Home > Knowledge Centre > Vulnerability

Adobe Flash Player security update

  • Ranjeet Menon / 14 years
  • 0
  • 2 min read

Adobe has released a security patch for Adobe Flash Player that fixes several critical security vulnerabilities. Affected are all versions of Adobe Flash Player 10.3.183.7 and earlier, for all supported operating systems (Windows, Macintosh, Linux, Solaris) as well as Adobe Flash Player 10.3.186.6 and earlier for the Android operating system. Attackers could previously use these […]

APSB11-24 – Security updates available for Adobe Reader and Acrobat

  • Ayush Sonavane / 14 years
  • 0
  • 2 min read

Critical vulnerabilities have been identified in Adobe Reader X (10.1) and earlier versions for Windows and Macintosh, Adobe Reader 9.4.2 and earlier versions for UNIX and Adobe Acrobat X (10.1) and earlier versions for Windows and Macintosh. These vulnerabilities could cause the application to crash and potentially allow an attacker to take control of the […]

Microsoft September2011 Patch Tuesday Released

  • Ayush Sonavane / 14 years
  • 0
  • 4 min read

Microsoft has released 5 security bulletins covering a total of 15 vulnerabilities. All of these vulnerabilities are rated ‘Important’ by Microsoft, even though three of them could lead to remote code execution. The patches address elevation of privileged and remote code execution vulnerabilities and may require a restart of Windows. Two of the bulletins address […]

Android malware gains root access

  • Ranjeet Menon / 14 years
  • 0
  • 1 min read

A new malware affecting the latest version of Android operating system (2.3 – Gingerbread) is now out in the wild and masquerading as an app featuring some “Beauty of the Day” photos. The package I downloaded uses the following permissions: android.permission.READ_PHONE_STATE android.permission.READ_LOGS android.permission.DELETE_CACHE_FILES android.permission.ACCESS_CACHE_FILESYSTEM android.permission.WRITE_SECURE_SETTINGS android.permission.ACCESS_NETWORK_STATE android.permission.INTERNET android.permission.WRITE_EXTERNAL_STORAGE android.permission.MOUNT_UNMOUNT_FILESYSTEMS android.permission.READ_OWNER_DATA android.permission.WRITE_OWNER_DATA android.permission.WRITE_SETTINGS com.android.launcher.permission.INSTALL_SHORTCUT com.android.launcher.permission.UNINSTALL_SHORTCUT android.permission.RECEIVE_BOOT_COMPLETED […]

Microsoft Security Bulletin MS11-057

  • Vishal Dodke / 14 years
  • 0
  • 1 min read

Microsoft has released two Critical updates: MS11-057 (Internet Explorer): This security update resolves 5 privately reported vulnerabilities and 2 publicly disclosed vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. Microsoft is not aware of any attacks leveraging […]

Android Focus Stealing Vulnerability

  • Ranjeet Menon / 14 years
  • 0
  • 2 min read

Android allows applications to voluntarily come to the foreground or to become active while user is using another application. However, because Android’s SDK (Software Development Kit) allows apps to be pushed to the foreground, Android allows users to dismiss and override this behaviour be hitting the back button. This Android feature is used by many […]

Massive Attack targeting osCommerce sites

  • Ranjeet Menon / 14 years
  • 0
  • 1 min read

More than 90,000 websites were found to be infected with an iframe that points to:- willysy(dot)com. The effected websites were found using the osCommerce which is an open source e-commerce package used by small vendors to manage their online shops. An iframe is a line of code inserted into a webpage that loads data from […]

Apple patches iOS interception flaw

  • Ranjeet Menon / 14 years
  • 0
  • 2 min read

Apple on Monday issued a new patch that fixes a vulnerability that could allow an attacker to spoof an X.509 certificate used to encrypt web sessions on 4.3.4 iOS devices. The vulnerability is related to the way Apple validates X.509 certificates and can undermine Secure Socket Layer (SSL) and Transport Layer Security (TLS) protected sessions, […]