Industrial Giants Respond to ‘Urgent/11’ Vulnerabilities
Several major industrial and automation solutions providers have issued advisories in response to the recently disclosed Wind River VxWorks vulnerabilities dubbed Urgent/11. In late July, IoT security firm Armis disclosed…
Read MoreTTCSIRT-221.080619: TT-CSIRT Advisory – PHP Security Updates
PHP has released a security update stating that it has discovered the following issues in PHP7 – a) Bug #78256 – Heap-buffer-overflow on exif_process_user_comment. b) Bug #78222 – Heap-buffer-overflow on…
Read MoreTTCSIRT-220.080619: TT-CSIRT Advisory – Chrome Security Updates
Google has released a security update sting that it has discovered in the following vulnerabilities in Google Chrome: a) Insufficient checks on filesystem – (CVE-2019-5856). b) Insufficient filtering of Open…
Read MoreTTCSIRT-219.072519: TT-CSIRT Advisory – Apple Security Updates
Apple has released a security update stating that it has discovered the following issues in iOS ver12.4: a) A memory corruption issue where A remote attacker may be able to…
Read MoreTTCSIRT-218.072519: TT-CSIRT Advisory – Mozilla Security Updates
Mozilla has released a security update stating that it has discovered the following issues in Mozilla FireFox: a) Application permissions give additional remote troubleshooting permission to the site input.mozilla.org, which…
Read MoreTTCSIRT-217.070919: TT-CSIRT Advisory – Microsoft Security Updates
Microsoft has released a security update stating that an elevation of privilege vulnerability exists in Azure Automation “RunAs account” runbooks for users with contributor role. This could potentially allow members…
Read More