Microsoft has released June Patch Tuesday, security updates with a total release of 130 vulnerabilities in the family of Windows operating systems and related products. This is the highest number of CVE’s Microsoft has reported in a single month. In which, 11 are classified as Critical with Remote Code Execution(RCE) whereas 118 are reported as […]

Read More →

Adobe has released two security updates for Adobe Flash Player, and Adobe Experience Manager Forms. The updates addresses a critical vulnerability in Adobe Flash Player and an important vulnerability in Adobe Experience Manager Forms. The security update covers a total of 8 CVE’s. These flaws allow attackers to take complete control of the system. The Linux and Mac operating systems […]

Read More →

Adobe has released three security updates for Adobe Flash Player (APSB17-04), Adobe Digital Editions (APSB17-05), and Adobe Campaign (APSB17-06) which covers a total of 24 CVEs. These updates for Adobe Flash Player address critical vulnerabilities that could potentially allow an attacker to take control of the affected system. For Digital Editions it resolves a critical heap buffer overflow vulnerability that could lead to […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:33967 CVE-2016-0167, Elevation of Privilege Vulnerability in Windows Kernel-Mode Drivers – CVE-2016-0167 oval:org.secpod.oval:def:33966 CVE-2016-0165, Elevation of Privilege Vulnerability in Windows Kernel-Mode Drivers – CVE-2016-0165 oval:org.secpod.oval:def:33965 CVE-2016-0143, Elevation of Privilege […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:33385 CVE-2016-1009, Arbitrary code execution vulnerability in Adobe Acrobat and Reader products via unspecified vectors – CVE-2016-1009 oval:org.secpod.oval:def:33384 CVE-2016-1007, Arbitrary code execution vulnerability in Adobe Acrobat and Reader products […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:33182 CVE-2016-2842, Denial of service vulnerability in the doapr_outch function in OpenSSL via a long string oval:org.secpod.oval:def:33183 CVE-2015-8652, Out-of-bounds read vulnerability in Adobe Flash Player or Adobe AIR via […]

Read More →

Microsoft February 2016 Patch Tuesday bring 13 Security Bulletins, which is addressing 37 vulnerabilities. Six are rated as Critical and 7 are Important. Following six bulletins are rated as Critical, MS16-009 for Internet Explorer.  MS16-011 for Microsoft Edge. MS16-012 for Windows PDF Library.  MS16-013 for Windows Journal. MS16-015 for Microsoft Office and MS16-022  for Adobe Flash Player.   Microsoft security bulletin summary for February 2016 in order of severity […]

Read More →

Oracle has released  248 security updates as part of the quarterly patch release cycle. The Oracle Critical Patch Update – January 2016 provides fixes for: E-business suite, Java SE, Database Server, MySQL Server, GoldenGate, WebLogic, PeopleSoft Enterprise, Retail applications suite and Fusion applications. The CPUJan2016 Advisory  address  78 security updates in E-business suite which can be remotely exploited without authentication. Eight(8) security […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:29995 CVE-2015-6057, Information disclosure vulnerability in Microsoft Edge – CVE-2015-6057 oval:org.secpod.oval:def:29994 CVE-2015-6057, CVE-2015-6058, MS15-107, Multiple vulnerabilities in Microsoft Edge – MS15-107 oval:org.secpod.oval:def:29996 CVE-2015-6058, XSS filter bypass vulnerability in Microsoft […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:26137 CVE-2015-3185, Security bypass vulnerability in Apache HTTP Server by leveraging the presence of a module that relies on the 2.2 API behavior oval:org.secpod.oval:def:26138 CVE-2015-3183, HTTP request smuggling attack […]

Read More →