Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27359 of 28220

CVE-2017-7688

Posted by Cyberthreat Blog | Jul 17, 2017 | CVE Notifications |

Apache OpenMeetings 1.0.0 updates user password in insecure manner.

CVE-2017-9814

Posted by Cyberthreat Blog | Jul 17, 2017 | CVE Notifications |

cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) because of mishandling of an unexpected malloc(0) call.

CVE-2017-9951

Posted by Cyberthreat Blog | Jul 17, 2017 | CVE Notifications |

The try_read_command function in memcached.c in memcached before 1.4.39 allows remote attackers to cause a denial of service (segmentation fault) via a request to add/set a key, which makes a comparison between signed and...

SMS Phishing induces victims to photograph its own token card, (Sun, Jul 16th)

Posted by Cyberthreat Blog | Jul 16, 2017 | SANS ISC Bulletins |

Introduction Today I faced quite an unusual SMS phishing campaign here in Brazil. A friend of mine received a SMS message supposedly sent from his bank asking him to update his registration data through the given URL. Otherwise,...

Office maldoc + .lnk, (Sat, Jul 15th)

Posted by Cyberthreat Blog | Jul 15, 2017 | SANS ISC Bulletins |

Reader nik submitted a malicious document. It width:867px” /> It width:852px” /> And then we can use Woanware width:829px” /> Unfortunately, the .lnk file does not contain interesting metadata. But we...

Author: Cyberthreat Blog

CVE-2017-7688

CVE-2017-9814

CVE-2017-9951

SMS Phishing induces victims to photograph its own token card, (Sun, Jul 16th)

Office maldoc + .lnk, (Sat, Jul 15th)