Microsoft publicizes November Patch Tuesday security updates today, fixing 74 common vulnerabilities and exposures (CVEs) in the family of Windows operating systems and related products. Out of these, 13 are classified as “Critical” and 61 as “Important”. Amongst the 13 Critical vulnerabilities, there is one vulnerability in Internet Explorer which is under the radar of […]

Read More →

A Critical 19 year old remote code execution vulnerability has been identified in the WinRAR which is currently being actively exploited in the wild. The vulnerability is tracked as CVE-2018-20250 and exists in the library ‘unacev2.dll‘, library used to extract the old and rarely used ACE archive format. This vulnerability allows attackers to completely take […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:36744 CVE-2016-3300 Netlogon elevation of privilege vulnerability in Microsoft Windows – CVE-2016-3300 oval:org.secpod.oval:def:36743 CVE-2016-3237 Kerberos security feature bypass vulnerability in Microsoft Windows – CVE-2016-3237 oval:org.secpod.oval:def:36742 CVE-2016-3237 CVE-2016-3300 MS16-101 Multiple […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:36720 CVE-2016-3308 Elevation of privilege vulnerability in Windows Kernel-Mode Drivers – CVE-2016-3308 oval:org.secpod.oval:def:36721 CVE-2016-3309 Elevation of privilege vulnerability in Windows Kernel-Mode Drivers – CVE-2016-3309 oval:org.secpod.oval:def:36722 CVE-2016-3310 Elevation of privilege […]

Read More →

Microsoft January 2016 Patch Tuesday bring nine security bulletins which is addressing 25 vulnerabilities. Six are rated as Critical and 3 are Important. Six Bulletins are rated as Critical , MS16-001 for Internet Explorer.  MS16-002 for Microsoft Edge, MS16-003 for JScript and VBScript,  MS16-004 for Microsoft Office, MS16-005  for Windows Drivers and  MS16-006 for Silverlight. Microsoft security bulletin summary for January 2016 in order of severity MS16-001 : Vulnerabilities in Internet […]

Read More →

MS Patch Tuesday May 2015   This May 2015 Patch Tuesday Microsoft released 13 security bulletins addressing a total of 46 vulnerabilities. This month high priority fix is for Internet Explorer which alone addresses 22 out of 46 vulnerabilities. This month 3 bulletins are rated as Critical, addressing 30 vulnerabilities and 10 are rated as […]

Read More →