Critical Vulnerability

Type: Keyphrase
Name: Critical Vulnerability
First reported Oct 17 2014 - Updated Oct 17 2014 - 1 reports

Drupal Issues Patch for Critical Vulnerability (October 15 & 16, 2014)

A critical vulnerability in Drupal 7....... ... [Published SANS NewsBites - Oct 17 2014]
First reported Oct 17 2014 - Updated Oct 17 2014 - 1 reports

5 Internet of Things home hacks

Following news that Spanish researchers exposed flaws in power smart meters we look at other examples of IOT hacks on the home frontSmart meters installed in millions of homes across Spain contain vulnerabilities that could allow hackers to cause blackouts ... [Published Computer Business Review - Oct 17 2014]
First reported Oct 16 2014 - Updated Oct 17 2014 - 1 reports

“Highly Critical” vulnerability found in Drupal 7

Details of a "Highly Critical" vulnerability in versions of Drupal 7 prior to 7.32 have been released by the Drupal Security Team.The vulnerability is because of a bug in the code which is intended to mitigate SQL Injection vulnerabilities by the use ... [Published Noodls - Oct 16 2014]
First reported Oct 15 2014 - Updated Oct 15 2014 - 2 reports

SSLv3 “POODLE” Vulnerability CVE-2014-3566

CVE-2014-3566 Overview   Websense® Security Labs are aware of a critical vulnerability that exists in SSLv3, dubbed as "POODLE" by the Google Security Team . The vulnerability has also been explained in a security advisory by OpenSSL  and given the ... [Published Security Bloggers Network - Oct 15 2014]
First reported Oct 09 2014 - Updated Oct 09 2014 - 2 reports

Critical Vulnerability Found in Cuckoo Sandbox

The developers of the popular malware analysis framework Cuckoo Sandbox were forced to take quick action on Tuesday after being notified of the existence of a serious vulnerability that can potentially be exploited to take control of affected systems ... [Published Security Week - Oct 09 2014]
First reported Oct 07 2014 - Updated Oct 07 2014 - 2 reports

Critical Bugzilla vulnerability could give hackers access to undisclosed software flaws

Hackers could have had an inside track on unpatched flaws in major software projects because of a critical vulnerability in Bugzilla, a system that many developers use to track and discuss bugs in their code. Patches released Monday for Bugzilla address ... [Published PC World: Techlog - Oct 07 2014]
First reported Sep 29 2014 - Updated Sep 30 2014 - 3 reports

Shellshock possibly worse than Heartbleed

Last week, a new critical vulnerability was discovered that affects systems running several versions of Linux and Unix, including Mac OS X, and some routers and IoT devices.Known as “Bash Bug” or “Shellshock,” this vulnerability could allow an attacker ... [Published telecomasia.net - Sep 30 2014]
First reported Sep 29 2014 - Updated Sep 30 2014 - 5 reports

Improved patch tackles new Shellshock attack vectors

System administrators who spent last week making sure their computers are patched against Shellshock, a critical vulnerability in the Bash Unix command-line interpreter, will have to install a new patch that addresses additional attack vectors.The Shellshock ... [Published CIO Magazine - Sep 29 2014]
First reported Sep 25 2014 - Updated Sep 26 2014 - 2 reports

New critical vulnerability could give hackers control of systems, networks

Computers and networks running Bash — such as Linux and Mac OS X — are exposed to a new, critical weakness.A link to this page will be included in your message. ... [Published Federal Times - Sep 25 2014]
First reported Sep 24 2014 - Updated Sep 25 2014 - 2 reports

Critical bug affects Linux, Mac OS X and Unix

20% to 50% of webpage servers thought to be affected.A critical vulnerability has emerged in a common component of Linux, Mac OS X and Unix, according to enterprise software firm Red Hat .Hackers can exploit the bug in the command processor Bash without ... [Published Computer Business Review - Sep 25 2014]
First reported Sep 23 2014 - Updated Sep 24 2014 - 2 reports

'Critical' vulnerablity found in HealthCare.gov security

According to a report being released Tuesday, a critical vulnerability was found when the government's own watchdogs tried to hack into HealthCare.gov earlier this year. The report, conducted by the Health and Human Services Department inspector general ... [Published Health Leaders - Sep 24 2014]
First reported Sep 23 2014 - Updated Sep 23 2014 - 5 reports

"Critical" flaw found in HealthCare.gov security

WASHINGTON -- The government's own watchdogs tried to hack into HealthCare.gov earlier this year and found what they termed a critical vulnerability - but also came away with respect for some of the health insurance site 's security features.Those are ... [Published Bayou Buzz - Sep 23 2014]

Quotes

"In some cases, these vulnerabilities can be overcome relatively quickly and easily as demonstrated by working with the LIFX developers. In other cases the vulnerabilities are fundamental to the design of the products."
According to a security advisory from Drupal, the vulnerability in this API "allows an attacker to send specially crafted requests resulting in arbitrary SQL execution"
...never been so positive," said Rogier Sanders, a Cornell University microbiologist who studies the spikes but was not involved in the new research. "I think the coming year will see some major steps forward thanks to this."
By reporting a "combination of V8 and IPC bugs that can lead to remote code execution outside of the sandbox" researcher Jüri Aedla was handed a check for $27,633.70...

More Content

All (336) | News (139) | Reports (0) | Blogs (197) | Audio/Video (0) | Fact Sheets (0) | Press Releases (0)
sort by: Date | Relevance
Drupal Issues Patch for Critical Vulnerability ... [Published SANS NewsBites - Oct 17 2014]
5 Internet of Things home hacks [Published Computer Business Review - Oct 17 2014]
'Operation DeathClick' targets defense contractors [Published Federal Times - Oct 17 2014]
These Are The Sunni Groups That Would Still Thr... [Published Business Insider - Oct 16 2014]
“Highly Critical” vulnerability found in Drupal 7 [Published Noodls - Oct 16 2014]
October 2014 Patch Tuesday Fixes Sandworm Vulne... [Published Security Intelligence TrendLabs - Trend Micro - Oct 15 2014]
SSLv3 “POODLE” Vulnerability CVE-2014-3566 [Published Security Bloggers Network - Oct 15 2014]
SSLv3 "POODLE" Vulnerability CVE-2014-3566 [Published Security Labs - Oct 15 2014]
October 2014 Patch Tuesday [Published Security Bloggers Network - Oct 14 2014]
Authentication Flaw in PayPal mobile API Allows... [Published The Hacker News - Oct 10 2014]
Critical Vulnerability Found in Cuckoo Sandbox [Published Security Week - Oct 09 2014]
Critical Vulnerability Found in Cuckoo Sandbox [Published SecurityWeek RSS Feed - Oct 09 2014]
SQL Injection Vulnerability in 'Yahoo! Contribu... [Published The Hacker News - Oct 09 2014]
Single molecule microscopy shows infamous HIV s... [Published Los Angeles Times - Oct 09 2014]
Google Pays $75K in Bug Bounties to Fix 159 Chr... [Published CIO Magazine - Oct 08 2014]
A Bug in Bug Tracker "Bugzilla" exposes Private... [Published E Hacking News - Oct 07 2014]
Critical Bugzilla vulnerability could give hack... [Published PC World: Techlog - Oct 07 2014]
Critical Bugzilla vulnerability could give hack... [Published NetworkWorld - Oct 07 2014]
Critical Bugzilla vulnerability could give hack... [Published Computerworld - Security RSS feed - Oct 07 2014]
Critical Bugzilla vulnerability could give hack... [Published Techworld.com Security - Oct 07 2014]
'Bash Shell' Affects Linux, Apple Mac OS X and ... [Published Benzinga.com - Oct 06 2014]
Hackers using Shellshock to spread Kaiten Mac O... [Published V3.co.uk - Oct 06 2014]
Critical Vulnerability Kills Again!!! [Published Anton Chuvakin - Oct 06 2014]
Agencies urged to avoid BASHing [Published PSNews - Oct 06 2014]
BadUSB Malware Code Released — Turn USB Drives ... [Published The Hacker News - Oct 04 2014]
Digital governance: Need for regulating cloud e... [Published Observer India - Oct 04 2014]
Educating future Army officers about energy pol... [Published The Hill - Oct 03 2014]
Xen lifts lid on virtual machine security bug [Published Cloud Pro - Oct 03 2014]
OpenVPN Vulnerable to ShellShock Attacks: Resea... [Published Security Week - Oct 01 2014]
Protecting your data and reputation from Shells... [Published The Lawyer - Oct 01 2014]
1 2 3 4 5 6 7 8 9 10 ...
In Focus
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
Content Volume
Document Volume
Network
Network

Blogs

sort by: Date | Relevance
Drupal Issues Patch for Critical Vulnerability ... [Published SANS NewsBites - Oct 17 2014]
A critical vulnerability in Drupal 7....... ...
October 2014 Patch Tuesday Fixes Sandworm Vulne... [Published Security Intelligence TrendLabs - Trend Micro - Oct 15 2014]
Three out of nine security bulletins in today’s Microsoft Patch Tuesday are marked as Critical while the rest are tagged as Important The patches address vulnerabilities found in Internet Explorer, and Microsoft .NET Framework, including the zero-day ...
SSLv3 “POODLE” Vulnerability CVE-2014-3566 [Published Security Bloggers Network - Oct 15 2014]
CVE-2014-3566 Overview   Websense® Security Labs are aware of a critical vulnerability that exists in SSLv3, dubbed as "POODLE" by the Google Security Team . The vulnerability has also been explained in a security advisory by OpenSSL  and given the ...
SSLv3 "POODLE" Vulnerability CVE-2014-3566 [Published Security Labs - Oct 15 2014]
CVE-2014-3566 Overview   Websense® Security Labs are aware of a critical vulnerability that exists in SSLv3, dubbed as "POODLE" by the Google Security Team . The vulnerability has also been explained in a security advisory by OpenSSL  and given the ...
October 2014 Patch Tuesday [Published Security Bloggers Network - Oct 14 2014]
div> October 2014 Patch Tuesday from Microsoft focuses mainly on desktop software like Windows, Office, Word and IE with the attack vector targeting end-users. Several of the vulnerabilities are in use by attackers in the wild and should receive ...
1 2 3 4 5 6 7 8 9 10 ...
Contact Us
Sales
Support


Freebase CC-BY Some image thumbnails are sourced from Freebase, licensed under CC-BY

Copyright (C) 2014 Silobreaker Ltd. All rights reserved.
The selection and placement of stories and images on any Silobreaker page are determined automatically by a computer program.
The time or date displayed reflects when an article was added to or updated in Silobreaker.