You searched for privilege escalation | SC Media

Your search for privilege escalation returned 35 results

Active Filters

Click on a filter below to refine your search. Remove a filter to broaden your search.

Robert Abel remove

Your search for privilege escalation returned 35 results

Sort Results:

Relevant Recent
Security News, Vulnerabilities

Multiple privilege escalation vulnerabilities in CleanMyMacX

Several privilege escalation vulnerabilities were found in MacPaw’s CleanMyMac X software, all of which will allow an attacker with local access to the victim’s machine to modify the file system as root. Cisco Talos researchers spotted 13 CVE vulnerabilities in the Mac cleanup application designed to free up extra space on a user’s machine by…
Security News, Vulnerabilities

Vulnerability found in Sophos anti-malware product

Cisco Talos researchers identified a memory disclosure flaw and a code execution vulnerability in the malware detection and protection tool Sophos HitmanPro.Alert. Both vulnerabilities are in the input/output control (IOCTL) message handler with one of the bugs allowing an attacker to read kernel memory contents, while the other glitch allows code execution and privilege escalation,…
patch flaw vulnerability
Security News, Vulnerabilities

Cisco releases updates for 10 high-rated vulnerabilities

Cisco released security updates to address vulnerabilities in multiple products that could allow an attacker to take control of an affected system. The updates include patches to 10 flaws rated “high,” including four denial of service (DoS) bugs involving a Web Security Appliance HTTPS Certificate, a Small Business Series Switches HTTP, a Web Security Appliance…
Security News, Vulnerabilities

Cisco announced 26 vulnerabilities in over the last two days, three critical

Cisco announced 26 vulnerabilities in over the last two days, including two critical flaws affecting core equipment that could grant attackers an avenue into networks. The vulnerabilities CVE-2019-1625 and CVE-2019-1848  were a Cisco SD-WAN Solution privilege escalation vulnerability and a Cisco DNA Center authentication bypass vulnerability, respectively. The privilege escalation vulnerability, CVE-2019-1625,  is caused by…
Microsoft4 (1)
Vulnerabilities

Microsoft Patch Tuesday: Nearly 50 patches, most for privilege escalation

Microsoft patched nearly 50 vulnerabilities this month, including patches for an Adobe Flash Player zero-day vulnerability that was announced earlier this month. The majority of fixes dealt with elevation of privilege vulnerabilities that can allow attackers with a foothold on the machine to gain SYSTEM-level privileges. One of the vulnerabilities CVE-2018-0771 is a Security Feature…
Security News, Vulnerabilities

WooCommerce WordPress flaw allowed unique privilege escalation, 4M users affected

A file deletion vulnerability in WordPress can be used to exploit millions of WooCommerce shops. WooCommerce is a free eCommerce WordPress plugin and the vulnerability allows shop managers to delete certain files on the server and then take over any administrator account, according to a RIPS Technology blog post. Shop managers are employees of the store…
On Patch Tuesday, Microsoft unveils fix for critical Windows flaw 'JASBUG'
Patch Management, Security News

Microsoft Patch Tuesday addresses two actively exploited zero-days

Microsoft’s July 2019 Patch Tuesday included updates for 77 vulnerabilities, including two actively exploited zero-days and five publicly disclosed vulnerabilities. One of the zero-days, CVE-2019-1132, a privilege escalation vulnerability in the Win32k component, was actively exploited as part of the attack chain by a group of Russian state-funded hackers.  If exploited, this bug could allow…
Next post in Security News