Secure Planet Training Courses Updated For 2019 - Click Here

There are new available articles, click to refresh the page.

Before yesterdaySecurity

The Hacker News
Intel and Lenovo BMCs Contain Unpatched Lighttpd Server Flaw
April 15^th 2024 at 16:51

Intel and Lenovo BMCs Contain Unpatched Lighttpd Server Flaw

By: Newsroom

A security flaw impacting the Lighttpd web server used in baseboard management controllers (BMCs) has remained unpatched by device vendors like Intel and Lenovo, new findings from Binarly reveal. While the original shortcoming was discovered and patched by the Lighttpd maintainers way back in August 2018 with version 1.4.51, the lack of a CVE identifier or an advisory meant that

Naked Security
QNAP warns of new bugs in its Network Attached Storage devices
April 22^nd 2022 at 15:15

QNAP warns of new bugs in its Network Attached Storage devices

By: Paul Ducklin

Here's what you need to know - plus some sensible advice for all the devices on your home or small biz network!

nas-1200

Naked Security
Wormable Windows HTTP hole – what you need to know
January 12^th 2022 at 16:24

Wormable Windows HTTP hole – what you need to know

By: Paul Ducklin

One bug in the January 2022 Patch Tuesday list is getting lots of attention: "HTTP Protocol Stack Remote Code Execution Vulnerability".

Naked Security
Apache’s other product: Critical bugs in ‘httpd’ web server, patch now!
December 21^st 2021 at 17:57

Apache’s other product: Critical bugs in ‘httpd’ web server, patch now!

By: Paul Ducklin

The Apache web server just got an update - this one is nothing to do with Log4j!