TTCSIRT-128.060818: TT-CSIRT Advisory – Mozilla Security Updates

TTCSIRT-128.060818: TT-CSIRT Advisory – Mozilla Security Updates

Mozilla has released a security update stating that a vulnerability in the Mozilla Firefox Browser exists where a heap buffer overflow can occur in the Skia library when rasterizing paths using a maliciously crafted SVG file. This results in a potentially exploitable crash and a remote attacker could exploit these vulnerabilities to take control of […]

TTCSIRT-127.060818: TT-CSIRT Advisory – Adobe Security Updates

Adobe has released a security update stating that Adobe Flash Player is prone to the following vulnerabilities: a) A stack-based buffer overflow that could allow for arbitrary code execution – (CVE-2018-5002). b) A type confusion that could allow for arbitrary code execution – (CVE-2018-4945). c) An integer overflow that could lead to information disclosure – […]

TTCSIRT-126.060418: TT-CSIRT Advisory – Chrome Security Updates

Google has released a security state stating that the following vulnerabilities have been discovered in Google Chrome: a) Heap buffer overflow in Skia – (CVE-2018-6141, CVE-2018-6126) b) Incorrect escaping of MathML in Blink – (CVE-2018-6145) c) Incorrect mutability protection in WebAssembly – (CVE-2018-6131) d) Leak of visited status of page in Blink – (CVE-2018-6137) e) […]

TTCSIRT-125.060418: TT-CSIRT Advisory – Apple Security Updates

Apple has released a security update stating that it has discovered the following vulnerabilities in the macOS High Sierra 10.13.5: a) Accessibility Framework – a malicious application may be able to execute arbitrary code with system privileges (CVE-2018-4196). b) AMD – a local user may be able to read kernel memory (CVE-2018-4253). c) Bluetooth – […]

TTCSIRT-124.052518: TT-CSIRT Advisory – Malware Security Updates

Talos has reported that a sophisticated modular malware system known as VPNFilter has a destructive capability that can make the affected device unusable. Devices known to be affected by VPNFilter include Linksys, MikroTik, NETGEAR, and TP-Link networking equipment as well as QNAP network-attached storage (NAS) devices. In addition, compromised devices may be vulnerable to the […]

TTCSIRT-123.052518: TT-CSIRT Advisory – Cisco Security Updates

Cisco has released a security update stating that a vulnerability in Cisco Digital Network Architecture (DNA) Center which could allow an unauthenticated, remote attacker to log in to an affected system by using an administrative account that has default, static user credentials.This is due to the presence of undocumented, static user credentials for the default […]

TTCSIRT-122.052118: TT-CSIRT Advisory – Thunderbird Security Updates

Mozilla has released a security update stating that multiple vulnerabilities have been identified in Mozilla Thunderbird: a) Multiple memory corruption vulnerabilities which could result in arbitrary code execution – (CVE-2018-5150). b) A use-after-free vulnerability can occur while enumerating attributes during SVG animations with clip paths. This results in a potentially exploitable crash – (CVE-2018-5154). c) […]

TTCSIRT-121.052118: TT-CSIRT Advisory – BIND Security Updates

The Internet Systems Consortium (ISC) has released a security update stating that A problem with the implementation of the new serve-stale feature in BIND 9.12 can lead to an assertion failure in rbtdb.c even when stale-answer-enable is off. Additionally, problematic interaction between the serve-stale feature and NSEC aggressive negative caching can in some cases cause […]

TTCSIRT-120.051718: TT-CSIRT Advisory – Microsoft Security Updates

Microsoft has released a security update stating that multiple vulnerabilities have been discovered in Microsoft Office PowerPoint and Excel for Mac where an attacker could entice a victim to open a specially crafted file using the affected application where Microsoft Office PowerPoint and Excel for Mac fails to properly handle objects in memory. Details of […]

TTCSIRT-119.051718: TT-CSIRT Advisory – VMware Security Updates

VMware has released a security update stating that VMware NSX SD-WAN Edge by VeloCloud contains a command injection vulnerability in the local web UI component. This component is disabled by default and should not be enabled on untrusted networks as successful exploitation of this issue could result in remote code execution. Further information on this […]