Network Computing Dark Reading

Advertise

Analytics

12/23/2007
06:15 AM

Tim Wilson, Editor in Chief, Dark Reading
Quick Hits

0 comments
Comment Now

50%

Wishing You a Happy, Safe Holiday

And no grinches in your stockings

In celebration of the holidays, Dark Reading and its parent company, CMP Technology, will be closed on Dec. 24 and Dec. 25, and will not be posting any new content.

Wherever you are, and whatever holiday you're celebrating this season, we hope you'll stay safe and secure over this next couple of days. We look forward to serving up the latest in IT security news to you when we return to the office on Dec. 26.

Just one bit of advice -- a good, solid concrete chimney guard will protect your perimeter from that pesky fireplace vulnerability. A roaring fire may also help, researchers say.

I wonder if that red-suited hacker could get in through Port 80?

— Tim Wilson, Site Editor, Dark Reading

Tim Wilson is Editor in Chief and co-founder of Dark Reading.com, UBM Tech's online community for information security professionals. He is responsible for managing the site, assigning and editing content, and writing breaking news stories. Wilson has been recognized as one ... View Full Bio

Comment |

Email This |

Print |

RSS

More Insights

Webcasts

How to Effectively Analyze Security Data

Chatbots for the Enterprise

More Webcasts

White Papers

NERC Updates May Force Utility Companies into Better Cybersecurity

eSentire Annual Threat Intelligence Report: 2019 Perspectives and 2020 Predictions

More White Papers

Reports

eSentire Annual Threat Intelligence Report: 2019 Perspectives and 2020 Predictions

2020 IT Salary Survey Results Revealed

More Reports

Comments

Newest First | Oldest First | Threaded View

[close this box]

Be the first to post a comment regarding this story.

Hot Topics

Editors' Choice

Microsoft Edge Will Tell You If Credentials Are Compromised

Dark Reading Staff 3/30/2020

HackerOne Drops Mobile Voting App Vendor Voatz

Dark Reading Staff 3/30/2020

Limited-Time Free Offers to Secure the Enterprise Amid COVID-19

Curtis Franklin Jr., Senior Editor at Dark Reading, 3/31/2020

Webinars

How to Effectively Analyze Security Data

Cloud Security 101

Building a Strategy for Detection and Response

Webinar Archives

White Papers

NERC Updates May Force Utility Companies into Better Cybersecurity

eSentire Annual Threat Intelligence Report: 2019 Perspectives and 2020 Predictions

One Phish, Two Phish, Three Phish, Fraud Phish

A Market Guide to Simulation-Based Cybersecurity Training

Are you leveraging all the benefits of cloud computing?

More White Papers

Video

All Videos

Cartoon Contest

Write a Caption, Win a Starbucks Card! Click Here

Latest Comment: Hello...Nurse...I've placed a mask on him but he refuses to wear gloves...now what?

Cartoon Archive

Current Issue

6 Emerging Cyber Threats That Enterprises Face in 2020

This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

State of Cybersecurity Incident Response

Data breaches and regulations have forced organizations to pay closer attention to the security incident response function. However, security leaders may be overestimating their ability to detect and respond to security incidents. Read this report to find out more.

Download Now!

How Enterprises Are Developing and Maintaining Secure Applications

0 comments

How Enterprises are Attacking the Cybersecurity Problem

0 comments

How Data Breaches affect the Enterprise

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-5347
PUBLISHED: 2020-04-04

Dell EMC Isilon OneFS versions 8.2.2 and earlier contain a denial of service vulnerability. SmartConnect had an error condition that may be triggered to loop, using CPU and potentially preventing other SmartConnect DNS responses.

CVE-2020-5348
PUBLISHED: 2020-04-04

Dell Latitude 7202 Rugged Tablet BIOS versions prior to A28 contain a UAF vulnerability in EFI_BOOT_SERVICES in system management mode. A local unauthenticated attacker may exploit this vulnerability by overwriting the EFI_BOOT_SERVICES structure to execute arbitrary code in system management mode.

CVE-2020-8142
PUBLISHED: 2020-04-03

A security restriction bypass vulnerability has been discovered in Revive Adserver version < 5.0.5 by HackerOne user hoangn144. Revive Adserver, like many other applications, requires the logged in user to type the current password in order to change the e-mail address or the password. It was how...

CVE-2020-8143
PUBLISHED: 2020-04-03

An Open Redirect vulnerability was discovered in Revive Adserver version < 5.0.5 and reported by HackerOne user hoangn144. A remote attacker could trick logged-in users to open a specifically crafted link and have them redirected to any destination.The CSRF protection of the â€&oelig;/...

CVE-2020-8147
PUBLISHED: 2020-04-03

Flaw in input validation in npm package utils-extend version 1.0.8 and earlier may allow prototype pollution attack that may result in remote code execution or denial of service of applications using utils-extend.

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]