Previous
Microsoft warns of Windows 2000 security hole
News This is just the latest security flaw to affect Microsoft. The flaw with the Windows 2000 Event Viewer -- which logs details of activity on a Windows 2000 system -- could allow an ordinary user to carry out privileged system commands, Microsoft has...
[February 28, 2001, 11:38]
'Code Red' worm claims 12,000 servers
News Almost 12,000 Web servers have been infected by a new Internet worm that takes advantage of a security flaw in Microsoft software to deface sites, security experts said on Wednesday. Until all these people go out and patch their systems, it will...
[July 19, 2001, 9:56]
Oracle accidentally exposes database security hole
News Oracle accidentally let slip details last week on a security flaw it has yet to patch. But on April 6, it itself published a note on its MetaLink customer Web site with details about an unfixed flaw, Alexander Kornbrust, an independent researcher...
[April 12, 2006, 9:35]
Dasher worm threatens Windows users
News The Dasher.B worm exploits a flaw in Microsoft Windows Distributed Transaction Coordinator, or MDTC, security companies said on Friday. Dasher.B is a network worm that has the potential to open a back door on computers with the MSDTC flaw, security...
[December 19, 2005, 9:45]
Symantec patches antivirus worm hole
News Symantec over the weekend delivered fixes for a high-profile flaw in its corporate antivirus products that could be exploited in an Internet worm attack. However, because there are no known attacks that exploit the flaw, the need to patch is not...
[May 31, 2006, 8:35]
NISCC warns on Cisco IP phone flaw
News The flaw, which opens the IP phone service up to DoS attacks, was reported by the National Infrastructure Security Co-ordination Centre, the Government's cybersecurity group, in its warning, it gave the DNS protocol vulnerability, which also...
[May 25, 2005, 10:10]
Microsoft cursor flaw may affect Firefox users
News The animated cursor vulnerability in Windows could also affect those using Firefox on Windows machines, according to one of the security researchers who discovered the flaw. Alexander Sotirov, a researcher for security company Determina, said in an...
[April 4, 2007, 14:02]
Windows Update flaw 'left PCs open' to MSBlast
News A flaw in Windows Update -- Microsoft's online tool that lets customers update their operating system with patches and fixes -- enabled the MSBlast worm to infect computers that apeared to have already been patched, according to a security expert.
[August 15, 2003, 14:40]
Attack code released for Kaminsky DNS flaw
News Attack code has been released for a DNS flaw discovered by security researcher Dan Kaminsky. Security vendor Websense said the flaw and published exploit code amounted to a "significant event". This exploit targets a fairly ubiquitous flaw in DNS...
[July 24, 2008, 15:39]
Microsoft alerts Passport users to need for patch
News Microsoft is pressing .Net Passport users to install a patch for some versions of its browser nearly two months after it fixed a security flaw that threatens customers' personal data online. In November, Microsoft warned that the flaw could expose...
[January 4, 2002, 11:54]
Did MS bug alarm go off too early?
News Thoughts on disclosure range between two extremes: those who believe that every detail of a potential security threat should be publicised as soon as possible, and others who believe that no details of any security flaw should ever be published.
[February 15, 2002, 9:05]
Yahoo corrects email flaw
News The security flaw, discovered by eEye Digital Security's Drew Copley, allowed attackers to by-pass the Web-mail system's Javascript filters. Speaking to ZDNet UK sister site ZDNet Australia by phone from the US, Copley said it would be possible to...
[April 22, 2004, 8:55]
BlackBerry PDF flaw threatens corporate networks
News RIM is warning businesses to disable the function that allows a BlackBerry to read PDF files until an update can be issued, after a security flaw was found in the company's software. According to Sense of Security's principal consultant, Jason...
[July 16, 2008, 16:16]
OpenSSH patches second specialised flaw
News However, as with a flaw found last week, the current vulnerability affects only versions of OpenSSH that have a security technology known as privilege separation turned off. The flaw appears in an open-source implementation of the Pluggable...
[September 24, 2003, 15:25]
Increase in Windows attacks reported
News The SANS Internet Storm Center, Symantec, McAfee and several other security companies are warning of a new worm that wriggles into Windows PCs by way of a security flaw for which Microsoft issued a patch with security bulletin MS06-040 on 8 August.
[September 1, 2006, 9:05]
Cahoot bank accounts in security scare
News Internet bank Cahoot, owned by Abbey, has been exposed for a flaw in its online security which enabled users to move freely in and out of other customers' accounts. However, a spokeswoman for Abbey told ZDNet UK sister site silicon.com this morning...
[November 5, 2004, 13:58]
IE flaw danger increases as exploit code released
News The threat posed by a critical flaw in Internet Explorer has been ratcheted up by the release of a program designed to exploit the vulnerability, security researchers warned on Thursday. Security information provider Secunia raised the buffer...
[November 5, 2004, 7:23]
'Critical' Windows fix rushed out
News Security experts had pushed Microsoft to rush out a fix for the VML flaw. The company is breaking with its monthly patch cycle to fix a flaw that cybercrooks have been using to attack Windows PCs via Internet Explorer.
[September 27, 2006, 10:05]
ISS reveals cross-platform antivirus flaw
News Internet Security Systems has found a flaw in Trend Micro's virus-scanning software -- the third time this month that the security company has picked a hole in an antivirus product. ISS dealt with a flaw in its own security products nearly a year ago.
[February 25, 2005, 8:55]
Mozilla: Vendors still at mercy of bug hunters
News Software makers are at the mercy of bug hunters when it comes to flaw disclosure, Mozilla's security chief said on Saturday. Instead of disclosing a flaw to the vendor, Aitel wants bug hunters to sell vulnerability information to him.
[March 26, 2007, 9:19]
