Tag Archives: Sicherheit

VMware Security Updates (12./14.3.2020)

[German]VMware has just received a security update for its virtualization products, including VMware Workstation Pro and Vmware Player. These updates address security vulnerabilities in the virtualization products. Advertising

Posted in Security, Software, Update, Virtualization | Tagged , , , | Leave a comment

Advertising

Bug in Googles Titan M Chip Firmware (CVE-2019-9465)

Short information about Google’s Pixel Smartphones. Since the Pixel 3 the devices contain a Titan M security chip. But it had a bug (vulnerability) in the firmware. Advertising

Posted in Android, Security | Tagged , | Leave a comment

WordPress: Critical vulnerability in InfiniteWP client plugin

[German]There is a critical vulnerability in the WordPress plugin InfiniteWP Client up to version 1.9.4.4 that allows bypassing authentication. In addition, security researchers have discovered a plugin that allows the mass implementation of user passwords on compromised WordPress installations. Advertising

Posted in Security, Software | Tagged , | Leave a comment

Patchday: Updates for Windows 7/8.1/Server (Jan. 14, 2020)

[German]On 14 January 2020, Microsoft released various (security) updates for Windows 7 SP1 and further updates for Windows 8.1 and the corresponding server versions. Here is an overview of these updates. Advertising

Posted in Security, Update, Windows | Tagged , , , , , , , , | 2 Comments

Flaw in Active Directory password lenght policy with 15 chars

[German]There is one annoying flaw in the Group Policy for Active Directory. This prevents an administrator from setting a password policy that requires passwords of at least 15 characters. If an administrator tries to force the password length to 15 … Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Advertising

Unpatched Android vulnerability StrandHogg exploited

[German]Bad news for Android users who installs a lot of apps on their devices. There is an unpatched Android vulnerability called StrandHogg. This vulnerability is already being exploited by malicious apps. Advertising

Posted in Android, Security | Tagged , | Leave a comment

TPM-FAIL puts Trusted Platform Module at risk

[German]A newly discovered vulnerability makes it possible to steal ECDSA signature keys by timing attack from the supposedly secure memory area of TPM chips (Intel fTPM 2.0, STMicroelectronics ST33-TPM). Advertising

Posted in devices, Security | Tagged , | Leave a comment

Patchday: Updates for Windows 7/8.1/Server (Nov. 12, 2019)

[German]On November 12, 2019, Microsoft released several (security) updates for Windows 7 SP1 and further updates for Windows 8.1 as well as the corresponding server versions. Here is an overview of these updates. Advertising

Posted in Security, Update, Windows | Tagged , , , , , , | Leave a comment
Advertising

Nvidia: Vulnerabilities in GeForce Experience & GPU driver

[German]There are several serious vulnerabilities in the Nvidia GeForce Experience and GPU drivers that allow local attackers to increase privileges. Nvidia has provided a driver update. Advertising

Posted in devices, Security, Software, Update | Tagged , , , | Leave a comment

Windows: Bluekeep Metasploit released in the wild

[German]The day that software vendors and security researchers have been waiting for for months has arrived. A metasploid for the Bluekeep vulnerability in Windows is publicly available. Advertising

Posted in Security, Windows | Tagged , , | Leave a comment