execution Archives | CW Enterprises

WhatsApp Remote Code Execution Triggered by Videos

18th November 2019Lindsey O Donnell

The flaw can be trivially exploited. Source: Threat Post – Web Security – WhatsApp Remote Code Execution Triggered by Videos [...]

Critical Remote Code Execution Flaw Found in Open Source rConfig Utility

4th November 2019Tom Spring

The network configuration management utility has two unpatched critical remote code execution vulnerabilities. Source: Threat Post – Web Security – Critical Remote [...]

PHP Bug Allows Remote Code-Execution on NGINX Servers

28th October 2019Tara Seals

CVE-2019-11043 is trivial to exploit — and a proof of concept is available. Source: Threat Post – Web Security – PHP Bug [...]

PHP7 Remote Code Execution Bug Let Hackers Hijack Websites Running On NGINX Servers

28th October 2019GURUBARAN S

A new recently patched remote code execution bug in PHP7 lets hackers hijack the websites running on some NGINX and php-fpm configurations. The [...]

Firefox, Chrome Bugs Allow Arbitrary Code-Execution

23rd October 2019Tara Seals

Multiple critical memory safety bugs in Firefox 69 and Firefox ESR 68.1 in particular affect medium and large government entities and enterprises. [...]

WhatsApp Flaw Opens Android Devices to Remote Code Execution

3rd October 2019Elizabeth Montalbano

A double-free bug could allow an attacker to achieve remote code execution; users are encouraged to update to a patched version of the [...]

WordPress XSS Bug Allows Drive-By Code Execution

13th September 2019Tara Seals

Sites that use the Gutenberg (found in WordPress 5.0 to 5.2.2) are open to complete takeover. Source: Threat Post – Web Security [...]

Adobe Fixes Critical Flash Player Code Execution Flaws

10th September 2019Lindsey O Donnell

Overall Adobe’s September security update addressed vulnerabilities in Flash Player and Application Manager. Source: Threat Post – Web Security – Adobe Fixes [...]

New Speculative Execution Vulnerability Gives CISOs a New Reason to Lose Sleep

7th August 2019Curtis Franklin Jr Senior Editor at Dark Reading

The vulnerability, dubbed SWAPGS, is an undetectable threat to data security, similar in some respects to Spectre and Meltdown. Source: Dark Reading [...]

VMware Security Vulnerabilities Leads to Code Execution and Cause DoS Condition

4th August 2019GURUBARAN S

Vmware fixed multiple security vulnerabilities that may lead to code execution, information disclosure and DoS condition with normal user privileges. Products Affected VMware [...]