dimanche 15 septembre 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Microsoft Lync Server 2013 Conference directory traversal

A vulnerability has been found in Microsoft Lync Server 2013 (Unified Communication Software) and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Conference Handler. Applying a patch is able...
Auteur: VulDB

Microsoft .NET Framework up to 4.8 Common Language Runtime directory traversal

A vulnerability, which was classified as critical, was found in Microsoft .NET Framework up to 4.8 (Programming Language Software). Affected is an unknown function of the component Common Language Runtime. Applying a patch is able to eliminate...
Auteur: VulDB

Microsoft Windows up to Server 2016 Hyper-V denial of service

A vulnerability, which was classified as problematic, has been found in Microsoft Windows up to Server 2016 (Operating System). This issue affects some unknown processing of the component Hyper-V. Applying a patch is able to eliminate this...
Auteur: VulDB

Microsoft Windows up to Server 2019 Transaction Manager information disclosure

A vulnerability classified as problematic was found in Microsoft Windows (Operating System). This vulnerability affects an unknown code block of the component Transaction Manager. Applying a patch is able to eliminate this problem. A possible...
Auteur: VulDB

Microsoft Windows up to Server 2016 DirectX information disclosure

A vulnerability classified as problematic has been found in Microsoft Windows up to Server 2016 (Operating System). This affects an unknown code of the component DirectX. Applying a patch is able to eliminate this problem. A possible mitigation...
Auteur: VulDB

Microsoft Windows up to Server 2019 Winsock ws2ifsl.sys privilege escalation

A vulnerability was found in Microsoft Windows (Operating System). It has been rated as critical. Affected by this issue is an unknown part in the library ws2ifsl.sys of the component Winsock. Applying a patch is able to eliminate this problem. A...
Auteur: VulDB

Microsoft Windows up to Server 2019 Common Log File System Driver privilege escalation

A vulnerability was found in Microsoft Windows (Operating System). It has been declared as critical. Affected by this vulnerability is some unknown functionality of the component Common Log File System Driver. Applying a patch is able to...
Auteur: VulDB

Microsoft Team Foundation Server/Azure DevOps Server privilege escalation

A vulnerability was found in Microsoft Team Foundation Server and Azure DevOps Server (Programming Tool Software) (version unknown). It has been classified as critical. Affected is an unknown functionality. Applying a patch is able to eliminate...
Auteur: VulDB

Microsoft Windows up to Server 2019 lnk File privilege escalation

A vulnerability was found in Microsoft Windows (Operating System) and classified as critical. This issue affects an unknown function of the component lnk File Handler. Applying a patch is able to eliminate this problem. A possible mitigation has...
Auteur: VulDB

Microsoft Internet Explorer 9/10/11 VBScript memory corruption

A vulnerability has been found in Microsoft Internet Explorer 9/10/11 (Web Browser) and classified as critical. This vulnerability affects some unknown processing of the component VBScript. Applying a patch is able to eliminate this problem. A...
Auteur: VulDB

Microsoft Internet Explorer 9/10/11 VBScript memory corruption

A vulnerability, which was classified as critical, was found in Microsoft Internet Explorer 9/10/11 (Web Browser). This affects an unknown code block of the component VBScript. Applying a patch is able to eliminate this problem. A possible...
Auteur: VulDB

Microsoft Internet Explorer 11 Scripting Engine memory corruption

A vulnerability, which was classified as critical, has been found in Microsoft Internet Explorer 11 (Web Browser). Affected by this issue is an unknown code of the component Scripting Engine. Applying a patch is able to eliminate this problem. A...
Auteur: VulDB

Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption

A vulnerability classified as critical was found in Microsoft Edge and ChakraCore (Web Browser) (affected version unknown). Affected by this vulnerability is an unknown part of the component Chakra Scripting Engine. Applying a patch is able to...
Auteur: VulDB

Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption

A vulnerability classified as critical has been found in Microsoft Edge and ChakraCore (Web Browser) (version unknown). Affected is some unknown functionality of the component Chakra Scripting Engine. Applying a patch is able to eliminate this...
Auteur: VulDB

Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption

A vulnerability was found in Microsoft Edge and ChakraCore (Web Browser) (unknown version). It has been rated as critical. This issue affects an unknown functionality of the component Chakra Scripting Engine. Applying a patch is able to eliminate...
Auteur: VulDB

Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption

A vulnerability was found in Microsoft Edge and ChakraCore (Web Browser) (the affected version is unknown). It has been declared as critical. This vulnerability affects an unknown function of the component Chakra Scripting Engine. Applying a...
Auteur: VulDB

Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption

A vulnerability was found in Microsoft Edge and ChakraCore (Web Browser) (the affected version unknown). It has been classified as critical. This affects some unknown processing of the component Chakra Scripting Engine. Applying a patch is able...
Auteur: VulDB

Microsoft SharePoint Enterprise Server 2010 SP1/2013 SP1/2016/2019 API privilege escalation

A vulnerability was found in Microsoft SharePoint Enterprise Server 2010 SP1/2013 SP1/2016/2019 and classified as critical. Affected by this issue is an unknown code block of the component API. Applying a patch is able to eliminate this problem....
Auteur: VulDB

Microsoft SharePoint Enterprise Server 2013 SP1/2016/2019 API privilege escalation

A vulnerability has been found in Microsoft SharePoint Enterprise Server 2013 SP1/2016/2019 and classified as critical. Affected by this vulnerability is an unknown code of the component API. Applying a patch is able to eliminate this problem. A...
Auteur: VulDB

Microsoft SharePoint Enterprise Server 2010 SP1/2013 SP1/2016/2019 Markup Application Package privilege escalation

A vulnerability, which was classified as critical, was found in Microsoft SharePoint Enterprise Server 2010 SP1/2013 SP1/2016/2019. Affected is an unknown part of the component Markup Handler. Applying a patch is able to eliminate this problem. A...
Auteur: VulDB

Microsoft Windows up to RT 8.1 Remote Desktop privilege escalation

A vulnerability, which was classified as critical, has been found in Microsoft Windows up to RT 8.1. This issue affects some unknown functionality of the component Remote Desktop. Applying a patch is able to eliminate this problem. A possible...
Auteur: VulDB

Microsoft Windows up to RT 8.1 Remote Desktop privilege escalation

A vulnerability classified as critical was found in Microsoft Windows up to RT 8.1. This vulnerability affects an unknown functionality of the component Remote Desktop. Applying a patch is able to eliminate this problem. A possible mitigation has...
Auteur: VulDB

Microsoft Windows up to Server 2019 Remote Desktop privilege escalation

A vulnerability classified as critical has been found in Microsoft Windows. This affects an unknown function of the component Remote Desktop. Applying a patch is able to eliminate this problem. A possible mitigation has been published immediately...
Auteur: VulDB

Microsoft Windows up to Server 2019 Remote Desktop privilege escalation

A vulnerability was found in Microsoft Windows (Operating System). It has been rated as critical. Affected by this issue is some unknown processing of the component Remote Desktop. Applying a patch is able to eliminate this problem. A possible...
Auteur: VulDB

CERTFR-2019-AVI-438 : Multiples vulnérabilités dans les produits Microsoft (11 septembre 2019)

De multiples vulnérabilités ont été corrigées dans les produits Microsoft. Elles permettent à un attaquant de provoquer un contournement de la fonctionnalité de sécurité, une atteinte à la confidentialité des données, une élévation de privilèges,...
Auteur: Cert FR
First567891011121314Last

Événements SSI

LES ASSISES

Grand rendez-vous annuel des RSSI, les Assises de la sécurité des systèmes d'information se tiennent à Monaco (Grimaldi Forum) du 9 au 12 octobre 2019. Organisées par DG Consultants.

BLOCKCHAIN

Conférence et exposition sur les applications d'entreprise de la blockchain à Paris, cité universitaire internationale, les 13 et 14 novembre 2019. Organisés par Corp Agency.

TRUSTECH

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes (palais des festivals) du 26 au 28 novembre 2019. Organisé par Comexposium.

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS