Microsoft January 2021 Patch Tuesday fixes 83 flaws, 1 zero-day

Posted by & filed under Ειδοποιήσεις.

With the January 2021 Patch Tuesday security updates release, Microsoft has released fixes for 83 vulnerabilities, with ten classified as Critical and 73 as Important. There is also one zero-day and one previously disclosed vulnerabilities fixed as part of the January 2021 updates. For information about the non-security Windows updates, you can read about today’s Windows 10 KB4598229… Read more »

VMware fixes zero-day vulnerability reported by the NSA

Posted by & filed under Ειδοποιήσεις.

VMware has released security updates to address a zero-day vulnerability in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. The vulnerability is a command injection bug tracked as CVE-2020-4006 and publicly disclosed two weeks ago. While it did not issue any security updates at the time it disclosed the zero-day, VMware provided a workaround to help… Read more »

VMware discloses critical zero-day vulnerability in Workspace One

Posted by & filed under Ειδοποιήσεις.

VMware has released a workaround to address a critical zero-day in multiple VMware Workspace One components that allows attackers to execute commands on the host Linux and Windows operating systems using escalated privileges. Zero-days are publicly disclosed vulnerabilities not yet patched by the vendor. In some cases, zero-days are also actively exploited in the wild… Read more »

Cisco discloses AnyConnect VPN Zero-Day – Exploit code available!

Posted by & filed under Ειδοποιήσεις.

Cisco has disclosed today a zero-day vulnerability in the Cisco AnyConnect Secure Mobility Client software with proof-of-concept exploit code publicly available. While security updates are not yet available for this arbitrary code execution vulnerability, Cisco is working on addressing the zero-day, with a fix coming in a future AnyConnect client release. However, the Cisco AnyConnect Secure Mobility Client security flaw has… Read more »

Microsoft’s IE Zero-day Fix is Breaking Windows Printing

Posted by & filed under Ειδοποιήσεις.

Microsoft’s temporary fix for a recently disclosed Internet Explorer zero-day vulnerability is causing numerous problems in Windows, including breaking printing for some users. On January 17th, 2020, Microsoft disclosed a zero-day remote code execution vulnerability in Internet Explorer 11, 10, and 9 that was being used in “limited targeted attacks”. To exploit this vulnerability, attackers can create a specially… Read more »