1-click code execution vulnerabilities in popular software apps

By Deeba Ahmed
These 1-click vulnerabilities in various popular software applications can let an attacker execute arbitrary code on targeted devices.
This is a post from HackRead.com Read the original post: 1-click code execution vulnerabilities in pop… Continue reading 1-click code execution vulnerabilities in popular software apps

This Week in Security: VPN Gateways, Attacks in the Wild, VLC, and an IP Address Caper

We’ll start with more Black Hat/DEFCON news. [Meh Chang] and [Orange Tsai] from Devcore took a look at Fortinet and Pulse Secure devices, and found multiple vulnerabilities. (PDF Slides) They are publishing summaries for that research, and the summary of the Fortinet research is now available.

It’s… not great. There …read more

Continue reading This Week in Security: VPN Gateways, Attacks in the Wild, VLC, and an IP Address Caper

This Week in Security: Selfblow, Encryption Backdoors, Killer Apps, and the VLC Apocalypse that Wasn’t

Selfblow (Don’t google that at work, by the way) is a clever exploit by [Balázs Triszka] that effects every Nvidia Tegra device using the nvtboot bootloader — just about all of them except the Nintendo Switch. It’s CVE 2019-5680, and rated at an 8.2 according to Nvidia, but that high …read more

Continue reading This Week in Security: Selfblow, Encryption Backdoors, Killer Apps, and the VLC Apocalypse that Wasn’t

July 23, 2019 – Hack Naked News #228

    This week, a bug in NVIDIAs Tegra Chipset opens doors to Malicious Code Execution, hackers publish a list of phished Discord creds, Equifax to pay up to $700 Million in 2017 data breach settlement, several vulnerabilities found in Comodo Antivirus,… Continue reading July 23, 2019 – Hack Naked News #228