RCE – Page 13 – WindowsTechs.com

Critical Vulnerability in Docker Tool for Windows Allows RCE; Patch Available

Posted on May 3, 2018 by Liviu Arsene

A recent vulnerability in the Windows Host Compute Service Shim (hcsshim) library that allows users to import Docker container images in Docker for Windows could have enabled remote code execution on the Windows host. The open source hcsshim library wa… Continue reading Critical Vulnerability in Docker Tool for Windows Allows RCE; Patch Available→

Drupalgeddon 2.0: Are Hackers Slacking Off?

Posted on April 13, 2018 by Nadav Avital

Ever since March 28th, when Drupal published a patch for a RCE named Drupalgeddon 2.0 (SA-CORE-2018-002/CVE-2018-7600), Imperva has been monitoring our cloud looking for hackers’ attempts to exploit the vulnerability, but found nothing. Until tod… Continue reading Drupalgeddon 2.0: Are Hackers Slacking Off?→

Skype, Slack and Signal Vulnerable to Critical Framework Bug

Posted on January 24, 2018 by Tom Spring

The team behind the popular open-source framework Electron warns a remote code execution flaw could compromise user privacy. Continue reading Skype, Slack and Signal Vulnerable to Critical Framework Bug→

The State of Web Application Vulnerabilities in 2017

Posted on December 28, 2017 by Nadav Avital

As a web application firewall provider, part of our job at Imperva is constantly monitoring new security vulnerabilities. To do this, we use internal software that collects information from various data sources such as vulnerability databases, newslett… Continue reading The State of Web Application Vulnerabilities in 2017→

Google Warns of DoS and RCE Bugs in Dnsmasq

Posted on October 3, 2017 by Tom Spring

A domain name system server implementation is at risk of remote code execution, information exposure and denial-of-service attacks after a seven vulnerability were disclosed by Google and patched by the maintainers of Dnsmasq. Continue reading Google Warns of DoS and RCE Bugs in Dnsmasq→

Wireless ‘BlueBorne’ Attacks Target Billions of Bluetooth Devices

Posted on September 12, 2017 by Tom Spring

Bluetooth attack vector, dubbed ‘BlueBorne’, leaves billions of smart Bluetooth devices open to attack including Android and Apple phones and millions more Linux-based smart devices. Continue reading Wireless ‘BlueBorne’ Attacks Target Billions of Bluetooth Devices→

13 Critical Remote Code Execution Bugs Fixed in September Android Update

Posted on September 6, 2017 by Chris Brook

Google fixed 81 vulnerabilities, including 13 critical remote code execution bugs, in the September edition of its Android Security Bulletin on Tuesday. Continue reading 13 Critical Remote Code Execution Bugs Fixed in September Android Update→

Microsoft Patch Tuesday Update Fixes 19 Critical Vulnerabilities

Posted on July 11, 2017 by Tom Spring

Microsoft releases a total of 57 security patches, part of its July Patch Tuesday, with 20 rated critical. Continue reading Microsoft Patch Tuesday Update Fixes 19 Critical Vulnerabilities→

Microsoft Patches Two Critical Vulnerabilities Under Attack

Posted on June 13, 2017 by Tom Spring

Microsoft patched 95 vulnerabilities today, including two under attack. Continue reading Microsoft Patches Two Critical Vulnerabilities Under Attack→

Cisco, Netgear Readying Patches for Samba Vulnerability

Posted on May 31, 2017 by Chris Brook

Cisco is prepping fixes for two of its products affected by last week’s Samba vulnerability. Netgear has also pushed out a fix for NAS devices that were affected. Continue reading Cisco, Netgear Readying Patches for Samba Vulnerability→