Vulnerabilities Vulnerabilities

Continuous news on hardware and software vulnerabilities from proof of concept to zero day, the dangerous to the novel. Follow the patching topic to narrow your news to emerging fixes.

Microsoft to release 12 patches

Microsoft to release 12 patches

Microsoft plans 12 fixes - seven for "critical" bugs - in next week's monthly patch delivery.
Dan Kaplan Aug 8 2008 11:00AM Security
Attackers ramp up zero-day ActiveX exploits

Attackers ramp up zero-day ActiveX exploits

Roughly one month after Microsoft disclosed that attackers were exploiting a zero-day Active X vulnerability, the attacks are multiplying; but mostly in China.
Dan Kaplan Aug 5 2008 9:38AM Security
Mozilla warns of low-risk DoS vulnerability in Firefox 3

Mozilla warns of low-risk DoS vulnerability in Firefox 3

Mozilla is investigating a new, low-risk vulnerability in its recently released Firefox 3 web browser that could permit an attacker to crash a victim's browser.
Dan Kaplan Jul 31 2008 10:05AM Security
Blackberry advises blocking PDFs until flaw is fixed

Blackberry advises blocking PDFs until flaw is fixed

A major vulnerability in the BlackBerry Attachment Service could result in a takedown of the enterprise server that supports the popular mobile devices.
Dan Kaplan Jul 17 2008 10:13AM Security
Microsoft Patch Tuesday fixes nine vulnerabilities

Microsoft Patch Tuesday fixes nine vulnerabilities

In its Patch Tuesday update, Microsoft addressed nine vulnerabilities by releasing four security updates, none of which were deemed critical.
Chuck Miller Jul 9 2008 9:46AM Security
Microsoft investigates ActiveX public exploits

Microsoft investigates ActiveX public exploits

Microsoft has revealed that attackers are exploiting a zero-day ActiveX vulnerability in Microsoft Access.
Dan Kaplan Jul 8 2008 11:10AM Security
Security experts warn of IE6 flaw

Security experts warn of IE6 flaw

Security experts have warned of a new vulnerability in Microsoft's Internet Explorer 6.
Shaun Nichols Jun 30 2008 10:02AM Security
Microsoft recommends free tools to address SQL attacks

Microsoft recommends free tools to address SQL attacks

Microsoft is trying to stem the tide of poorly coded but legitimate websites falling prey to attacks.
Dan Kaplan Jun 25 2008 9:51AM Security
Coffee drinkers in peril after espresso overspill attack

Coffee drinkers in peril after espresso overspill attack

A geeky risk advisory manager from global accountancy firm BDO has hacked into a leading coffee machine, causing it to pour scalding water onto unsuspecting espresso lovers
Richard Thurston Jun 20 2008 10:56AM Security
Exploits target new Adobe Flash bug

Exploits target new Adobe Flash bug

Symantec on Tuesday revealed that the latest version of the Adobe Flash Player contains an unpatched vulnerability that is being actively exploited.
Dan Kaplan May 28 2008 10:01AM Security
Apple iCal vulnerability offers malware risk

Apple iCal vulnerability offers malware risk

Three vulnerabilities in Apple's iCal personal calendar application could enable remote attackers to install malicious code on victim's machines.
Dan Kaplan May 22 2008 9:56AM Security
Rare SCADA vulnerability discovered

Rare SCADA vulnerability discovered

Researchers have discovered a rare bug in a Windows-based control software package used by as many as one-third of the world's industrial plants.
Dan Kaplan May 9 2008 10:05AM Security
XSS vulnerability found in McAfee HackerSafe sites

XSS vulnerability found in McAfee HackerSafe sites

For the second time this year, a security researcher has found websites certified as McAfee HackerSafe that contain vulnerabilities.
Sue May 1 2008 10:36AM Security
Microsoft: IT vulnerabilities down, threats deadlier

Microsoft: IT vulnerabilities down, threats deadlier

IT threats are continuing to rise, although the number of disclosed vulnerabilities tailed off in the last six months of 2007, according to new research from Microsoft launched at today's Infosecurity Europe event.
Phil Muncaster Apr 23 2008 3:26PM Security
Oracle closes 41 vulnerabilities, 17 in its database

Oracle closes 41 vulnerabilities, 17 in its database

Oracle on Tuesday patched 41 vulnerabilities, including 17 impacting its flagship Oracle database product, in its April Critical Patch Update (CPU) round of security fixes.
Jim Carr Apr 17 2008 10:03AM Security
Two vulnerabilities found in Safari browser for Windows

Two vulnerabilities found in Safari browser for Windows

Apple's recently released Safari 3.1 browser for Windows not only contains two "highly critical" software vulnerabilities, it has come under fire for its poor functionality.
Jim Carr Apr 1 2008 9:33AM Security
The greatest vulnerability to come

The greatest vulnerability to come

Guard the greatest vulnerability point - gaps in data security - to avoid threats, says Raphael Leiteritz
Raphael Leiteritz Mar 31 2008 3:03PM Security
Pacemakers vulnerable to attack

Pacemakers vulnerable to attack

Heart patients beware: If you feel a sudden jolt to your chest, it may be that someone has hacked into your pacemaker, according to recent research that investigated security problems affecting pacemakers and implantable cardioverter defibrillators (ICDs).
Sue Marquette Mar 17 2008 10:02AM Security
Two vulnerabilities found in VMware virtualisation products

Two vulnerabilities found in VMware virtualisation products

Security researchers have uncovered a pair of vulnerabilities in VMware software, virtualisation technology used to run multiple versions of an operating system on a single computer. One flaw affects a server version of the software, the other is found in desktop software.
Jim Carr Feb 26 2008 10:16AM Security
Active exploits targeting social networking ActiveX flaw

Active exploits targeting social networking ActiveX flaw

Users who remain vulnerable to an ActiveX photo uploader vulnerability used on many websites are now being targeted in active attacks, researchers from Symantec said today.
Dan Kaplan Feb 26 2008 10:16AM Security

Log In

  |  Forgot your password?