BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Filter:
cisco

Cisco NTP Mode 7 Denial of Service Vulnerability

Disclosed January 15, 2014    Zeroday : 250 days
Vendors: Cisco
Vulnerability Severity: Medium
Exploit Impact: Denial of Service
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker
patch-tuesday

January 2014 Patch Tuesday

Posted January 14, 2014    BeyondTrust Research Team

Welcome to 2014! This month is a light month for Patch Tuesday bulletins. Microsoft has released patches for Microsoft Word and Office Web Apps, the Windows Kernel (and drivers), and Microsoft Dynamics AX. There are a total of four bulletins addressing six unique vulnerabilities; all of which are rated as important. The NDProxy zero-day vulnerability…

Categories:
Security Research
Tags:
, , ,
imageline

EZGenerator Cross-Site Request Forgery

Disclosed January 8, 2014    Zeroday : 257 days
Vendors: Image-Line
Vulnerability Severity: Medium
Exploit Impact: Cross-Site Request Forgery
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker
seagate

Seagate BlackArmor Multiple Vulnerabilities

Disclosed January 6, 2014    Zeroday : 259 days
Vendors: Seagate
Vulnerability Severity: High
Exploit Impact: Cross-Site Scripting
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker
ophcrack

Ophcrack Insecure Library Loading Vulnerability

Disclosed January 1, 2014    Zeroday : 264 days
Vendors: Ophcrack
Vulnerability Severity: Medium
Exploit Impact: Insecure Library Loading
Exploit Availability: No Exploit Available
Categories:
Zeroday Tracker
sercom

SerComm Products Backdoor

Disclosed December 31, 2013    Zeroday : 265 days
Vendors: SerComm
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker

Top 8 Security Insights for 2014

Posted December 23, 2013    Sarah Lieber

Recently our VP of Marketing, Mike Yaffe, wrote an insightful piece, Top 8 Security Insights for 2014, which was featured on a few publications last week. This was a “what we’re predicting in 2014″ type of article that goes into predictions and expectations for the new year around security and privilege. An excerpt and link to the…

Categories:
Vulnerability Management
Tags:
, , , , , , ,

December VEF Participant Wins a Apple iPad Air

Posted December 19, 2013    Qui Cao

Every month we host our Vulnerability Expert Forum (VEF) webinar. This is a time where our experts share valuable insight regarding new vulnerabilities that are discovered and the actions that need to be taken as a result. It’s a quick way to get up to speed on current potential risks to your organization and a way to…

Categories:
Vulnerability Management
zeroday-default

Leed Multiple Vulnerabilities

Disclosed December 18, 2013    Zeroday : 278 days
Vendors: Valentin CARRUESCO
Vulnerability Severity: Medium
Exploit Impact: Security Bypass
Exploit Availability: No Exploit Available
Categories:
Zeroday Tracker
sketchup

SketchUp Viewer .SKP Buffer Overflow

Disclosed December 12, 2013    Zeroday : 284 days
Vendors: SketchUp
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: No Exploit Available
Categories:
Zeroday Tracker