The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. Source: https://threatpost.com
A memory corruption vulnerability recently found in Linux Kernel’s implementation of RDS over TCP could lead to privilege escalation. Tracked as CVE-2019-11815 and featuring a CVSS base score of 8.1, the flaw impacts Linux kernels prior to 5.0.8, but only systems that use the Reliable Datagram Sockets (RDS) for the TCP module. The issue, a NIST advisory reveals, is a race condition that affects the kernel’s rds_tcp_kill_sock in net/rds/tcp.c. The…
Alongside Microsoft and Adobe, Apple have also released security patches for various products. Specifically, Apple rolled out iOS 12.3, tvOS
Apple Rolls-Out iOS 12.3 Which Introduces A Number of Security Fixes on Latest Hacking News.
Adobe May Patch Tuesday updates addressed multiple security vulnerabilities in different Adobe products. Precisely, a huge number of critical security
Adobe May Patch Tuesday Fixes Numerous Critical Vulnerabilities In Reader, Flash, And Media Encoder o…
This week marked the release of Microsoft May Patch Tuesday updates. Once again, Microsoft patched a zero-day flaw in one
Microsoft May Patch Tuesday Fixes Numerous Critical Bugs As Well As A Zero-Day on Latest Hacking News.
A recently patched vulnerability in the Slack desktop application for Windows can be exploited by malicious actors to steal and manipulate a targeted user’s downloaded files. David Wells, a researcher at Tenable, discovered that version 3.3.7 of the Slack desktop app is affected by a download hijacking vulnerability that can be exploited by getting the targeted user to click on a specially crafted link pasted into a Slack channel. The…
Tenable this week announced Nessus Essentials, an expanded version of its free vulnerability assessment solution previously known as Nessus Home. The tool is targeted to students, professors, and enthusiasts starting their careers in cyber-security, to help them learn about vulnerability assessments. The company also touts the Nessus solutions as having a fast vulnerability detection, with new plugins being released within an average of 24 hours from the time of vulnerability…
Airplane radio navigation systems are vulnerable to manipulation using software defined radio, researchers have shown. Researchers have proven that a $600 software defined radio can be used to hack into airliners’ radio-navigation system, demonstrating a potentially dangerous flaw in the instrument-based systems that land planes ranging from private Cessna jets to large commercial airliners. A team at Northeastern University used a commercially available software defined radio (SDR) to spoof radio…
A critical remote code execution vulnerability patched recently by Microsoft in Windows Remote Desktop Services (RDS) poses a serious risk to industrial environments, experts have warned. Microsoft’s Patch Tuesday updates for May 2019 resolve nearly 80 vulnerabilities, including a flaw that can be exploited by malware to go from one device to another similar to how WannaCry spread back in 2017. This security hole, tracked as CVE-2019-0708, impacts RDS (formerly…
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. Source: https://threatpost.com