TTCSIRT-072.120817: TT-CSIRT Advisory – Microsoft Security Updates
Microsoft has reported that A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption. An attacker…
Read MoreTTCSIRT-071.120817: TT-CSIRT Advisory – Chrome Security Updates
Google has reported several vulnerabilities with regards to Google Chrome which includes: a) Out of bounds write in QUIC – (CVE-2017-15407) b) Heap buffer overflow in PDFium – (CVE-2017-15408) c)…
Read MoreTTCSIRT-070.120517: TT-CSIRT Advisory – Mozilla Security Updates
Multiple vulnerabilities have been identified in Mozilla Thunderbird, the most severe of which could allow for arbitrary code execution. Details of the vulnerabilities are as follows: a) A use-after-free vulnerability…
Read MoreTTCSIRT-069.120517: TT-CSIRT Advisory – Apache Security Updates
The Apache Software Foundation has release security updates to address multiple vulnerabilities in Apache Struts version 2: a) A denial of service vulnerability exists due to an outdated JSON-lib library…
Read MoreTTCSIRT-068.113017: TT-CSIRT Advisory – Cisco Security Updates
Cisco has released a security update stating that multiple vulnerabilities exist in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) and WebEx Recording Format (WRF) files. A remote…
Read MoreTTCSIRT-067.113017: TT-CSIRT Advisory – Apple Security Updates
Apple has released a security update stating that Apple MacOS High Sierra (10.13) contains a flaw in how it authenticates disabled accounts. When a privileged action prompts the user for…
Read More