Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Another (less sever) Drupal Issue; Oracle CPU; LinkedIn Autofill Abuse; WebEx Flash Bug - SANS Internet Storm Center Another (less sever) Drupal Issue; Oracle CPU; LinkedIn Autofill Abuse; WebEx Flash Bug


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Friday, April 20th 2018

A daily summary of cyber security news from the SANS Internet Storm Center
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Friday, April 20th 2018
Length: 5:28 minutes
Today's Headline: Another (less sever) Drupal Issue; Oracle CPU; LinkedIn Autofill Abuse; WebEx Flash Bug

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

XSS Issue in CKFinder image2 Plugin Affects Drupal
https://www.drupal.org/sa-core-2018-003

Oracle Quarterly Critical Path Update
http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html

LinkedIn Autofill Clickjacking Vulnerability
https://lightningsecurity.io/blog/linkedin/

WebEx Flash Vulnerability
https://tools.cisco.com/security/center/publicationListing.x?product=Cisco&sort=-day_sir&limit=50#~Vulnerabilities

Discussion

Login here to join the discussion.

Interested in attending one of my classes? See below for my current schedule.

Defending Web Applications Security EssentialsRestonMay 20th - May 25th 2018
Intrusion Detection In-DepthSan AntonioAug 6th - Aug 11th 2018
Defending Web Applications Security EssentialsAmsterdamSep 3rd - Sep 8th 2018
Defending Web Applications Security EssentialsLas VegasSep 23rd - Sep 28th 2018