Update November 17 2019 The Tianfu Cup PWN Contest has wrapped up after Day 2. On Day 2 of the contest the 360Vulcan team demonstrated an issue on VMware vSphere ESXi. We are currently investigating the issue after having received the details. We are actively working on its remediation and we plan on publishing a The post VMware and the 2019 Tianfu Cup PWN Contest appeared first on Security & Compliance Blog.
More info:
https://blogs.vmware.com/security/2019/11/vmware-and-the-2019-tianfu-cup-pwn-contest.html
Update November 16 2019 VMware products are not in the schedule on Day 1 of the Tianfu Cup PWN Contest in Chengdu. VMware representatives will again be in attendance during Day 2, when VMware Workstation and VMware vSphere ESXi will be targets. Original Post We wanted to post a quick acknowledgement that VMware will have The post VMware and the 2019 Tianfu Cup PWN Contest appeared first on Security & Compliance Blog.
More info:
https://blogs.vmware.com/security/2019/11/vmware-and-the-2019-tianfu-cup-pwn-contest.html
More info:
https://wpvulndb.com/vulnerabilities/9952
Rich Mirch discovered that the pg_ctlcluster script didnt dropprivileges when creating socket/statistics temporary directories, whichcould result in local privilege escalation.
More info:
https://www.debian.org/security/2019/dsa-4568
Rich Mirch discovered that the pg_ctlcluster script didnt dropprivileges when creating socket/statistics temporary directories, whichcould result in local privilege escalation.
More info:
https://www.debian.org/security/2019/dsa-4568
Type: Vulnerability. McAfee Total Protection is prone to a local privilege-escalation vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=110862&om_rssid=sr-advisories
https://www.wpwhitesecurity.com/wfcm-1-4-update/These last few weeks we have been busy working on our file integrity monitor plugin for WordPress: Website File Changes Monitor. In this update we focused on improving the coverage of the plugin, so it can detect file changes which it didn’t before. Let’s dive in and see what is new in update 1.4. Detect changes […]
More info:
https://www.wpwhitesecurity.com/wfcm-1-4-update/
Type: Vulnerability. Philips IntelliBridge EC40 and EC80 is prone to an unauthorized-access vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=110867&om_rssid=sr-advisories
https://wpengine.com/blog/2019-fall-hackathon-propelling-wp-engine-forward-faster/WP Engine, like any engine, needs fuel to press ahead. Innovation is the spark that ignites and propels us forward faster, and to keep that ingenious spark lit, we actively foster a creative and collaborative environment at WP Engine where cutting-edge ideas can take root and flourish. Our bi-annual Hackathons play an integral role in… […]
More info:
https://wpengine.com/blog/2019-fall-hackathon-propelling-wp-engine-forward-faster/
Type: Vulnerability. Multiple Siemens Products are prone to a denial-of-service vulnerability; fixes are available.
More info:
http://www.symantec.com/security_response/vulnerability.jsp?bid=110865&om_rssid=sr-advisories
