Previous
Flaw threatens SME security devices
News A flaw affecting eight vendors' Universal Threat Management security appliances was identified by US-based security firm Calyptix last week. One of the affected devices is Check Point's Safe@Office, which on Friday was the only vendor to have...
[July 2, 2007, 17:39]
Flaw harbours Slammer potential
News A research company warned on Tuesday that an attacker could use a recently patched Microsoft flaw to create a fast-moving worm similar to SQL Slammer, which spread rapidly across the Internet a year ago.
[December 10, 2003, 7:30]
Flaw threatens major worm attack
News A hacker group has released code designed to exploit a widespread Windows flaw, paving the way for a major worm attack, security researchers warned. In June 2001, his company released details of another Microsoft flaw, in a component of Web server...
[July 28, 2003, 8:55]
Flaw discovered in Symantec firewall
News Researchers have discovered a flaw in Symantec's Raptor firewall that could allow attackers to hijack legitimate communications with a protected system. A weakness in the generation of these ISNs could allow a remote attacker to easily predict...
[August 6, 2002, 11:48]
Flaw threatens source of open source
News It doesn't get much more critical than allowing an attacker to modify source code and secretly plant Trojans, backdoors, and other rogue code -- and those are the kind of activities that can result from this flaw.
[February 10, 2003, 12:52]
Flaw exposes Chrome, Firefox to clickjacking
News Security researchers have discovered a flaw affecting Google's Chrome browser that exposes it to clickjacking — where an attacker hijacks a browser's functions by substituting a legitimate link with a link of the attacker's choice.
[January 29, 2009, 7:43]
Flaw detected in Check Point security
News Two of the most popular pieces of security software on the Internet contain a newly discovered flaw that could enable an intruder to send traffic through a firewall or possibly launch a denial-of-service attack.
[July 11, 2001, 11:07]
Flaw found in power-plant software
News The flaw in the Wonderware SuiteLink Service, as reported by security researcher Sebastian Muniz from Core Security Technologies, means unauthenticated client programs connecting to the SuiteLink Service prior to version 2.0 patch 1 can send a...
[May 19, 2008, 13:27]
Flaw found in MS security patch
News A flaw in a software tool just released by Microsoft could lead software developers to inadvertently write programs that are vulnerable to attack, according to security specialists who discovered the flaw.
[February 14, 2002, 14:04]
Flaw reported in updated Firefox
News A potential flaw has been reported in the latest version of Mozilla's Firefox web browser, version 2.0.0.12. Vulnerability researcher Ronald van den Heetkamp published a directory traversal flaw in Firefox version 2.0.0.12 on Friday, hours after...
[February 11, 2008, 11:48]
Flaw found in Sony DRM patch
News Sony BMG is replacing a patch for its CD copy-restriction software after Princeton University researchers found a security flaw in the update. Along with the Electronic Frontier Foundation, a digital rights group, the record label released a patch...
[December 9, 2005, 8:05]
Flaw lets malicious Web pages attack Windows
News The flaw in the scripting component of the operating system lets attackers run code through the scripting engine as if the program had been executed locally on a PC, allowing them to run their own programs or to take over the system.
[March 20, 2003, 8:21]
Microsoft fixes Exchange flaw
News Microsoft published a patch on Tuesday for its Exchange 5.5 email and collaboration server software, fixing a flaw graded as "moderate," the second-lowest of four ratings. The flaw also allows the malicious programmer to place spoofed content, such...
[August 11, 2004, 9:40]
Exploit code aimed at new IE flaw
News Computer code that could be used to hijack Windows PCs via a yet-to-be-patched Internet Explorer flaw has been posted on the Net, experts have warned. The flaw is due to an error in an ActiveX control related to multimedia features and could be...
[September 15, 2006, 9:30]
Gmail flaw fixed?
Blog It is still uncertain how serious a javascript flaw in Gmail is, and whether it has been fixed completely. The flaw allows spammers to harvest contact details from a user's account by launching a cross-site scripting attack.
[January 2, 2007, 14:46]
Worm wriggles through Yahoo mail flaw
News A new worm that targets Yahoo email users is on the loose, taking advantage of an JavaScript flaw, a security company has warned. But by later on Monday, Yahoo said it had come up with a fix for the flaw, which it said had affected very few of its...
[June 13, 2006, 9:25]
DB2 flaw leaves database defenceless
News A security flaw in Linux editions of IBM's DB2 database could allow unauthorised users to seize control of a database's contents, Big Blue has revealed. The flaw was uncovered by Boston security company Core Security Technologies, which alerted IBM.
[September 18, 2003, 8:55]
Second zero-day Excel flaw emerges
News Sample computer code that exploits the flaw is publicly available on the Net. Microsoft is not aware of any attacks that exploit this flaw, he added. That flaw, disclosed late last week, could give an attacker full control over a vulnerable PC and...
[June 21, 2006, 10:15]
Microsoft to fix zero-day XML flaw
News The vulnerability is a so-called zero-day flaw that's already being exploited for attacks. Additionally, the company appears to have no patch ready for a flaw in Visual Studio 2005, which is also already being used in attacks.
[November 10, 2006, 8:51]
Windows Update flaw 'left PCs open' to MSBlast
Talkback The solution offered to correct this alleged flaw points to another MS product. I ran the program and it found several issues with this XP based PC. Guess what the solution was? Yep visit the Windows Update site.
[August 15, 2003, 18:00]
