Author

 Ray Le Maistre

Profile of Ray Le Maistre

Editor-in-chief
News & Commentary Posts: 1

Don't be fooled by the weird cod-French surname: Ray's as British as corned beef and bad teeth, despite affecting a sheen of Continental sophistication by his constant references to fancy-dan "proper" coffee. He's even trained as a barista, for god's sake.

Ray joined Light Reading in 2002 shortly after being shown the door and a very long corridor at Total Telecom. He has been in technology journalism since 1988, having worked at Computer Weekly, Communications WeekInternational and Communications International.

A slave to fashion, Ray is never seen in the same outfit twice. When not trawling the malls of Epsom, U.K., for the latest in skinny jeans and what-have-you, Ray is often to be heard banging on about SPIT (Service Provider Information Technology), which is also known as TATRTCA (The Acronym That Refuses To Catch On).

As a soccer nut, Ray likes nothing better than cheap jibes about Manchester United. If you bump into him at a trade show, be sure to make some remark about prawn-sandwich-eating supporters or similar he'll love it!

Articles by Ray Le Maistre
Election Websites, Back-End Systems Most at Risk of Cyberattack in Midterms
Kelly Jackson Higgins, Executive Editor at Dark Reading,  8/14/2018
Intel Reveals New Spectre-Like Vulnerability
Curtis Franklin Jr., Senior Editor at Dark Reading,  8/15/2018
Australian Teen Hacked Apple Network
Dark Reading Staff 8/17/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-15504
PUBLISHED: 2018-08-18
An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2. The server mishandles some HTTP request fields associated with time, which results in a NULL pointer dereference, as demonstrated by If-Modified-Since or If-Unmodified-Since with a month greater than 11.
CVE-2018-15505
PUBLISHED: 2018-08-18
An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2. An HTTP POST request with a specially crafted "Host" header field may cause a NULL pointer dereference and thus cause a denial of service, as demonstrated by the lack of a trailing ']' character in an IPv6 a...
CVE-2018-15492
PUBLISHED: 2018-08-18
A vulnerability in the lservnt.exe component of Sentinel License Manager version 8.5.3.35 (fixed in 8.5.3.2403) causes UDP amplification.
CVE-2018-15494
PUBLISHED: 2018-08-18
In Dojo Toolkit before 1.14, there is unescaped string injection in dojox/Grid/DataGrid.
CVE-2018-15495
PUBLISHED: 2018-08-18
/filemanager/upload.php in Responsive FileManager before 9.13.3 allows Directory Traversal and SSRF because the url parameter is used directly in a curl_exec call, as demonstrated by a file:///etc/passwd value.