Blog

All Linux kernels prior to 5.0.8 are vulnerable to a race condition vulnerability which can allow remote code execution. The vulnerability in the RDS (Reliable Datagram Socket) module can lead to a use after free condition which can be leveraged to achieve remote code execution by sending specially crafted TCP packets to a vulnerable server.Read more

A team including some of the researchers who discovered the Spectre and Meltdown vulnerabilities in AMD and Intel CPU announced a new class of vulnerability affecting Intel CPU which they called Zombieload. Like Spectre and Meltdown, the Zombieload vulnerability exploits weaknesses in the implementation of speculative execution in Intel CPUs.  The different attack names reflectRead more

Microsoft included a fix for a serious RDP remote code execution vulnerability known as BlueKeep in the May patch Tuesday update. The vulnerability, which has become known as BlueKeep or CVE-2019-0708, remains unpatched on millions of internet connected systems.  It affects all Windows-NT based operating systems ranging from Windows 2000 and Windows XP up toRead more

Dell SupportAssist software prior to 3.2.0.90 contains two critical remote code execution vulnerabilities. Dell has just released a new version of their SupportAssist software which comes pre-installed on most systems to correct CVE-2019-3719. A 17 year old security researcher discovered a weakness in the way the Dell software validated the identity of the dell.com website. This madeRead more

LightNeuron is a backdoor specifically designed to target Microsoft Exchange mail servers. It permits attackers to read and reroute all email passing through the server and execute commands on the server hidden in incoming email attachments. A recent paper published by ESET describes how the malware functions and the risks it poses. The researcher says:Read more