all InfoSec news
Talos discloses multiple zero-day vulnerabilities, two of which could lead to code execution
Malware Analysis, News and Indicators - Latest topics malware.news
Cisco Talos’ Vulnerability Research team recently disclosed three zero-day vulnerabilities that are still unpatched as of Wednesday, May 8.
Two vulnerabilities in this group — one in the Tinyroxy HTTP proxy daemon and another in the stb_vorbis.c file library — could lead to arbitrary code execution, earning both issues a CVSS score of 9.8 out of 10. While we were unable to reach the maintainers, the Tinyroxy maintainers have since patched the issue.
Another zero-day exists in the Milesight UR32L …
arbitrary code arbitrary code execution cisco cisco talos code code execution daemon earning file http library may proxy research talos team unpatched vulnerabilities vulnerability vulnerability research vulnerability research team zero-day zero-day vulnerabilities