BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Filter:
caucho

Resin Application Server Cross-Site Scripting Vulnerability

Disclosed June 7, 2013    Zeroday : 761 days
Vendors: Caucho
Vulnerability Severity: Medium
Exploit Impact: Cross-Site Scripting
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker
PBW with RI

Our Newest Product Release: PowerBroker for Windows 6.0

Posted June 5, 2013    Sarah Lieber

We’re very excited to announce the release of PowerBroker for Windows 6.0, the industry’s first identity management solution able to leverage least privilege and vulnerability data scanned by the award winning Retina CS Threat Management Console. This allows our customers to take a system’s overall risk into context when deciding what level of privileges a user or…

Categories:
New Features, Privileged Account Management
Tags:
, , , , , , , , , , ,
parallels

Parallels Plesk Remote Code Execution Vulnerability

Disclosed June 5, 2013    No Patch Available
Vendors: Parallels, Inc.
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability:
Categories:
Zeroday Tracker
RPA-screenshot

Advanced Architectures with the Retina Protection Agent

Posted May 31, 2013    Morey Haber

One of the extended features of Retina CS is the Retina Protection Agent. This component is licensed with Retina and allows for users to assess hosts for vulnerabilities using a local scanning agent verses a network scan. This forgoes the need of a traditional SaaS or on-premise vulnerability assessment solution to perform a scan outside…

Categories:
New Features, Vulnerability Management
Tags:
, , , ,
monkey

Monkey HTTP Daemon Buffer Overflow

Disclosed May 30, 2013    Fully Patched
Vendors: Monkey HTTP Daemon Development Group
Vulnerability Severity: High
Exploit Impact: Remote Code Execution
Exploit Availability:
Categories:
Zeroday Tracker
retinacs-dashboard

PowerBroker for Windows Policy Through Retina CS Web Services

Posted May 29, 2013    Morey Haber

PowerBroker for Windows has traditionally relied on Active Directory Group Policy to populate assets with the latest rules and policies. The technology also contains a utility for managing off-line systems called PBDeploy and has met the challenges for many organizations when a domain is not available for authentication. With the growing number of portable Windows…

Categories:
New Features, Vulnerability Management
Tags:
, , , , ,
native-tool-integration

Did you know? – Native tool integration

Posted May 29, 2013    Morgan Holm

Did you know about the native tool integration feature in the PowerBroker Management Suite?  PowerBroker solution functionality is available through the native Microsoft administration tools referred to as Remote Server Administration Tools (RSAT).  These are the tools that administrators use on a day to day basis to manage their environment. What is it? – It’s…

Categories:
New Features, Privileged Account Management
Tags:
, , , ,
guy-stress-m

Do you want to do this the “hard” way?

Posted May 28, 2013    Mike Yaffe

Too often I see people working on what they can fix, what is easy. It’s like when I exercise, if I see progress I keep working at it but the problem areas (there are a lot of them) can wait until tomorrow. Over the past several years I see organizations doing a better job with…

Categories:
Vulnerability Management
Tags:
, , , , ,
zavio

Zavio IP Cameras Multiple Vulnerabilities

Disclosed May 28, 2013    Zeroday : 771 days
Vendors: Zavio
Vulnerability Severity: Medium
Exploit Impact: Remote Code Execution
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker
palosantosolutions

Elastix Multiple Cross-Site Scripting Vulnerabilities

Disclosed May 28, 2013    Zeroday : 771 days
Vendors: PaloSanto Solutions
Vulnerability Severity: Medium
Exploit Impact: Cross-Site Scripting
Exploit Availability: Publicly Available
Categories:
Zeroday Tracker