TSEC NEWS: 06.05.21 Cron-Job Fehlerhaft nach PHP Update + PWA mobile + Desktop / 04.05.21 - Android App von TSECURITY 28.04.21 - NEUER SERVER // 26.04.21 ++ Download the Electron-App für tsecurity.de // Über 550 Feed-Quellen


❈ Microsoft Exchange 2007/2010 Outlook Web Access vspdx.dll) heap-based overflow

Sicherheitslücken / Exploits vuldb.com

A vulnerability classified as critical was found in Microsoft Exchange 2007/2010 (Groupware Software). This vulnerability affects an unknown code block in the library vspdx.dll) of the component Outlook Web Access. Applying the patch KB2809279 is able to eliminate this problem. The bugfix is ready for download at technet.microsoft.com. A possible mitigation has been published immediately after the disclosure of the vulnerability. Furthermore it is possible to detect and prevent this kind of attack with TippingPoint and the filter 12964....


Kompletten Artikel lesen (externe Quelle: https://vuldb.com/?id.7642)

Zur Startseite

➤ Weitere Beiträge von Team Security | IT Sicherheit (tsecurity.de)

Anno 1404 per wine wouldn't start

vom 515.1 Punkte
Hello, I'm not a very new Linux user nor am I very deep into the Unix system. I recently got a game that I'd like to play again and installed it via wine. Starting Anno 1404 I can see the ingame mouse for a second before it crashes. I run Manjaro Linux w

UACME - Defeating Windows User Account Control

vom 491.21 Punkte
Defeating Windows User Account Control by abusing built-in Windows AutoElevate backdoor. System Requirements x86-32/x64 Windows 7/8/8.1/10 (client, some methods however works on server version too). Admin account with UAC set on default settings required. UsageRun executable from command line: akagi32 [Key] [Param] or akagi64 [Key] [Param]. See "Run examples" below for more info.

Reference: TaoSecurity News

vom 355.65 Punkte
I started speaking publicly about digital security in 2000. I used to provide this information on my Web site, but since I don't keep that page up-to-date anymore, I decided to publish it here.2017 Mr. Bejtlich led a podcast titled Threat Hunting

D-Link DGS-1510-28XMP bis 1.31 erweiterte Rechte [CVE-2017-6205]

vom 339.2 Punkte
Es wurde eine kritische Schwachstelle in D-Link DGS-1510-28XMP, DGS-1510-28X, DGS-1510-52X, DGS-1510-52, DGS-1510-28P, DGS-1510-28 sowie DGS-1510-20 bis 1.31 gefunden. Hiervon betroffen ist eine unbekannte Funktion. Durch die Manipulation mit einer un

D-Link DGS-1510-28XMP bis 1.31 Information Disclosure [CVE-2017-6206]

vom 339.2 Punkte
In D-Link DGS-1510-28XMP, DGS-1510-28X, DGS-1510-52X, DGS-1510-52, DGS-1510-28P, DGS-1510-28 sowie DGS-1510-20 bis 1.31 wurde eine problematische Schwachstelle gefunden. Betroffen ist eine unbekannte Funktion. Durch Manipulation mit einer unbekannten Ei

Local Privilege Escalation in Win32k.sys Through Indexed Color Palettes

vom 338.22 Punkte
This is the second in our series of Top 5 interesting cases from 2019. Each of these bugs has some element that sets them apart from the more than 1,000 advisories released by the program this year. Today’s blog looks a local privilege escalation in t

Another country-sponsored #malware: Vietnam APT Campaign

vom 301.06 Punkte
The background This is a team work analysis, we have at least 5 (five) members involved with this investigation. The case that is about to be explained here is an APT case. Until now, we were (actually) avoiding APT cases for publicity in Malware Must Die

Another country-sponsored #malware: Vietnam APT Campaign

vom 301.06 Punkte
The background This is a team work analysis, we have at least 5 (five) members involved with this investigation. The case that is about to be explained here is an APT case. Until now, we were (actually) avoiding APT cases for publicity in Malware Must Die

The March 2021 Security Update Review

vom 285.12 Punkte
It’s the third second Tuesday of the year, which means we get the latest security updates from Adobe and Microsoft. Take a break from your regularly scheduled activities and join us as we review the details for their latest security offerings. Adobe Patch

The July 2019 Security Update Review

vom 281.83 Punkte
July has arrived and so have the scheduled security patches from Microsoft and Adobe. Take a break from your regularly scheduled activities and join us as we review the details for security patches for this month. Adobe Patches for July 2019 Adobe release

AA21-062A: Mitigate Microsoft Exchange Server Vulnerabilities

vom 272.09 Punkte
Original release date: March 3, 2021SummaryCybersecurity and Infrastructure Security (CISA) partners have observed active exploitation of vulnerabilities in Microsoft Exchange Server products. Successful exploitation of these vulnerabilities allows an unaut

The September 2020 Security Update Review

vom 272 Punkte
September is upon us and so are the latest security offerings from Adobe and Microsoft. Take a break from your regularly scheduled activities and join us as we review the details of security patches for this month.Adobe Patches for September 2020Adobe rel

Team Security Diskussion über Microsoft Exchange 2007/2010 Outlook Web Access vspdx.dll) heap-based overflow