The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:37433 CVE-2016-7188 Privilege escalation vulnerability in Windows Diagnostics Hub Standard Collector Service oval:org.secpod.oval:def:37434 CVE-2016-7188 MS16-125 Windows Diagnostics Hub Elevation of privilege vulnerability – MS16-125 oval:org.secpod.oval:def:37431 CVE-2016-0142 Remote code execution […]

Read More →

Microsoft has released Eight security bulletins addressing a total of 24 vulnerabilities. The high priority fix is for Internet Explorer and Microsoft Windows. Internet Explorer alone addresses 14 out of 24 vulnerabilities. This month Three bulletins are rated as Critical, addressing 19 vulnerabilities and five are rated as Important. Critical security updates addresses security issues […]

Read More →

  Microsoft Patch Tuesday was announced this month with Four Security Bulletins addressing a total of 42 vulnerabilities. The high priority fix is for Internet Explorer, which alone addresses 37 out of 42 vulnerabilities. One is rated as Critical, addressing 37 vulnerabilities and three are rated as Important. Critical security updates addresses security issues in […]

Read More →

In this Patch Tuesday, Microsoft released Seven Bulletins addressing a total of 66 vulnerabilities. The high priority fix is for Internet Explorer, which alone addresses 59 out of 66 vulnerabilities and it includes fix for 0-day CVE-2014-1770. Two are rated as Critical, addressing 61 vulnerabilities and five are rated as Important. Critical security updates addresses security […]

Read More →

A new zero-day vulnerability (CVE-2014-1776) in Internet Explorer is being used in a targeted attacks, which was discovered by the security firm FireEye. A memory corruption vulnerability exists in Internet Explorer that can be used to execute arbitrary code and according to FireEye blog, this zero-day exploit can bypasses both ASLR and DEP. The flaw […]

Read More →

An use-after-free vulnerability is present in Microsoft Internet Explorer 10 ( CVE-2014-0322 ) which allows remote attackers to execute arbitrary code. This vulnerability is being exploited in the wild as Watering hole attack, in which the attacker injects a javascript or hidden iframe into a website, which will redirect to a malicious page. In this attack, […]

Read More →