Thursday 29 June 2017

AlienVault v5.4 Addresses 72 vulnerabilities

Several vulnerabilities were discovered in the underlying OS packages in AlienVault USM Appliance and OSSIM v5.3.7 and earlier. All of the vulnerabilities below have been confirmed and fixed in the AlienVault v5.4. AlienVault encourages customers to upgrade all AlienVault appliances to eliminate the vulnerabilities.

See the v5.4 release notice for details on the release.
Posted by at 1 comment:
Labels: ,
Location: Brixham TQ5, UK

Microsoft announce another CVE - Win32k Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.

Microsoft has reserved CVE candidate CVE-2017-8554 ready for announcement, but an early indication for MSRC shows the following OS Versions affected:

Windows 10
Windows 8.1
Windows 7

Server 2016
Server 2012 R2
Server 2012
Server 2008 R2
Server 2008

This vulnerability has been rated CVSS 4.7 resulting in a Medium Risk
Posted by at No comments:
Labels: ,
Location: Brixham TQ5, UK

Thursday 8 June 2017

InfoSecurity Professional Magazine - May June 2017 Issue

(ISC)² Digital Publication design for the professional development of its members have released the May/June 2017 issue.

This issue covers Choosing a Cloud Access Security Broker, the third in a series of InfoSecurity Professional insights to GDPR and the Hong Kong Chapters work at promoting Safe and Secure Online.

All members can earn 2 group A CPEs for reading list issue and completing the quiz. You can read this issue online here and take the quiz here.
Posted by at No comments:
Labels: ,
Location: Brixham, UK
Subscribe to: Posts (Atom)