AppCheck Security Blog

FEATURED POST

DNS Rebinding Attacks

read more
Filter by:
View all
Case Studies
Events
General
News
Product
Research
Security Alerts
Appcheck - icons

A Hackers Bestiary

In this blog post we look at the different types of hackers known to operate, describing their differing motivations, techniques, and practices. Awareness of the different threats they pose can be key to defending organisations from the specific types of attacks that might be launched against them.
Read More
Appcheck - icons

**CRITICAL RISK** CVE-2023-4966 Cloud Software Group (Citrix) NetScaler ADC and NetScaler Gateway – Unauthorised Access to Critical Data and Credentials due to Improper Restriction of Operations within the Bounds of a Memory Buffer

NetScaler is a line of networking products owned by Cloud Software Group. The product suite includes NetScaler, an application delivery controller (ADC), and NetScaler Unified Gateway. NetScaler was acquired by Citrix Systems in 2005. Citrix consolidated all of its networking products under the NetScaler brand in 2016. On September 30, 2022, when Citrix was taken private as part of the merger with TIBCO Software, NetScaler was formed as a business unit under the Cloud Software Group.
Read More
Appcheck - icons

**CRITICAL RISK** CVE-2023-21608 Adobe Acrobat (Multiple Editions) – Arbitrary Code Execution via ‘Use After Free’ (Memory Access Violation) Vulnerability in resetForm Method

Adobe Acrobat is a family of application software and Web services developed by Adobe Inc. to view, create, manipulate, print and manage Portable Document Format (PDF) files.
Read More
Appcheck - icons

**CRITICAL RISK** CVE-2023-36563 Microsoft Windows (Multiple Editions) – Disclosure of Sensitive NTLM Hashes via WordPad

WordPad is a word processor software included with Windows 95 and later, until Windows 11. Similarly to its predecessor Microsoft Write, it is a basic word processor, positioned as more advanced than the Notepad text editor by supporting rich text editing, but with a subset of the functionality of Microsoft Word.
Read More
Appcheck - icons

What are security champions, and do they work?

In this blog post, we take a look at what a “security champion” is, how they are integrated into an organisation, and what if any benefits they can offer an existing security programme.
Read More
Appcheck - icons

**CRITICAL RISK** CVE-2023-42115 Exim Mail Transfer Agent < v4.9.7 – Unauthorised Remote Execution of Arbitrary Code via Out of Bounds Write in SMTP Service

Exim is a mail transfer agent (MTA) used on Unix-like operating systems. Exim is a free software distributed under the terms of the GNU General Public License, and it aims to be a general and flexible mailer with extensive facilities for checking incoming e-mail. Exim has been ported to most Unix-like systems, as well as to Microsoft Windows using the Cygwin emulation layer. Exim 4 is currently the default MTA on Debian Linux systems.
Read More

Get in touch

Start your free trial

Simply complete the form and we’ll send you all you need to activate AppCheck and undertake your FREE scan.
Your details
IP Addresses
URLs