TTCSIRT-298.032420: TT-CSIRT ADVISORY- TYPE 1 FONT PARSING REMOTE CODE EXECUTION VULNERABILITY
Microsoft is aware of limited targeted attacks that could leverage un-patched vulnerabilities in the Adobe Type Manager Library, and is providing the following guidance to help reduce customer risk until…
Read MoreTTCSIRT-297.032020: TT-CSIRT ADVISORY- CISCO SD-WAN SOLUTION COMMAND INJECTION VULNERABILITY
A vulnerability in the CLI of Cisco SD-WAN Solution software could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient…
Read MoreTTCSIRT-296.032020: TT-CSIRT ADVISORY- CISCO WEBEX NETWORK RECORDING PLAYER AND CISCO WEBEX PLAYER ARBITRARY CODE EXECUTION VULNERABILITIES
Multiple vulnerabilities in Cisco Webex Network Recording Player for Microsoft Windows and Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system.…
Read MoreTTCSIRT-295.180320: TT-CSIRT ADVISORY- ADOBE SECURITY UPDATE FOR ADOBE ACROBAT AND READER
Adobe has released security updates for Adobe Acrobat and Reader for Windows and macOS. These updates address critical and important vulnerabilities. Successful exploitation could lead to arbitrary code execution in the context of the current user…
Read MoreTTCSIRT-294.031820: TT-CSIRT ADVISORY- VMWARE RELEASES SECURITY UPDATES FOR MULTIPLE PRODUCTS
VMware has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. TT-CSIRT encourages users…
Read MoreGuidelines for Enterprise VPN Security
As more organizations move towards telecommuting (work from home) in an attempt to curtail the spread of COVID-19, the U.S. Cyber and Infrastructure Security Agency (CISA) has issued guidelines for…
Read More