remote code execution vulnerability

Magento Patches Critical SQL Injection and RCE Vulnerabilities

Posted on March 29, 2019 by Tom Spring

Magento patched 37 flaws Thursday, including a stored cross-site scripting (XSS) vulnerability that could have let an attacker take over a site. Continue reading Magento Patches Critical SQL Injection and RCE Vulnerabilities→

Latest Drupal RCE Flaw Used by Cryptocurrency Miners and Other Attackers

Posted on February 25, 2019 by Edi Kogan

Another remote code execution vulnerability has been revealed in Drupal, the popular open-source Web content management system. One exploit — still working at time of this writing — has been used in dozens of unsuccessful attacks against ou… Continue reading Latest Drupal RCE Flaw Used by Cryptocurrency Miners and Other Attackers→

Cisco Patches Two Critical RCE Bugs in IOS XE Software

Posted on March 28, 2018 by Tom Spring

Cisco releases 22 patches as part of its semiannual Cisco IOS and IOS XE software security advisory. Continue reading Cisco Patches Two Critical RCE Bugs in IOS XE Software→

Remote Code Execution Bug Patched in Adobe Acrobat Reader DC

Posted on February 27, 2018 by Lindsey O'Donnell

A remote code execution security flaw has been patched in one of the latest versions of Adobe Acrobat Reader DC. Continue reading Remote Code Execution Bug Patched in Adobe Acrobat Reader DC→

Flaw in Popular Transmission BitTorrent Client Lets Hackers Control Your PC Remotely

Posted on January 16, 2018 by Swati Khandelwal

A critical vulnerability has been discovered in the widely used Transmission BitTorrent app that could allow hackers to remotely execute malicious code on BitTorrent users’ computers and take control of them.

The vulnerability has been uncovered by Go… Continue reading Flaw in Popular Transmission BitTorrent Client Lets Hackers Control Your PC Remotely→

Google Finds 7 Security Flaws in Widely Used Dnsmasq Network Software

Posted on October 3, 2017 by Mohit Kumar

Security researchers have discovered not one or two, but a total of seven security vulnerabilities in the popular open source Dnsmasq network services software, three of which could allow remote code execution on a vulnerable system and hijack it.

Dns… Continue reading Google Finds 7 Security Flaws in Widely Used Dnsmasq Network Software→

FreeXL Library Fixes Two Remote Code Execution Vulnerabilities

Posted on September 12, 2017 by Chris Brook

Researchers warned Monday of two remote code execution vulnerabilities in FreeXL that could let an attacker execute code with local user privileges.
Continue reading FreeXL Library Fixes Two Remote Code Execution Vulnerabilities→

Apache Struts 2 Flaws Affect Multiple Cisco Products

Posted on September 12, 2017 by Swati Khandelwal

After Equifax massive data breach that was believed to be caused due to a vulnerability in Apache Struts, Cisco has initiated an investigation into its products that incorporate a version of the popular Apache Struts2 web application framework.

Apache… Continue reading Apache Struts 2 Flaws Affect Multiple Cisco Products→

PCs with Intel Server Chipsets, Launched Since 2010, Can be Hacked Remotely

Posted on May 2, 2017 by Swati Khandelwal

Updated: Since the below-reported vulnerability is highly critical and it would take a few weeks for sysadmins to protect their enterprise network, the research team has not yet disclosed the technical details of the vulnerability.

Meanwhile, I have t… Continue reading PCs with Intel Server Chipsets, Launched Since 2010, Can be Hacked Remotely→

Critical Flaws in MySQL Give Hackers Root Access to Server (Exploits Released)

Posted on November 3, 2016 by Swati Khandelwal

Over a month ago we reported about two critical zero-day vulnerabilities in the world’s 2nd most popular database management software MySQL:

MySQL Remote Root Code Execution (CVE-2016-6662)
Privilege Escalation (CVE-2016-6663)

At that time, Polish se… Continue reading Critical Flaws in MySQL Give Hackers Root Access to Server (Exploits Released)→