Recently, Adobe officially released the December security update, which fixes multiple vulnerabilities in Acrobat and Reader. Vulnerability Overview Vulnerability Impact Severity CVE Number Arbitrary Code Execution Critical CVE-2018-15998CVE-2018-15987 Arbitrary Code Execution Critical CVE-2018-16004CVE-2018-19720 Privilege...
Microsoft released the December Patch Tuesday, fixing 39 security issues ranging from simple spoofing attacks to remote code execution. The products involved in the .NET Framework, Adobe Flash Player, Internet Explorer, Microsoft Dynamics, Microsoft...
phpMyAdmin is a free software tool written in PHP that is intended to handle the administration of a MySQL or MariaDB database server. You can use phpMyAdmin to perform most administration tasks, including creating...
SQLite released 3.26.0 on 2018-12-01 to fix a remote code execution vulnerability. This vulnerability was found by Tencent Blade Team and the details of the specific vulnerability have not been made public. It is currently named Magellan....
Recently, Kubernetes was found to have a serious security vulnerability. This vulnerability mark as CVE-2018-1002105. A malicious user can use the Kubernetes API server to connect to the backend server to send arbitrary requests...
Malware creators are abusing a vulnerability in Firefox to trick users. Intriguingly, the vulnerability was first reported in April 2007 and has been repeatedly reported back, but for some reason, it has not been...
Yesterday, we mentioned that Flash Player was found to have a serious zero-day vulnerability. Although Adobe fixes it immediately, other platforms still need time to synchronize. For example, Windows 8 and Windows 10 have...
A joint team of researchers from Lancaster University and Northwest University and Peking University in China tested security through artificial intelligence testing. Most websites have verification links including text verification codes and graphics verification...
On December 05, Adobe officially released the Security updates available for Flash Player, which fixes two critical vulnerability (CVE-2018-15982 and CVE-2018-15983) in this products. Successful exploitation does allow arbitrary code execution and privilege escalation in the...
Researchers at Northeastern University and IBM Research have discovered a new variant of the Spectre CPU vulnerability that can be leveraged through browser-based code. An important difference between the new vulnerability known as SplitSpectre and other Spectre variants is...
Wanpeng Li recently discovered two denials of service (DOS) in the Linux Kernel, allowing local attackers to use a null pointer to reference a bug to trigger a DOS state. The first vulnerability, numbered CVE-2018-19406...
On November 22nd, Magisk author topjohnwu published an article mentioning that he discovered a vulnerability in millions of Android devices when he researched the root detection mechanism of the Fate/Grand Order mobile game. Using...
VMware recently released security bulletins that fix a serious vulnerability (CVE-2018-6983) in VMware Workstation and Fusion. The weaknesses were provided by Tianwen Tang of Qihoo 360Vulcan Team, which completed the virtual machine escape challenge at...
Row hammer (also written as rowhammer) is an unintended side effect in dynamic random-access memory (DRAM) that causes memory cells to leak their charges and interact electrically between themselves, possibly leaking or changing the contents of nearby memory rows that were not addressed in...
Uncategorized
Microsoft tested the new Cortana user interface, the Bing search results directly to the desktop
30 May, 2017