Home Tags Remote code execution

Tag: remote code execution

No Fix for SquirrelMail Remote Code Execution Vulnerability

SquirrelMail suffers from a remote code execution vulnerability that could let attackers execute arbitrary commands on the target and compromise the remote system.

Oracle fixes Struts and Shadow Brokers exploits in huge patch release

Oracle has released a record 299 security fixes for vulnerabilities in its products, including patches for a widely exploited vulnerability in the Apache Struts framework and a Solaris exploit supposedly used by the U.S. National Security Agency.The Struts vulnerability allows for remote code execution on Java web servers and was patched on March 6.

Attackers have quickly adopted it and have used it in widespread attacks since then.[ MySQL face-off: Amazon vs.

Google. | Learn how to get started, step by step, with MySQL. | Also on InfoWorld: 10 essential performance tips for MySQL | Track the latest trends in open source with InfoWorld's Linux Report newsletter. ]
Oracle uses Apache Struts 2 in several of its products, which is why Tuesday’s critical patch update (CPU) fixed 25 instances of the vulnerability in Oracle Communications, Retail and Financial Services applications, as well as in the MySQL Enterprise Monitor, Oracle WebCenter Sites, Oracle WebLogic Server and the Siebel E-Billing app.To read this article in full or to leave a comment, please click here

‘High Risk’ Zero Day Leaves 200,000 Magento Merchants Vulnerable

A popular version of the Magento ecommerce platform is vulnerable to a remote code execution bug, putting as many as 200,000 online retailers at risk.

Apple squashes cert-handling bug affecting macOS and iOS

Flaw posed remote code execution risk Apple has resolved a certification validation vulnerability affecting both macOS and iOS users.…

SAP Vulnerability Puts Business Data at Risk for Thousands of Companies

Researchers at ERPScan today disclosed details and a proof-of-concept exploit for a SAP GUI remote code execution vulnerability patched last week.

GitHub awards researcher $18,000 for remote code execution flaw discovery

The severe bug impacted GitHub Enterprise and could have given attackers the opportunity to hijack the management console.

Cisco IOS and IOS XE Software Cluster Management Protocol Remote Code...

A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code ...

GitHub Code Execution Bug Fetches $18,000 Bounty

GitHub awarded $18,000 to a researcher after he came across a remote code execution bug in the company’s enterprise management console.

VU#834067: Apache Struts 2 is vulnerable to remote code execution

Apache Struts,versions 2.3.5 - 2.3.31 and 2.5 - 2.5.10,is vulnerable to code injection leading to remote code execution(RCE).

Apache Struts Vulnerability Under Attack

An easy to exploit remote code execution flaw discovered in the widely used open-source Apache Struts 2 framework has been patched, but that's not stopping attackers from attempting to exploit vulnerable systems.

Apache Struts Vulnerability Exposes Sites to Attack

An easy to exploit remote code execution flaw was discovered in the widely used open-source Apache Struts 2 framework.