MegaPing suffers from buffer overflow and denial of service vulnerabilities.
Nsauditor version 22.214.171.124 local SEH buffer overflow exploit.
AnyBurn version 4.3 suffers from buffer overflow and denial of service vulnerabilities.
Exel Password Recovery version 126.96.36.199 suffers from buffer overflow and denial of service vulnerabilities.
SDL Web Content Manager version 8.5.0 suffers from an XML external entity injection vulnerability.
There is an out-of-bounds write vulnerability in jscript.dll in the JsArrayFunctionHeapSort function. This vulnerability can be exploited through Internet Explorer or potentially through WPAD over local network.
Red Hat Security Advisory 2018-3852-01 – IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP25. Issues addressed include a denial of service vulnerability.
VMware Security Advisory 2018-0031 – vRealize Operations updates address a local privilege escalation vulnerability.
Computers all over the world rely on a program called “libssh" to use the SSH communications protocol, which allows trusted users to log in and administer computers remotely. Due to a flaw in libssh, fooling a computer into granting SSH access is as easy as telling it you already have permission. The vulnerability can lead to an attacker gaining complete control over a device.
What SSH Is & Why We Have a Big Problem
Computers underpin many of the essential systems in our society, and these systems need to be periodically accessed and updated. For network admins and other IT professionals… more