CPUJan2016 Advisory  address  78 security updates in E-business suite which can be remotely exploited without authentication. Eight(8) security […]

Read More →