Tag Archives: Sicherheit

WordPress: Critical vulnerability in InfiniteWP client plugin

[German]There is a critical vulnerability in the WordPress plugin InfiniteWP Client up to version 1.9.4.4 that allows bypassing authentication. In addition, security researchers have discovered a plugin that allows the mass implementation of user passwords on compromised WordPress installations. Advertising

Posted in Security, Software | Tagged , | Leave a comment

Advertising

Patchday: Updates for Windows 7/8.1/Server (Jan. 14, 2020)

[German]On 14 January 2020, Microsoft released various (security) updates for Windows 7 SP1 and further updates for Windows 8.1 and the corresponding server versions. Here is an overview of these updates. Advertising

Posted in Security, Update, Windows | Tagged , , , , , , , , | 2 Comments

Flaw in Active Directory password lenght policy with 15 chars

[German]There is one annoying flaw in the Group Policy for Active Directory. This prevents an administrator from setting a password policy that requires passwords of at least 15 characters. If an administrator tries to force the password length to 15 … Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Unpatched Android vulnerability StrandHogg exploited

[German]Bad news for Android users who installs a lot of apps on their devices. There is an unpatched Android vulnerability called StrandHogg. This vulnerability is already being exploited by malicious apps. Advertising

Posted in Android, Security | Tagged , | Leave a comment

TPM-FAIL puts Trusted Platform Module at risk

[German]A newly discovered vulnerability makes it possible to steal ECDSA signature keys by timing attack from the supposedly secure memory area of TPM chips (Intel fTPM 2.0, STMicroelectronics ST33-TPM). Advertising

Posted in devices, Security | Tagged , | Leave a comment

Advertising

Patchday: Updates for Windows 7/8.1/Server (Nov. 12, 2019)

[German]On November 12, 2019, Microsoft released several (security) updates for Windows 7 SP1 and further updates for Windows 8.1 as well as the corresponding server versions. Here is an overview of these updates. Advertising

Posted in Security, Update, Windows | Tagged , , , , , , | Leave a comment

Nvidia: Vulnerabilities in GeForce Experience & GPU driver

[German]There are several serious vulnerabilities in the Nvidia GeForce Experience and GPU drivers that allow local attackers to increase privileges. Nvidia has provided a driver update. Advertising

Posted in devices, Security, Software, Update | Tagged , , , | Leave a comment

Windows: Bluekeep Metasploit released in the wild

[German]The day that software vendors and security researchers have been waiting for for months has arrived. A metasploid for the Bluekeep vulnerability in Windows is publicly available. Advertising

Posted in Security, Windows | Tagged , , | Leave a comment
Advertising

Android PDF-Creator ‘Cam Scanner’ shipped with malware

[German]Nasty surprise for users of the Android app ‘Cam Scanner’, which is used to create PDF files from scans recorded by camera. The app is infected with malware. Advertising

Posted in Android, Security | Tagged , , , | 3 Comments

Windows Kernel Information Disclosure Vulnerability CVE-2019-1125

[German]On August 6, 2019, Microsoft released updated security information on the CVE-2019-1125 (Spectre 1 Windows Kernel Information Disclosure Vulnerability) vulnerability. Advertising

Posted in Security, Windows | Tagged , | Leave a comment