Day: 21 septiembre, 2019

glibc vulnerabilities CVE-2019-1010024, CVE-2019-1010025 Security Advisory Security Advisory Description CVE-2019-1010024 GNU Libc current is affected by: Mitigation bypass. The impact is: ... More info: https://support.f5.com/csp/article/K06046097

More info: https://wpvulndb.com/vulnerabilities/9884

https://blogvault.net/learn-how-to-launch-a-secure-online-course-platform-today-easiest-guide/[et_pb_section bb_built=”1″ _builder_version=”3.26.3″ custom_padding=”10px|||” box_shadow_horizontal_tablet=”0px” box_shadow_vertical_tablet=”0px” box_shadow_blur_tablet=”40px” box_shadow_spread_tablet=”0px” z_index_tablet=”500″][et_pb_row][et_pb_column type=”4_4″ More info: https://blogvault.net/learn-how-to-launch-a-secure-online-course-platform-today-easiest-guide/

Simon McVittie reported a flaw in ibus, the Intelligent Input Bus. Dueto a misconfiguration during the setup of the DBus, any unprivilegeduser could monitor and send method calls to the ibus bus of anotheruser, if able to discover the UNIX socket used by another user connectedon a graphical environment. The attacker can take advantage of this flawto intercept keystrokes of the victim user or modify input relatedconfigurations through DBus method calls. More info: https://www.debian.org/security/2019/dsa-4525

https://www.wpsecurityauditlog.com/releases/activity-log-mainwp-premium-release/Are you ready for an exciting announcement? We certainly are! Today we are announcing the premium edition of Activity Logs for MainWP, the popular MainWP extension that allows you to view the logs of all child sites from one central location; the MainWP dashboard. What are the new premium features? The premium edition of the […] More info: https://www.wpsecurityauditlog.com/releases/activity-log-mainwp-premium-release/

More info: https://wpvulndb.com/vulnerabilities/9883

http://feedproxy.google.com/~r/sucuri/blog/~3/JPq4in-4Enw/fake-sso-used-in-multi-email-provider-phishing.html Single sign-on (SSO) allows users to sign into a single account (e.g Google) and access other services like YouTube or Gmail without authenticating with a separate username and password. This feature also extends to third party services such as the popular Dropbox file sharing application, which offers users the option to access their account […] More info: http://feedproxy.google.com/~r/sucuri/blog/~3/JPq4in-4Enw/fake-sso-used-in-multi-email-provider-phishing.html

glibc vulnerabilities CVE-2019-1010024 and CVE-2019-1010025 Security Advisory Security Advisory Description CVE-2019-1010024 GNU Libc current is affected by: Mitigation bypass. The impact is: ... More info: https://support.f5.com/csp/article/K06046097

Supermicro BMC vulnerability CVE-2019-9999 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when ... More info: https://support.f5.com/csp/article/K35236639