Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Vulnereability CVE-2019-12815 in ProFTPD FTP Server
The open source FTP server ProFTPD is vulnerable up to version to 1.3.5b. CVE-2019-12815allows the execution of arbitrary program code with the rights of the service.
CertBUND warns about a bzip2 vulnerability
German CertBUND warns here about he vulnerability CVE-2019-12900 in the open source bzip2 (versions <= 1.0.6), which is used in Ubuntu Linux, SUSE Linux. The vulnerability allows execution of arbitrary program code with the rights of the service. SUSE has … Continue reading
No vulnerability CVE-2019-13615 in VLC player?
Uncertainty about the reported remote code execution vulnerability CVE-2019-13615 in the VLC player. It's supposed to be a patch in the works, but the VideoLAN project states that the reported vulnerability cannot be reproduced. I added the topic to the … Continue reading
BlueKeep warning: Exploit might come soon?
[German]Another warning – after someone has posted slide deck foils about the BlueKeep vulnerability on GitHut, it shouldn't be long before a working exploit appears in practice.
Windows: What about the BlueKeep vulnerability in July 2019?
[German]Today, a look at the vulnerability CVE-2019-0708 (BlueKeep) in Windows Remote Desktop Services, for which Microsoft released updates from Windows XP to Windows 7 on May 14, 2019.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Critical vulnerability in VLC player up to V3.0.7.1
[German]In all current versions of the VLC Player up to V3.0.7.1, there is a critical vulnerability that allows a Denial of Service attack. The German BSI has issued a warning. Update: This was a false flag – there was no … Continue reading
Seven Stalker apps removed from Google Play Store
[German]Google has removed 7 Android apps from the Play Store after a tip from Avast because they (as so-called stalker apps) illegally tracked the user. Here are some details.
Microsoft Security Advisories July 2019
[German]One more small addendum: In July 2019 Microsoft published some security advisories, which I don't want to withhold from you. Among other things there is an update in PowerShell Core 6.1.5 and 6.2.2 to fix a security vulnerability.
Google Releases Security Updates for Chrome
Google has released Chrome 75.0.3770.142 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker can exploit to take control of an affected system.
Malware Agent Smith Infects Android Apps
[German]Check Point security researchers have recently discovered a new variant of mobile malware called Agent Smith that infects Android apps through security vulnerabilities. Currently, about 25 million devices have been infected in silence.