Security News

Two Foxit Reader RCE zero-day vulnerabilities disclosed (Help Net Security)
2017-08-18 18:44

Trend Micro’s Zero Day Initiative has released details about two remote code execution zero-day flaws affecting popular freemium PDF tool Foxit Reader. The first one (CVE-2017-10951) is a command...

Critical RCE Vulnerability Found in Cisco WebEx Extensions, Again — Patch Now! (The Hackers News)
2017-07-17 10:30

A highly critical vulnerability has been discovered in the Cisco Systems’ WebEx browser extension for Chrome and Firefox, for the second time in this year, which could allow attackers to remotely...

Google researcher uncovers another RCE in Microsoft Malware Protection Engine (Help Net Security)
2017-06-27 19:02

Google Project Zero researcher Tavis Ormandy has unearthed yet another critical remote code execution vulnerability affecting the Microsoft Malware Protection Engine, which powers a number of the...

Another RCE Vulnerability Patched in Microsoft Malware Protection Engine (Threatpost)
2017-06-26 17:54

Google Project Zero’s Tavis Ormandy found another remote code execution vulnerability in the Microsoft Malware Protection Engine, the third since early May.

Critical RCE Flaw Found in OpenVPN that Escaped Two Recent Security Audits (The Hackers News)
2017-06-22 01:08

A security researcher has found four vulnerabilities, including a critical remote code execution bug, in OpenVPN, those were not even caught in the two big security audits of the open source VPN...

8 RCE, DoS holes in Microsoft Malware Protection Engine plugged (Help Net Security)
2017-05-30 17:22

After the discovery and the fixing of a “crazy bad” remote code execution flaw in the Microsoft Malware Protection Engine earlier this month, now comes another MMPE security update that plugs...

Vanilla Forums Software Vulnerable to RCE, Host Header Injection Vulnerability (Threatpost)
2017-05-11 20:39

Vanilla Forums software suffers from vulnerabilities that could let an attacker gain access to user accounts, carry out web-cache poisoning attacks, and in some instances, execute arbitrary code.

Google 0-Day Hunters Find 'Crazy Bad' Windows RCE Flaw (The Hackers News)
2017-05-09 00:45

Update (Monday, May 08, 2017): Microsoft has released an emergency security update to patch below-reported crazy bad remote code execution vulnerability in its Microsoft Malware Protection Engine...

Microsoft Issues Emergency Patch For Critical RCE in Windows Malware Scanner (The Hackers News)
2017-05-09 00:28

Microsoft's own antivirus software made Windows 7, 8.1, RT and 10 computers, as well as Windows Server 2016 more vulnerable. Microsoft has just released an out-of-band security update to patch the...