Today, VMware has released the following new security advisory: VMSA-2018-0025 – VMware ESXi, Workstation, and Fusion workarounds address a denial-of-service vulnerability This documents an important severity denial-of-service vulnerability that affects VMware ESXi, Workstation and Fusion. This issue arises due to an infinite loop in the 3D-rendering shader. Successfully exploiting this issue may allow an attacker […]The post New VMSA-2018-0025 and Intel Graphics Driver Unified
More info:
https://blogs.vmware.com/security/2018/10/new-vmsa-2018-0025-and-intel-graphics-driver-unified-shader-compiler-security-updates.html
https://perishablepress.com/cli-forward-reverse-lookup/ In previous posts, I’ve explained how to verify identity of search engines and other bots, by looking up the host name and then doing a reverse lookup to cross-check the IP address. This is often referred to as a forward-reverse lookup, or something to that effect. The point is, there are plenty of free […]
More info:
https://perishablepress.com/cli-forward-reverse-lookup/
Type: Vulnerability. Microsoft Windows is prone to a local privilege-escalation vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=105478&om_rssid=sr-advisories
ENISA ha publicado el primer informe anual completo sobre incidentes de seguridad con servicios fiduciarios electrónicos sobre datos del año 2017. Entre las principales conclusiones del documento se afirma que casi la mitad de los incidentes de seguridad tuvieron un impacto transfronterizo o que la mitad de los incidentes de seguridad notificados fueron graves. Además, se revela que las firmas y sellos electrónicos han sido los servicios más afectados y que las causas más comunes son los fallos del sistema.
El pasado año 2017 fue el primer año completo de notificación de incidentes de seguridad y, gracias a ello, el informe de ENISA permite ofrecer una visión global a escala de la UE de estos incidentes. Steve Purser, jefe del Departamento de Operaciones Centrales de agencia, seña: "Este informe muestra claramente la importancia de los incidentes de seguridad que tienen una dimensión transfronteriza y subraya el hecho de que la colaboración entre países es absolutamente clave cuando se trata de supervisar los servicios fiduciarios en toda la UE".
Más información sobre el informe
ENISA (08/10/2018)
Type: Vulnerability. Microsoft Windows is prone to a remote code-execution vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=105479&om_rssid=sr-advisories
Type: Vulnerability. Microsoft SQL Server Management Studio is prone to an information-disclosure vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=105476&om_rssid=sr-advisories
Type: Vulnerability. Microsoft Exchange Server is prone to a remote code-execution vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=105491&om_rssid=sr-advisories
Type: Vulnerability. Microsoft SQL Server Management Studio is prone to an information-disclosure vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=105475&om_rssid=sr-advisories
Type: Vulnerability. Microsoft Windows is prone to a local information-disclosure vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=105477&om_rssid=sr-advisories
Type: Vulnerability. Microsoft SQL Server Management Studio is prone to an information-disclosure vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=105474&om_rssid=sr-advisories
