Vulnerabilities Vulnerabilities

Continuous news on hardware and software vulnerabilities from proof of concept to zero day, the dangerous to the novel. Follow the patching topic to narrow your news to emerging fixes.

Qualys, MetricStream build vulnerability framework

Qualys, MetricStream build vulnerability framework

Routes vulnerabilities through investigation and remediation processes.
SC Staff Jan 6 2012 10:47AM Security
Microsoft preps seven security patches

Microsoft preps seven security patches

Includes one 'critical' fix.
Dan Kaplan Jan 6 2012 10:45AM Security
ASP.NET hole workaround published

ASP.NET hole workaround published

One crafted ~100kb HTTP request can consume 100 percent of a CPU core.
Dan Raywood Jan 4 2012 11:38AM Security
Analysis: HTML5 security holes detailed

Analysis: HTML5 security holes detailed

Security shortfalls in burgeoning standard.
Darren Pauli Jan 4 2012 11:28AM Security
Android app installs shell, bypasses permissions

Android app installs shell, bypasses permissions

App silently taps data.
Darren Pauli Dec 21 2011 11:10AM Security
99 MS critical bug fixes lowest on record

99 MS critical bug fixes lowest on record

Redmond says it hardened up.
Angela Moscaritolo Dec 15 2011 6:31AM Security
Aussie exploit challenges for noob to leet

Aussie exploit challenges for noob to leet

Learn to beat Linux non-executable memory, ASLR, and stack smashing protection.
Darren Pauli Dec 14 2011 5:53PM Security
Yahoo IM zero day patched

Yahoo IM zero day patched

Status messages hijacked.
Darren Pauli Dec 9 2011 4:40AM Security
HP printer bug sparks law suit

HP printer bug sparks law suit

A New York man has started a class action suit over a printer exploit said to be capable of starting fires.
Dan Kaplan Dec 7 2011 10:05AM Security
'Significant' holes found in Android phones

'Significant' holes found in Android phones

Pre-loaded apps create potential backdoors.
Angela Moscaritolo Dec 5 2011 1:04PM Security
"Significant" holes found in Droid X, Evo 4G, Wildfire S

"Significant" holes found in Droid X, Evo 4G, Wildfire S

Android phone apps create potential backdoors to user data.
Angela Moscaritolo Dec 4 2011 6:22PM Security
Java exploit added to Metasploit

Java exploit added to Metasploit

Microsoft says up to half of all exploits are Java based.
Dan Kaplan Dec 2 2011 10:41AM Security
BlackHole revamped with Java exploit

BlackHole revamped with Java exploit

Update free to existing customers.
Dan Raywood Nov 30 2011 10:08AM Security
HP printers hacked, access corporate network

HP printers hacked, access corporate network

Printers do not validate digital signatures for updates.
Angela Moscaritolo Nov 30 2011 10:08AM Security
Hollywood flicks hacked

Hollywood flicks hacked

But holes aren't remote exploitable.
James Hutchinson Nov 22 2011 1:59PM Security
Tool kills hidden Linux bugs, vulnerabilities

Tool kills hidden Linux bugs, vulnerabilities

Seeks out holes in embedded libraries.
Darren Pauli Nov 22 2011 1:45PM Security
Adobe cleans dirty dozen

Adobe cleans dirty dozen

Sans workarounds.
Dan Kaplan Nov 14 2011 10:54AM Security
Microsoft update misses Word kernel hole

Microsoft update misses Word kernel hole

Duqu survives as Microsoft stomps four nasty bugs.
Angela Moscaritolo Nov 4 2011 7:48AM Security
Facebook and the bug hunters

Facebook and the bug hunters

The sometimes dangerous business of vulnerability disclosure is becoming profitable.
Angela Moscsaritolo Nov 2 2011 4:31PM Security
Thousands of WordPress sites sucked into BlackHole

Thousands of WordPress sites sucked into BlackHole

Exploits aging TimThumb vulnerability.
Darren Pauli Nov 1 2011 2:56PM Security

Log In

  |  Forgot your password?