Tag Archives: EoP

Microsoft “tops up” Patch Tuesday, issues delayed fix for zero-day hole in logon security

Posted on by

Microsoft has issued a “top up” security bulletin for a fix that didn’t quite make it into the November 2014 Patch Tuesday. The vulnerability can be used to turn any user into a domain administrator, and it’s been exploited in the wild…

Patch Tuesday wrap-up, September 2014 – why even a single-bit data leak is worth fixing

Posted on by

Here’s what you need to know about the September 2014 Patch Tuesday updates from Microsoft and Adobe…

Patch Tuesday wrap-up, August 2014: RCE + ASLR bypass + EoP == patch early, patch all!

Posted on by

Patch Tuesday is here again. Paul Ducklin explains how this month’s vulnerabilities can work together for harm, and why *all* the updates matter, not just the ones that ended up with a “critical” or “severe” tag…

Patch Tuesday wrap-up, July 2014 – Adobe fixes “Rosetta”, plus a new risky file type on Windows…

Posted on by

Patch Tuesday for July 2014 is just behind us in the case of Microsoft and Adobe, and just ahead of us in the case of Oracle. Paul Ducklin tells you what you need to know…

As one security hole closes, another one opens! 60 Sec Security [VIDEO]

Posted on by

How many years was that security hole in Linux ? How many security patches for XP? How many lock screen holes in iOS? How much do Google specs cost? Find out in this week’s 60 Second Security video…

Patch Tuesday wrap-up, May 2014 – Adobe and Microsoft both patch multiple remotable holes

Posted on by

Patch Tuesday updates from both Microsoft and Adobe are out. There aren’t any huge surprises this month, but both companies have critical patches for remote code execution holes…