Skip to main content
Tag

iot patch

|||||

Third-Party Patch Update: April 2018

By NewsNo Comments

Cisco Patches Vulnerability in WebEx

Cisco has just released a CVSS 9 rated update for its WebEx software. In their own words, the unpatched vulnerability “could allow an authenticated, remote attacker to execute arbitrary code on a targeted system.”

The malicious party would share a Flash file via WebEx’s sharing capabilities to gain control of targeted devices.

So what is the best option here? We recommend rolling out the update or removing WebEx. Syxsense can facilitate whichever approach is best for your situation.

Our patch management solution can easily identify which devices are running the WebEx software. From there, setting up a task to deploy the updates is incredibly straight forward.

If you decide to remove WebEx, it’s almost exactly the same process, but at the last step, you select “Uninstall” instead of ‘Install.”

Use an IT management solution that works with you, not against you. Syxsense offers a simple, but powerful approach to patching. Automatically keeps desktops, laptops and remote users up-to-date with patches and software updates.

Start a free trial of Syxsense today.

Third-Party Patch Updates

Below is a table of third-party updates from April 2018:

Vendor Category Patch Version and Release Notes: CVSS SCORE
Adobe Media Software  

ActiveX: v29.0.0.140 – https://helpx.adobe.com/security/products/flash-player/apsb18-08.html

 

Flash Player Plugin NPAPI: v29.0.0.140 – https://helpx.adobe.com/security/products/flash-player/apsb18-08.html

 

Flash Player Plugin PPAPI: v29.0.0.140 – https://helpx.adobe.com/security/products/flash-player/apsb18-08.html

 

N/A
 

 

Evernote Corporation  

Evernote: v6.11.2.7027 – https://evernote.com/download

 

N/A
FileZilla FTP Solution v3.32 – https://filezilla-project.org/versions.php

 

N/A
Google Browser  

Chrome: v66.0.3359.117 – https://chromereleases.googleblog.com/2018/04/stable-channel-update-for-desktop.html

 

N/A
 

Malwarebytes

 

Antivirus  

Malwarebytes: v3.4.5.2467 – https://www.malwarebytes.com/support/releasehistory/

 

Oracle  

JavaJRE and JDK: v8u172 – http://www.oracle.com/technetwork/java/javase/8u172-relnotes-4308893.html

 

Wireshark Network Protocol Analyzer  

2.4.6 – https://www.wireshark.org/docs/relnotes/wireshark-2.4.6.html

 

N/A
Syxsense demo

Schedule Your Syxsense Demo

Syxsense combines IT management, patch management, and security vulnerability scanning in one powerful solution. Get started today.

Schedule My Demo
|||

Third-Party Patch Update: March 2018

By NewsNo Comments

Will the IoT bankrupt your business?

Research on the Internet of Things is not painting a pretty picture. According to research firm Gartner, approximately 20% of organizations have experienced at least one IoT attack in the past three years. There’s also a report from BullGuard showing that 37% of those surveyed had no idea how to protect IoT devices.

The biggest conclusion from this research: businesses are going to spend a lot trying to prevent IoT-based attacks. Gartner’s forecast conservatively estimates that IoT security spending will reach $1.5 billion this year, but will explode to $3.1 billion by 2021.

Compliance is expected to be the primary cost-increasing factor.

It’s believed more regulations will be created, causing more work for IT managers. With the proliferation of IoT devices, reporting for compliance may become nearly impossible.

However, Syxsense has an answer. Our Device Discovery feature can already detect the IoT devices within your environments. And with our comprehensive reporting, you can generate easy to understand reports for any compliance need.

Be prepared for the IoT and start a trial of Syxsense today!

Third-Party Patch Updates

Below is a table of third-party updates from March 2018:

Vendor Category Patch Version and Release Notes: CVSS SCORE
Adobe Media Software  

AIR: v29.0.0.112 – https://helpx.adobe.com/flash-player/release-note/fp_29_air_29_release_notes.html

 

Flash Player: v29.0.0.113 – https://helpx.adobe.com/flash-player/release-note/fp_29_air_29_release_notes.html

 

Shockwave Player: v12.3.2.202 – https://helpx.adobe.com/shockwave/release-note/release-notes-shockwave-12.html

 

N/A
Don Ho  

Notepad: v7.5.6 – https://notepad-plus-plus.org/news/notepad-7.5.6-released.html

 

N/A
Evernote Corporation  

Evernote: v6.10.3.6921 – https://evernote.com/download

 

N/A
FileZilla FTP Solution v3.31 – https://filezilla-project.org/versions.php

 

N/A
Google Browser  

Chrome: v65.0.3325.184 – https://chromereleases.googleblog.com/2018/03/stable-channel-update-for-chrome-os_23.html

 

N/A
 

Irfan Skiljan

 

IrfanView: v4.51 – https://www.irfanview.com/main_history.htm
 

Malwarebytes

 

Antivirus  

Malwarebytes: v3.4.4.2398 – https://www.malwarebytes.com/support/releasehistory/

 

Mozilla Brower and Email Client  

Firefox: 59.0.2 – https://www.mozilla.org/en-US/firefox/59.0.2/releasenotes/

 

Thunderbird: 52.7.0 – https://www.mozilla.org/en-US/thunderbird/52.7.0/releasenotes/

 

N/A
 

The Document Foundation

 

LibreOffice: v6.0.2 – https://www.libreoffice.org/download/release-notes/
 

 

VSRevoGroup

 

RevoUninstallerFree: v2.0.5 – https://www.revouninstaller.com/revo_uninstaller_full_version_history.html

 

RevoUninstallerPro: v3.2.1 – https://www.revouninstaller.com/revo_uninstaller_pro_full_version_history.html

 

 

WinSCP

 

WinSCP: v5.13 – https://winscp.net/eng/docs/history
Wireshark Network Protocol Analyzer  

2.4.5 – https://www.wireshark.org/docs/relnotes/wireshark-2.4.5.html

 

N/A
Syxsense demo

Schedule Your Syxsense Demo

Syxsense combines IT management, patch management, and security vulnerability scanning in one powerful solution. Get started today.

Schedule My Demo
|||||

Internet of Threats: Third-Party Patch Update

By NewsOne Comment

Managing the Risks of IoT

Our definition of a necessary third-party patch is about to get much broader. With more IoT devices connecting to your network, it becomes mandatory to know what’s out there.

Back in May 2017, an 11-year old boy took the stage and showed that cybersecurity is about to get much more difficult. Using a Raspberry Pi, Python, and a Wi-Fi enabled teddy bear, this ‘cyber ninja’ scanned a cybersecurity conference and hacked devices from the audience.

Reuben Paul, the boy in question, tweeted after: “It was fun but I hope people did not miss the message – Secure IoT before the Internet of Toys becomes the Internet of Threats.”

This lesson must not be missed. We must find a way to secure the Internet of Things. Attacks are already being executed taking advantage of the IoT. When an 11-year-old can illustrate the dangers using a teddy bear, it’s time to take a hard look at what any of us are doing to protect our businesses.

We’ve already begun to see the IoT change the way we live and work. As this trend accelerates, solutions need to emerge to protect our privacy.

Syxsense is ready and at the forefront of that battle. Our product is the first of its kind; able to detect and manage devices in the IoT.

Come see the future of IT management and start a trial of Syxsense.

Third-Party Patch Updates

Below is a table of third-party Updates from January 2018:

Vendor Category Patch Version and Release Notes: CVSS SCORE
Adobe Media Software  

Flash, AIR, and ActiveX: 28.0.0.137 – https://helpx.adobe.com/flash-player/release-note/fp_28_air_28_release_notes.html

 

N/A
Apple Media Software  

iTunes: 12.7.3 – https://support.apple.com/kb/dl1814?locale=en_US

 

Safari: 11.0.3 – https://support.apple.com/en-us/HT208475

 

macOS High Sierra: 10.13.3 – https://support.apple.com/en-us/HT208465

 

CRITICAL
Don Ho  

Notepad: 7.5.4 – https://notepad-plus-plus.org/news/notepad-7.5.4-released.html

 

N/A
Evernote Corporation  

Evernote: 6.8.7.6387 – https://evernote.com/download

 

N/A
FileZilla FTP Solution 3.30 – https://filezilla-project.org/versions.php

 

N/A
Google Browser  

Chrome: 64.0.3282.119 – https://chromereleases.googleblog.com/2018/01/stable-channel-update-for-desktop_24.html

 

N/A
Mozilla Brower and Email Client  

Firefox: 58.0.1 – https://www.mozilla.org/en-US/firefox/58.0.1/releasenotes/

 

Thunderbird: 52.6.0 – https://www.mozilla.org/en-US/thunderbird/52.6.0/releasenotes/

N/A
Oracle  

JavaJDK: 8u162 – http://www.oracle.com/technetwork/java/javase/8u162-relnotes-4021436.html

 

JavaJDK: 9.0.4 – http://www.oracle.com/technetwork/java/javase/9-0-4-relnotes-4021191.html

 

N/A
Wireshark Network Protocol Analyzer 2.4.4 – https://www.wireshark.org/docs/relnotes/wireshark-2.4.4.html N/A
Syxsense demo

Schedule Your Syxsense Demo

Syxsense combines IT management, patch management, and security vulnerability scanning in one powerful solution. Get started today.

Schedule My Demo