BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Filter:

December, 2013

sercom

SerComm Products Backdoor

Disclosed December 31, 2013    Zeroday : 259 days
Vendors: SerComm
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: Publicly Available

Top 8 Security Insights for 2014

Posted December 23, 2013    Sarah Lieber

Recently our VP of Marketing, Mike Yaffe, wrote an insightful piece, Top 8 Security Insights for 2014, which was featured on a few publications last week. This was a “what we’re predicting in 2014″ type of article that goes into predictions and expectations for the new year around security and privilege. An excerpt and link to the…

Tags:
, , , , , , ,

December VEF Participant Wins a Apple iPad Air

Posted December 19, 2013    Qui Cao

Every month we host our Vulnerability Expert Forum (VEF) webinar. This is a time where our experts share valuable insight regarding new vulnerabilities that are discovered and the actions that need to be taken as a result. It’s a quick way to get up to speed on current potential risks to your organization and a way to…

zeroday-default

Leed Multiple Vulnerabilities

Disclosed December 18, 2013    Zeroday : 272 days
Vendors: Valentin CARRUESCO
Vulnerability Severity: Medium
Exploit Impact: Security Bypass
Exploit Availability: No Exploit Available
sketchup

SketchUp Viewer .SKP Buffer Overflow

Disclosed December 12, 2013    Zeroday : 278 days
Vendors: SketchUp
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: No Exploit Available
patch-tuesday

December 2013 Patch Tuesday

Posted December 10, 2013    BeyondTrust Research Team

December’s Patch Tuesday finishes up the year with patches for Internet Explorer, Office, SharePoint, Windows, and more. There are a total of 11 bulletins addressing 24 unique vulnerabilities; five bulletins are rated as critical and the other six are rated as important. The zero-day vulnerability released just before last month’s Patch Tuesday is finally receiving…

Tags:
, , ,
icofx

IcoFX Stack-Based Buffer Overflow

Disclosed December 10, 2013    Zeroday : 280 days
Vendors: IcoFX Software
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: Publicly Available
oscmax

osCMax Multiple Vulnerabilities

Disclosed December 9, 2013    Zeroday : 281 days
Vendors: osCMax
Vulnerability Severity: Medium
Exploit Impact: Cross-Site Scripting
Exploit Availability: Publicly Available
cmsmadesimple

CMS Made Simple Cross-Site Scripting Vulnerability

Disclosed December 6, 2013    Zeroday : 284 days
Vendors: CMS Made Simple
Vulnerability Severity: Medium
Exploit Impact: Cross-Site Scripting
Exploit Availability: No Exploit Available
sharetronix

Sharetronix Multiple Vulnerabilities

Disclosed December 5, 2013    Zeroday : 285 days
Vendors: Sharetronix
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: No Exploit Available