Previous
Attacker Attempts To Plant Trojan In Linux
News An intruder apparently compromised one server earlier, and the attacker used his access to make a small change to one of the source code files, McVoy said. A critical security flaw was found in CVS in January, but it's unknown whether the attacker...
[November 7, 2003, 7:39]
Rootkit: Attacker Undercover Tools
White Papers Today, hacker, attacker and intruder are common problem in security threat. Lots of vulnerability discover and publish, make it easier for them to develop new technique and method of hacking. The vulnerability that was purposely publishing for...
[January 1, 1970, 0:59]
Debian Attacker May Have Used New Exploit
News Initial investigations of the security breach, which occurred on 19 November, indicate that the attacker was able to gain full control of Debian servers after logging on via unprivileged accounts, known as privilege escalation, according to James...
[November 28, 2003, 14:05]
Debian Attacker May Have Used New Exploit
Talkback > The exploit was carried out on Debian software running on Intel-based hardware, while a system using Sun hardware was not affected, leading some to guess that Sun software is not affected by the possible exploit.
[December 2, 2003, 12:28]
IE Zero Day And Web Attacker Kit: A Special Report
White Papers How can a user maintain computer security when bad guys sell anyone attack kits online that exploit the very latest vulnerabilities in Microsoft software?
[January 1, 1970, 0:59]
Alleged CastleCops Attacker Charged
News A man has been arrested and charged with launching denial-of-service attacks against two organisations, one of which was voluntary security community CastleCops. Greg King was arrested on Monday morning following an extensive investigation by the...
[October 4, 2007, 17:39]
White Paper For A Strategic Cyber Defense Concept: Deterrence Through Attacker Identification
White Papers Strategic Cyber Defense is a complex and broad-ranging concept. Yet, despite this complexity, we can make some progress in developing our understanding by focusing on a few key elements of any good defensive strategy.
[January 1, 1970, 0:59]
Military Secrets Escape Through PDF File
Talkback "However, by an attacker selecting the blacked-out text and using the copy and paste function" An attacker? Cutting and pasting constitutes an attack? That's the dumbest thing I've heard. I notice the original article in ZDNet Australia doesn't...
[May 5, 2005, 15:00]
FrontPage Flaw Puts Servers In Jeopardy
News Microsoft warned Web site administrators on Wednesday that a flaw in its FrontPage extensions could allow an attacker to take control of their servers or cause the computers to seize up. For FrontPage Server Extensions 2002, the flaw could result...
[September 26, 2002, 7:43]
Trojan Exploiting Unpatched Office Flaw Found In The Wild
News A new Trojan horse exploits an unpatched flaw in Microsoft Office and could let an attacker commandeer vulnerable computers, security experts have warned. When run on a vulnerable system, it would give a remote attacker full access to a compromised...
[October 3, 2005, 8:55]
IE Cookie Exploit #2, Revision: 1.6
White Papers If an attacker can steal a user's cookies, then they can impersonate that user. The completeness of the impersonation and the actions the attacker can perform as that user depend on how the particular site uses the cookies.
[January 1, 1970, 0:59]
Kaspersky Flaw 'opens Back Door'
News A "critical" flaw in Kaspersky Lab's antivirus software could let an attacker commandeer systems that use the products, a security researcher warned on Monday. A remote attacker could exploit the heap overflow flaw by sending a malformed CAB file...
[October 4, 2005, 9:55]
Microsoft Visual Basic For Applications Update - Q822150
Downloads An identified security issue in Microsoft Visual Basic for Applications could allow an attacker to compromise a Microsoft Windows-based system and then take a variety of actions. For example, an attacker could read files on your computer or run...
[September 7, 2007, 9:27]
Distributed Denial Of Service Attacks (DDOS)
White Papers A distributed denial of service attack (DDOS) is one in which an attacker first compromises a number of hosts, and installs a daemon on those hosts. At a later point, the attacker sends a request to the daemon on the compromised hosts asking it to...
[January 1, 1970, 0:59]
ISA Server 2000 - Vulnerability In H.323 Filter Can Cause Remote Code Execution (816458)
Downloads A critical security vulnerability exists in the H.323 filter for Microsoft ISA Server 2000 that could allow an attacker to overflow a buffer on the Microsoft Firewall Service in Microsoft ISA Server 2000.
[September 14, 2007, 7:38]
Windows Wi-Fi Attack Discovered
Talkback But, there is still the problem where the attacker actually fakes the accesspoint, i.e : The attacker pretends to be your accesspoint, if he succedes with that the hacker can do a "man-in-the-middle" attack on all the victims internet...
[January 17, 2006, 14:41]
Detecting Tampering With Audit Trails
White Papers In a general sense, if an attacker gains unlimited access to a system, if audit trails are not protected by write-only or write-once technology, and if no physical means are used of effective in determining the authenticity of audit trails, it is...
[January 1, 1970, 0:59]
Vulnerability In Microsoft Internet Security And Acceleration (ISA) Server 2000 Could Allow Internet Content Spoofing (888258)
Downloads A spoofing vulnerability exists in ISA Server 2000 that could enable an attacker to spoof trusted Internet content. This vulnerability could enable an attacker to spoof trusted Internet content. However, an attacker would first have to persuade a...
[September 13, 2007, 14:41]
Microsoft Office 2004 For Mac 11.3.4 Update
Downloads This update contains several improvements to enhance security and stability, including fixes for vulnerabilities that an attacker can use to overwrite the contents of your computer's memory with malicious code.
[September 19, 2007, 9:17]
Vulnerability In Microsoft Proxy Server 2.0 Could Allow Internet Content Spoofing (888258)
Downloads Vulnerability could enable an attacker to spoof trusted Internet content. However, an attacker would first have to persuade a user to visit the attackers site to attempt to exploit this vulnerability.
[September 13, 2007, 14:32]
