Privilege escalation is the method of exploiting a bug, design flaw or configuration issues in an operating system or software application to gain access to resources that are restricted to be used by other users. An independent researcher Dawid Golunski exposed a privilege escalation vulnerability (CVE-2016-5616/CVE-2016-6663) present in MySQL, MariaDB and PerconaDB databases. This issue […]

Read More →

    Microsoft October 2016 Patch Tuesday brings 10 Security bulletins addressing 37 Vulnerabilities. Six bulletins are rated as Critical, three are rated as Important and one is rated as Moderate. Six Critical bulletins are, MS16-118 for Internet Explorer cover 11 CVE’s, MS16-119 for Microsoft Edge cover 13 CVE’s, MS16-120 for Microsoft Graphics cover 7 CVE’s, MS16-121 for […]

Read More →

A new vulnerability has been discovered by Ben Hayak, researcher at Trustwave, at Black Hat Europe in Amsterdam, that can gain access into your private cloud and steal information like private photos, video albums etc. just by clicking on a malicious link. This attack happens before the user realizes that something is going wrong. Yes, that means the application […]

Read More →

Microsoft December 2015 Patch Tuesday bring 12 security bulletins which is addressing 71 vulnerabilities. Eight are rated Critical and 4 are Important. Eight Bulletins are rated as Critical , MS15-124 for Internet Explorer.  MS15-125 for Edge. MS15-126 for JScript and VBScript. MS15-127 for Windows DNS. MS15-128 for Graphics Component. MS15-129 for Silverlight. MS15-130 for Uniscribe and MS15-131 for Office. Microsoft security bulletin summary for December 2015 in order of severity MS15-124 : Vulnerabilities in Internet Explorer (3116180) Severity […]

Read More →

SecPod Research Team member (Deependra Bapna) has found Multiple Stored Cross-site Scripting Vulnerabilities in ClipBucket. The vulnerabilities are due to improper validation of various parameters in various pages. This may allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data. Complete Advisory information can be found here. Advisory in CVRF […]

Read More →

  Microsoft June 2015 Patch Tuesday bring 08 security bulletins addressing a total of 45 vulnerabilities. This month high priority fix is for Internet Explorer which alone addresses 24 out of 45 vulnerabilities. This month 2 bulletins are rated as Critical, addressing 25 vulnerabilities and 6 are rated as Important. Critical security updates addresses security […]

Read More →