BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Filter:
patch-tuesday

August 2013 Patch Tuesday

Posted August 13, 2013    BeyondTrust Research Team

Just a little over one week after hackers flooded Vegas for BlackHat and Defcon, August’s Patch Tuesday greets us with eight bulletins: three critical and five important. Software fixed this month includes Internet Explorer, Exchange, Windows, and Active Directory. MS13-059 addresses 11 privately disclosed vulnerabilities, including multiple memory corruptions, an information disclosure, and a privilege…

Categories:
Security Research
Tags:
,
Retina CS

Top 5 Tips and Tricks for Retina CS 4.5

Posted August 8, 2013    Morey Haber

I honestly believe we have the best pre-sales, post sales, and technical support departments in the security industry. They are responsive, technical, and can customize BeyondTrust solutions to match individual business requirements, even when they are pretty comprehensive outside-of-the-box. Based on their work, we have an internal process and external knowledge base to document these…

Categories:
Vulnerability Management
Tags:
, , , , , , ,
atlassian

Atlassian Confluence GET Parameter Cross-Site Scripting

Disclosed August 7, 2013    Fully Patched
Vendors: Atlassian
Vulnerability Severity: Medium
Exploit Impact:
Exploit Availability:
Categories:
Zeroday Tracker
hikvision

Hikvision IP Cameras Multiple Vulnerabilities

Disclosed August 6, 2013    Zeroday : 444 days
Vendors: Hikvision
Vulnerability Severity: High
Exploit Impact: Elevation of Privilege, Remote Code Execution, Security Bypass
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker
New-Audit-Review-screenshot

Did you know? Create custom audit views and reports with PowerBroker Auditor for Active Directory

Posted July 31, 2013    Morgan Holm

Did you know about the create custom audit views and reports feature in the PowerBroker Auditor for Active Directory solution?  Even though there are already around 200 built-in audit views that ship with the product organizations need to be able to target specific information for their environment and the task that is at hand. Needless…

Categories:
Privileged Account Management
Tags:
, , , , , , , , , , , ,
vmware

VMware ESX/ESXi Server Multiple Vulnerabilities

Disclosed July 31, 2013    Zeroday : 450 days
Vendors: VMware
Vulnerability Severity: High
Exploit Impact: Elevation of Privilege
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker
pbps-full-list-pbps-manages-incl-systems-and-accounts

Top 10 Reasons You Need Privileged Account Management Now

Posted July 29, 2013    Paul Harper

Don’t under estimate the complexity organizations face with managing and sharing access to privileged accounts. BeyondTrust has a wide variety of solutions that address the various challenges of privileged accounts.  Here are 10 key reasons our customers need and value the PowerBroker Password Safe solution: 1. EVERYONE has trouble managing privileged passwords – While some…

Categories:
Privileged Account Management
Tags:
, , , , , ,
microsoft

Internet Explorer 9/10 Recycler::ProcessMark Information Disclosure

Disclosed July 29, 2013    Zeroday : 452 days
Vendors: Microsoft
Vulnerability Severity: Medium
Exploit Impact: Information Disclosure
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker
asus

ASUS RT-AC66U Router Buffer Overflow

Disclosed July 26, 2013    Zeroday : 455 days
Vendors: ASUS
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker
videolan

VLC Media Player libmodplug Buffer Overflow

Disclosed July 24, 2013    Fully Patched
Vendors: VideoLAN
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability:
Categories:
Zeroday Tracker