exploit

  1. MS14-063 - Important: Vulnerability in FAT32 Disk Partition Driver Could Allow Elevation of...

    Severity Rating: Important Revision Note: V1.0 (October 14, 2014): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. An elevation of privilege vulnerability exists in the way the Windows FASTFAT system driver interacts with FAT32...
    • News
    • Thread
    • arbitrary code bulletin drivers elevation exploit fastfat fat32 important microsoft october 2014 patch privately reported privilege risk security software update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  2. MS14-061 - Important: Vulnerability in Microsoft Word and Office Web Apps Could Allow Remote...

    Severity Rating: Important Revision Note: V1.0 (October 14, 2014): Bulletin published. Summary: This security update resolves one privately reported vulnerability in Microsoft Office. The vulnerability could allow remote code execution if an attacker convinces a user to open a specially crafted...
    • News
    • Thread
    • admin rights attack exploit microsoft microsoft word october 2014 office web apps remote code execution security update user rights vulnerability
    • Replies: 0
    • Forum: Security Alerts

  3. MS14-062 - Important: Vulnerability in Message Queuing Service Could Allow Elevation of...

    Severity Rating: Important Revision Note: V1.0 (October 14, 2014): Bulletin published. Summary: This security update resolves a publicly disclosed vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker sends a specially crafted input/output...
    • News
    • Thread
    • administrative bulletin elevation of privilege exploit message queuing patch security update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  4. MS14-052 - Critical: Cumulative Security Update for Internet Explorer (2977629) - Version: 1.0

    Severity Rating: Critical Revision Note: V1.0 (September 9, 2014): Bulletin published. Summary: This security update resolves one publicly disclosed and thirty-six privately reported vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution...
    • News
    • Thread
    • critical cumulative exploit internet explorer microsoft remote code execution security update user rights vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  5. TA14-212A: Backoff Point-of-Sale Malware

    Original release date: July 31, 2014 Systems Affected Point-of-Sale Systems Overview This advisory was prepared in collaboration with the National Cybersecurity and Communications Integration Center (NCCIC), United States Secret Service (USSS), Financial Sector Information Sharing and...
    • News
    • Thread
    • antivirus backoff brute force command and control consumer protection cybersecurity data breach exfiltration exploit forensics indicator keylogging malware mitigation network security payment data point of sale remote desktop risk management security
    • Replies: 0
    • Forum: Security Alerts

  6. Vulnerability in Windows Shell Handler Could Allow Elevation of Privilege - Version: 1.0

    Severity Rating: Important Revision Note: V1.0 (May 13, 2014): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker runs a specially crafted application that uses...
    • News
    • Thread
    • exploit local access microsoft privilege security shell handler shellexecuteex update vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  7. VIDEO Addressing Internet "Heartbleed" Emergency

    This website is not affected by the exploit in any way. Further information: Last night news about a remote OpenSSL bug was disclosed on http://heartbleed.com/ which detailed out an exploit in the OpenSSL system library that handles HTTPS connections on your server. This bug impacts CentOS 6.x...
    • Mike
    • Thread
    • bug centos cpanel emergency exploit heartbleed https internet litespeed network openssl patch security server software ssl support update vulnerability whm
    • Replies: 4
    • Forum: Forum Announcements

  8. TA14-098A: OpenSSL 'Heartbleed' vulnerability (CVE-2014-0160)

    Original release date: April 08, 2014 Systems Affected OpenSSL 1.0.1 through 1.0.1f OpenSSL 1.0.2-beta Overview A vulnerability in OpenSSL could allow a remote attacker to expose sensitive data, possibly including user authentication credentials and secret keys, through incorrect memory...
    • News
    • Thread
    • administrator credentials cve-2014-0160 data exposed exploit heartbleed impact information disclosure key material memory mitigation openssl patch perfect forward secrecy public access revision security security flaw tls vulnerability
    • Replies: 0
    • Forum: Security Alerts

  9. MS14-019: Vulnerability in Windows file handling component could allow remote code execution:...

    Continue reading...
    • News
    • Thread
    • exploit extended security updates file management microsoft ms14-019 patch remote code execution risk vulnerability windows
    • Replies: 0
    • Forum: Knowledge Base (KB)

  10. The March 2014 Security Updates

    This month we release five bulletins to address 23 unique CVEs in Microsoft Windows, Internet Explorer and Silverlight. If you need to prioritize, the update for Internet Explorer addresses the issue first described in Security Advisory 2934088, so it should be at the top of your list. While...
    • News
    • Thread
    • adobe flash aslr bulletin critical update customer security cve deployment exploit internet explorer malware mitigation ms14-012 ms14-014 remote code execution response communications security silverlight update vulnerabilities webcast
    • Replies: 0
    • Forum: Security Alerts

  11. Advance Notification Service for the January 2014 Security Bulletin Release

    Today we provide advance notification for the release of four bulletins for January 2014. All bulletins this month are rated Important in severity and address vulnerabilities in Microsoft Windows, Office, and Dynamics AX. The update provided in MS14-002 fully addresses the issue first described...
    • News
    • Thread
    • 2014 ans bulletin deployment dynamics ax exploit guidance impact microsoft msrc office pst risk security server 2003 update vulnerabilities windows windows xp
    • Replies: 0
    • Forum: Security Alerts

  12. Microsoft Releases Security Advisory 2896666

    Today we released Security Advisory 2896666 regarding an issue that affects customers using Microsoft Windows Vista and Windows Server 2008, Microsoft Office 2003 through 2010, and all supported versions of Microsoft Lync. We are aware of targeted attacks, largely in the Middle East and South...
    • News
    • Thread
    • advisory antivirus caution emet exploit firewall malicious emails metigations office 2003 office 2010 security server 2008 spyware system protection threat analysis tiff codec user awareness user rights vulnerability windows vista
    • Replies: 0
    • Forum: Security Alerts

  13. MS13-099: Vulnerability in Microsoft Scripting Runtime Object Library could allow remote code...

    Continue reading...
    • News
    • Thread
    • execution exploit libraries microsoft ms13-099 patch remote risk runtime scripting security support threats update vulnerability
    • Replies: 0
    • Forum: Knowledge Base (KB)

  14. MS13-098: Vulnerability in Windows could allow remote code execution: December 10, 2013

    Continue reading...
    • News
    • Thread
    • cve exploit microsoft ms13-098 patch remote code execution security update vulnerability windows
    • Replies: 0
    • Forum: Knowledge Base (KB)

  15. MS13-106 - Important : Vulnerability in a Microsoft Office Shared Component Could Allow...

    Severity Rating: Important Revision Note: V1.0 (December 10, 2013): Bulletin published. Summary: This security update resolves one publicly disclosed vulnerability in a Microsoft Office shared component that is currently being exploited. The vulnerability could allow security feature bypass if a...
    • News
    • Thread
    • aslr browser exploit internet explorer microsoft office patch security update vulnerability
    • Replies: 0
    • Forum: Security Alerts

  16. Microsoft Releases Security Advisory 2896666

    Today we released Security Advisory 2896666 regarding an issue that affects customers using Microsoft Windows Vista and Windows Server 2008, Microsoft Office 2003 through 2010, and all supported versions of Microsoft Lync. We are aware of targeted attacks, largely in the Middle East and South...
    • News
    • Thread
    • antivirus customer guidance emet exploit firewall malware microsoft microsoft office risk management security advisory software update threat landscape tiff codec user interaction vulnerability windows server windows vista
    • Replies: 0
    • Forum: Security Alerts

  17. MS13-081 - Critical : Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code...

    Severity Rating: Critical Revision Note: (October 8, 2013) Bulletin published. Summary: This security update resolves seven privately reported vulnerabilities in Microsoft Windows. The most severe of these vulnerabilities could allow remote code execution if a user views shared content that...
    • News
    • Thread
    • critical exploit font files kernel microsoft remote code execution security update vulnerabilities windows
    • Replies: 0
    • Forum: Security Alerts

  18. MS13-083: Vulnerability in Windows Common Control Library could allow remote code execution:...

    Continue reading...
    • News
    • Thread
    • common control library exploit ms13-083 patch remote code execution risk security update vulnerability windows
    • Replies: 0
    • Forum: Knowledge Base (KB)

  19. MS13-087 - Important : Vulnerability in Silverlight Could Allow Information Disclosure...

    Severity Rating: Important Revision Note: V1.0 (October 8, 2013): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Silverlight. The vulnerability could allow information disclosure if an attacker hosts a website that contains a specially...
    • News
    • Thread
    • attacker exploit information disclosure ms13-087 safety security silverlight update vulnerability web content
    • Replies: 0
    • Forum: Security Alerts

  20. MS13-086 - Important : Vulnerabilities in Microsoft Word Could Allow Remote Code Execution...

    Severity Rating: Important Revision Note: V1.0 (October 8, 2013): Bulletin published. Summary: This security update resolves two privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a specially crafted file is opened in an affected...
    • News
    • Thread
    • exploit extended security updates important microsoft office patch remote code execution revision user rights vulnerabilities word
    • Replies: 0
    • Forum: Security Alerts