Tag

Security Hole

All articles tagged with #security hole

cybersecurity2 years ago•4 min saved

Microsoft's Ongoing Battle Against Security Flaws: Latest Patch Updates and Fixes.

Microsoft has released a patch to fix a vulnerability in its MapUrlToZone function in the Windows API that was being exploited by hackers to bypass a previous patch for a security hole in Outlook. The original bug allowed attackers to leak victims' Windows credentials by sending them an email with a custom notification sound that could be specified as a URL path within the email. The new patch is for the underlying MSHTML platform in Windows, and all versions of the OS are affected by the bug. Microsoft is recommending organizations fix both the new vulnerability and the earlier CVE-2023-23397.

via The Register|

#cybersecurity #microsoft #outlook

cybersecurity2 years ago•2 min saved

Smart Garage Door Opener Vulnerability Allows Remote Hacking

Security researcher Sam Sabetan has discovered a major security hole in the mobile app for Nexx's smart garage door controller, which allows hackers to remotely open connected doors. The vulnerability is due to a shared universal password that applies across all devices and leaks via Nexx's API and firmware. Sabetan also uncovered four other related vulnerabilities that can involve hijacking Nexx's smart plugs and smart alarm products. Despite attempts to contact the company, Nexx has been silent on fixing the issue. Sabetan estimates that over 40,000 devices are impacted and recommends disconnecting the devices and contacting Nexx for remediation steps.

via PCMag|

#cybersecurity #iot-devices #nexx