Microsoft Bulletin Advance Notification for August, 2014

Microsoft has released [1] an advance notification for the August patchday. This month, 9 security bulletins are being published: 2 rated as critical allowing remote code execution in Internet Explorer, Windows Media Center Pack and Windows 7 rated as important […]

Microsoft Bulletin Advance Notification for July, 2014

Microsoft has released [1] an advance notification for the july patchday. This month, 6 security bulletins are being published: 2 rated as critical allowing remote code execution in Internet Explorer and Windows 3 rated as important allowing elevation of privilege […]

OpenSSL: The Bleeding Continues take #2

Following our blog post “OpenSSL: the bleeding continues“, published on June 5th, CERT-LEXSI performed a deeper analysis of vulnerability CVE-2014-0195. As a reminder, CVE-2014-0195 is a potential code execution vulnerability due to a heap-based buffer overflow in the “dtls1_reassemble_fragment()” function […]