HP ThinPro - Privileged command injection
===
Identifiers
-
* CVE-2019-18910
CVSSv3 score
-
7.6 (AV:A/AC:L/PR:L/UI:N/S:U/C:H/
HP ThinPro - Citrix command injection
===
Identifiers
-
* CVE-2019-18909
CVSSv3 score
-
6.1 (AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/
HP ThinPro - Privilege escalation
===
Identifiers
-
* CVE-2019-16287
CVSSv3 score
-
6.1 (AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N)
HP ThinPro - Application filter bypass
===
Identifiers
-
* CVE-2019-16286
CVSSv3 score
-
6.1 (AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H
HP ThinPro - Information disclosure
===
Identifiers
-
* CVE-2019-16285
CVSSv3 score
-
6.1 (AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:
CALL FOR PAPERS - Hackers 2 Hackers Conference 17th edition
The call for papers for H2HC 17th edition is now open. H2HC is a hacker
conference taking place in Sao Paulo, Brazil, on 24th and 25th of
October 2020.
[ - INTRODUCTION - ]
For another consecutive year and past success we have been ha
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
APPLE-SA-2020-03-24-5 Safari 13.1
Safari 13.1 is now available and addresses the following:
Safari Downloads
Available for: macOS Mojave and macOS High Sierra, and included in
macOS Catalina
Impact: A malicious iframe may use another website’s down
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
APPLE-SA-2020-03-24-6 iTunes for Windows 12.10.5
iTunes for Windows 12.10.5 is now available and addresses the
following:
libxml2
Available for: Windows 7 and later
Impact: Multiple issues in libxml2
Description: A buffer overflow was addressed wit
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
APPLE-SA-2020-03-24-4 watchOS 6.2
watchOS 6.2 is now available and addresses the following:
ActionKit
Available for: Apple Watch Series 1 and later
Impact: An application may be able to use an SSH client provided by
private frameworks
Description:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
APPLE-SA-2020-03-24-7 Xcode 11.4
Xcode 11.4 is now available and contains security improvements.
Additional recognition
ld64
We would like to acknowledge an anonymous researcher for their
assistance.
Installation note:
Xcode 11.4 may be obtained
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
APPLE-SA-2020-03-24-2 macOS Catalina 10.15.4, Security Update
2020-002 Mojave, Security Update 2020-002 High Sierra
macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security
Update 2020-002 High Sierra are now available and address the
follo
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
APPLE-SA-2020-03-24-3 tvOS 13.4
tvOS 13.4 is now available and addresses the following:
ActionKit
Available for: Apple TV 4K and Apple TV HD
Impact: An application may be able to use an SSH client provided by
private frameworks
Description: This is
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
APPLE-SA-2020-03-24-1 iOS 13.4 and iPadOS 13.4
iOS 13.4 and iPadOS 13.4 are now available and address the following:
ActionKit
Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4
and later, and iPod touch 7th generation
Impact: An
Hi,
We've just released version 2.3 of our PE runtime crypter, hyperion.
[ CHANGELOG ]
- rejects unsupported .NET executables
- preserves GUI/Commandline PE flag
- has a lower AV detection because static stuff was removed and
64 bit output file size was reduced by 4 kilo bytes
[ DESCR ]
Hyp
SITS:Vision 9.7.0 Authentication Bypass
[-] Software Link:
https://www.tribalgroup.com/software-and-services/student-information-systems/sitsvision
[-] Affected Vers
15 matches
Mail list logo