Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Four 0-day Exploits in IBM Data Risk Manager
[German]Security researchers have just revealed four unpatched vulnerabilities in IBM Data Risk Manager. The vulnerabilities were reported to IBM, but IBM rejected the report due to lack of formal requirements. Three vulnerabilities are considered critical.
Microsoft Security Advisories April 14, and 21, 2020
[German]Microsoft has published Security Advisories for a critical RCE vulnerability (CVE-2020-0905) in Microsofts Dynamics Business Central. And there are security advisories for an update to the Autodesk FBX Library and for an OpenSSL Remote Denial of Service vulnerability.
Posted in Security, Software, Update
Tagged ADV200004, ADV200007, CVE-2020-0905, Security, Software
Leave a comment
RCE vulnerability in Foxit PDF Reader and PhantomPDF
[German]A remote code execution vulnerability exists in the two PDF programs Foxit PDF Reader and PhantomPDF. However, the vendor has already released updates to close the critical vulnerability – I had pointed this out. Now some more details have become … Continue reading
Approach to deactivate almost any antivirus program
[German]Security researchers from Rack911 Labs describe a technique that can be used to leverage and disable almost any antivirus software on Windows or macOS. Although some AV vendors has improved their products, it's not a good news for fans of … Continue reading
Windows graphics vulnerability details CVE-2020-0791
[German]In all versions of Windows, there is a vulnerability in the Microsoft Graphics component that could allow an attacker to escalate privileges. Details are now available.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
April 2020 Patchday: Review and issues
[German]On April 14, 2020 a series of security updates for Windows, Office etc. were released. These partially close 0-day vulnerabilities, but there is also collateral damage. For example, VBA code signing no longer works after installing the Office security updates. … Continue reading
Has PayPal closed secretly a Google Pay vulnerability?
[German]According to reports, PayPal has probably secretly closed the vulnerability that allowed unauthorized debits via Google Pay some weeks ago. However, there are new unauthorized debits from Russia.
Chromium Edge Security Update
Microsoft has released a security update für Chromium Edge browser (see ADV200002). Released on April 17, 2020, Edge 81.0.416.58 addresses vulnerability CVE-2020-6457. The new Chromium Edge may be downloaded from this website.
Chrome 81.0.4044.113 with security fixes
[German]Another small addendum – already on April 14, 2020 Google released the update to Chrome 81.0.4044.113. This is a security update.
Stop: Don’t install Sophos UTM 9.703 Firmware
[German]Administrators of the Sophos UTM appliance should not install the recently released Sophos UTM 9.703 firmware, as may will cause massive issues. Sophos has pulled this firmware update. Addendum: Sophos confirmed the issues and is testing a fix, that will … Continue reading