Vulnerabilities Vulnerabilities

Continuous news on hardware and software vulnerabilities from proof of concept to zero day, the dangerous to the novel. Follow the patching topic to narrow your news to emerging fixes.

Microsoft confirms zero-day flaw in IIS

Microsoft confirms zero-day flaw in IIS

Affects versions 5.0, 5.1 and 6.0.
Phil Muncaster Sep 3 2009 6:51AM Security
Vulnerabilities falling but malware booms

Vulnerabilities falling but malware booms

ISS X-Force survey finds some good news, and a lot of bad.
Iain Thomson Sep 2 2009 10:10AM Security
Cisco warns of new Unified Communications flaw

Cisco warns of new Unified Communications flaw

Telephony tool vulnerable to pair of denial of service attacks.
Shaun Nichols Aug 28 2009 2:58PM Security
Twitter XSS vulnerability not yet fixed

Twitter XSS vulnerability not yet fixed

Claims patch doesn't work.
Angela Moscsaritolo Aug 27 2009 10:43AM Security
Google fixes severe Chrome flaws

Google fixes severe Chrome flaws

Advisory warns of multiple vulnerabilities.
Phil Muncaster Aug 27 2009 6:27AM Security
Cisco wireless flaw discovered

Cisco wireless flaw discovered

Could lead to a "full breach".
Dan Kaplan Aug 26 2009 10:36AM Security
Researcher details Facebook CSRF flaw

Researcher details Facebook CSRF flaw

A security researcher has described a flaw that hackers could exploit to siphon Facebook users' personal information, without their knowledge, through the use of a rogue application.
Dan Kaplan Aug 25 2009 1:00PM Security
"Dirtiest" websites host average of 18,000 threats

"Dirtiest" websites host average of 18,000 threats

The most dangerous sites on the web are propagating an average of 18,000 different pieces of malware, according to Symantec.
Angela Moscaritolo Aug 21 2009 12:17PM Security
Adobe rolls out security updates

Adobe rolls out security updates

ColdFusion and JRun receive critical patches.
Shaun Nichols Aug 19 2009 2:25PM Security
Adobe ColdFusion, JRun updated for critical issues

Adobe ColdFusion, JRun updated for critical issues

More patches for the web design and development platform.
Angela Moscsaritolo Aug 18 2009 3:49PM Security
Apple issues BIND patch

Apple issues BIND patch

On the heels of updates for Mac OS X and the Safari browser, Apple has issued a patch for its implementation of BIND, the popular software for DNS servers.
Chuck Miller Aug 14 2009 3:15PM Security
WordPress issues new version, closes password flaw

WordPress issues new version, closes password flaw

WordPress, the popular blogging software platform, has been updated to fix a flaw that could have enabled a hacker to change an administrator password.
Chuck Miller Aug 13 2009 11:27AM Security
Apple patches Safari for fourth month in a row

Apple patches Safari for fourth month in a row

The release of Safari 4.0.3 -- the fifth browser update of the year from Apple -- fixes six vulnerabilities.
Dan Kaplan Aug 13 2009 11:17AM Security
eBay mandates developer password change

eBay mandates developer password change

The giant web marketplace site eBay has warned developers of a security vulnerability, and is compelling them to change their credentials immediately.
Chuck Miller Aug 12 2009 10:44AM Security
Microsoft lays out monthly patch plans

Microsoft lays out monthly patch plans

Microsoft is planning to issue at least nine security fixes this month.
Shaun Nichols Aug 7 2009 10:48AM Security
Researchers find large-scale XML library flaws

Researchers find large-scale XML library flaws

Sun Microsystems, Apache and Python vulnerable.
Iain Thomson Aug 6 2009 11:07AM Security
SSL flaw fixing shows industry can work together

SSL flaw fixing shows industry can work together

Hackers and corporates co-operate.
Iain Thomson Aug 6 2009 7:02AM Security
Mozilla posts Firefox security updates

Mozilla posts Firefox security updates

Users advised to patch newly-discovered flaws.
Shaun Nichols Aug 4 2009 11:00AM Security
Adobe updates Flash Player for 10 vulnerabilities

Adobe updates Flash Player for 10 vulnerabilities

Adobe has issued a security update for Flash Player and AIR to address a number of critical vulnerabilities which could potentially allow an attacker to take control of the affected system.
Angela Moscaritolo Jul 31 2009 11:05AM Security
Adobe flaw was known about for seven months

Adobe flaw was known about for seven months

Embarassment for Adobe's security response team.
Phil Muncaster Jul 27 2009 10:28AM Security

Log In

  |  Forgot your password?