Home Tag "0-Day"

March 19: OpenSSL update

The OpenSSL team announced that there will be security fixes in the OpenSSL releases 1.0.2a, 1.0.1m, 1.0.0r and 0.9.8zf which will be published on the 19th march. The announcement states that the highest severity being fixed is “high”. The highest severity defect fixed by these releases is classified as “high” severity. – OpenSSL Project Team The OpenSSL […]

Short News: Forbes.com hacked back in November

Forbes released a blog post about an attack targeting forbes.com visitors back in November. While I visited the Blog and found that “Thought of the Day” pretty useless (and one more click before seeing the content), it’s kind of ironical that it was in Flash once (doesn’t seem to be the case anymore) and it […]

Another Flash 0-Day: CVE-2015-0313

Looks like we can’t have two weeks without a flash 0-Day. Today, Feb 2nd, Adobe released another security advisory revealing CVE-2015-0313.  Adobe says that they’re aware of this Flash exploit being actively abused (they’re probably referring to the TendMicro blogpost). Successful exploitation could cause a crash and potentially allow an attacker to take control of […]