Previous
New Hotmail hole discovered
News Is this a purely theoretical hole or one that can only be used by crackers to attack users? The latest Hotmail hole opens up because Hotmail doesn't handle the new HTML tag "STYLE. Guninski, who has made a name for himself by finding security...
[September 14, 1999, 9:06]
Secure apps to stop network attacks
News Furthermore, if the application does have a security hole and is running under the service account, then anyone who exploits that hole will have service account privileges. By staying up to date, they could avoid a lot of security problems.
[February 27, 2003, 10:47]
Microsoft server bugs open the door to hackers
News Anyone who could connect to the telnet service could attempt to exploit the hole. The Telnet hole could allow hackers to launch a denial-of-service attack or execute code on the target system. In August, Microsoft patched a hole in Hotmail that...
[February 11, 2002, 13:48]
DirectX holes to be plugged next week
News On Monday, Microsoft warned of attacks being launched that exploit a hole in the Video ActiveX Control when used in Internet Explorer for recording and playing video in DirectShow. Microsoft offered a workaround on Monday for that hole, which...
[July 10, 2009, 12:16]
Researchers take control of iPhone via SMS
News An attacker could exploit the hole to make calls, steal data, send text messages, and do more or less anything a person can do on their iPhone, researchers Charlie Miller and Collin Mulliner told ZDNet UK's sister site CNET News.com at the Black...
[July 30, 2009, 11:11]
Microsoft confronts security fears
News The company had to offer several different patches for a hole in its Exchange email server after initial repairs crippled the servers they were applied to. An earlier hole in IIS was quickly exploited by online vandals.
[October 4, 2001, 8:59]
Flaw leaves work PCs and Internet cafes open
News The fact that this type of hole is present in many applications, including parts of windows itself, makes the problem much more serious. On Wednesday, Microsoft corrected another instance of the vulnerability when it closed a hole in the Utility...
[July 14, 2003, 7:36]
'Code Red': So long, for now
News The large number of machines infected by the worm has some security experts suggesting that a program should be created to close the hole automatically. Others suggested another alternative: an automated program that -- when attacked by a server...
[July 23, 2001, 8:43]
Apple patches multiple iPhone, QuickTime flaws
News The memory corruption hole means that if a user visits a malicious website, a hacker could force applications to close, or take control of the device.iPhone users are also in danger from phishing attacks, Apple warned, as the WebKit engine has a...
[September 10, 2009, 13:43]
Apple readies patch for iPhone SMS flaw
News He plans to give a more detailed presentation on the hole at the Black Hat conference in Las Vegas at the end of the month. Despite the SMS hole, which "could be a critical vulnerability", the iPhone is more secure than OS X on computers, Miller said.
[July 3, 2009, 8:36]
Home secretary defends high-street biometrics plans
News If they do] they will have to answer how they will fill the black hole not only left by ID cards but biometric passports. There will be no 'black hole' left anywhere. They would have to answer why they have taken away security and convenience from...
[November 7, 2008, 16:34]
Microsoft patches vulnerable PowerPoint hole
News However, the hole had already formed the basis of targeted attacks, prompting Microsoft to issue a warning last month. Although Microsoft says the hole is now patched in the Windows version of PowerPoint, the software maker said it is still working...
[May 13, 2009, 10:29]
Microsoft leaves Word flaws unpatched
News The tenth hole is in Windows and is similar to a bug Microsoft rushed out a fix for in September after Windows users came under attack. Like the first VML hole, this vulnerability can be exploited by tricking a user into viewing a malicious VML...
[January 10, 2007, 8:52]
I can't help it if my code's read, says researcher
News The real risk is in notifying software vendors that a hole has been discovered in their software, Litchfield argued. Had NGS Software kept the hole to themselves.it could have been that no one would have ever known (it existed).
[February 5, 2003, 15:45]
A Year Ago: Use Hotmail? Read this now!
News The problem wasn't a small hole that only a technically adept hacker could exploit. With this hole anyone with access to a short HTML script, already widely circulated, could open Hotmail accounts. In potentially one of the largest security email...
[August 30, 2000, 7:09]
'Code Red' worm claims 12,000 servers
News The worm spreads by selecting 100 IP addresses, scanning the computers associated with them for the hole, and spreading to the vulnerable machines. Microsoft urged people to patch the hole before the Internet underground could produce tools to take...
[July 19, 2001, 9:56]
Fortnight worm redirects to porn sites
News Increased infections from versions of the Fortnight JavaScript worm, which exploits a hole in Microsoft VM Active X, are being reported by some antivirus vendors. Graham Cluley, senior technical consultant at Sophos, told silicon.com that although...
[June 23, 2003, 10:55]
Hackers may be snooping on you - Broadband scare
News The most worrisome part of the flaw on Microsoft Windows is that the operating system continues to be vulnerable even when the user believes they have closed the hole. In a move long considered controversial, L0pht has decided to release the source...
[August 12, 1999, 11:43]
EarthLink flaw exposes domains
News While such a vulnerability could be irritating, a second hole made it more serious. A student, who asked to be identified by his online handle "The-Rev," found the hole in MindSpring servers on Oct.a day after the flaw was made public.
[October 18, 2000, 7:46]
Code Red: Alive again and kicking
News While Microsoft quickly released a widely distributed patch for the IIS hole, it's unclear how many system administrators have downloaded and installed the fix. As originally reported by CNET News.com, the Code Red worm takes advantage of a hole in...
[August 2, 2001, 9:03]
