Previous
Oracle releases critical patch update
News Database software vendor Oracle has released a collection of patches for multiple security vulnerabilities. Several vulnerabilities addressed in the Critical Patch Update affect multiple products, said Oracle.
[July 18, 2007, 16:48]
Cisco patches Wi-Fi vulnerabilities
News In an advisory published on Thursday, Cisco warned that its Wireless Control System (WCS) contains multiple vulnerabilities that can result in information disclosure, privilege escalation and unauthorised access to the network.
[April 13, 2007, 14:37]
Microsoft get back to baseline on security
News The company has recently made the Microsoft Baseline Security Analyser (MBSA) available, a tool that checks for multiple vulnerabilities on Windows 2000 and XP machines. It also adds extra features -- it checks machines for weak or non-expiring...
[May 9, 2002, 16:39]
Microsoft's five critical security bulletins for July
News Microsoft Security Bulletin MS06-037, "Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution", addresses multiple Excel vulnerabilities that can allow remote code execution. Microsoft Security Bulletin MS06-039, "Vulnerabilities in...
[July 24, 2006, 13:30]
Bringing law to the security jungle
News It would allow an organisation to compare vulnerabilities from multiple vendors, on multiple platforms and potentially affecting different parts of an organization, and have a common metric for assessing the risk," he said.
[September 19, 2005, 9:10]
Microsoft issues Patch Tuesday DNS fix
News Microsoft claims its security update addresses the vulnerabilities by using "strongly random" DNS transaction IDs, using random sockets for UDP queries, and updating the logic used to manage the DNS cache.
[July 9, 2008, 13:28]
Novell issues critical SuSE patches
News The patches are designed to address vulnerabilities that can be exploited for cross-site scripting attacks, remote system access, exposure of sensitive information, spoofing and denial-of-service attacks, according to the report from security...
[February 8, 2005, 15:00]
TCP flaws may lead to DoS attacks, say researchers
News Hansen said these vulnerabilities, as he understands them, if exploited, have the potential to result in great damage. He added that fixing the vulnerabilities will require co-ordination with vendors of operating systems, firewalls and web-enabled...
[October 3, 2008, 8:55]
Netscape parades security features
News However, several high-profile security vulnerabilities in IE have led others, including Netscape and Firefox distributor the Mozilla Foundation, to make security the number one selling point for their browsers.
[May 19, 2005, 9:30]
Uncrackable web server?
News Because of the complexity of existing operating systems, ferreting out all of the vulnerabilities and bugs that open the systems to attack presents a huge -- almost insurmountable -- obstacle. It sounds like a Dilbertesque approach to securing a...
[July 28, 2002, 19:52]
Cisco releases IOS update bundle
News The bundle of security advisories, released on Wednesday, is concerned mainly with mitigating possible denial-of-service conditions caused by successful exploitation of TCP, UDP, Mobile IP and VPN vulnerabilities.
[March 26, 2009, 12:36]
Cisco Security Advisory: Cisco IOS Secure Shell Denial of Service Vulnerabilities
White Papers The Secure Shell server (SSH) implementation in Cisco IOS contains multiple vulnerabilities that allow unauthenticated users the ability to generate a spurious memory access error or, in certain cases, reload the device.
[June 12, 2008, 1:01]
F-Secure warns of archive protocol danger
News Security vendor F-Secure has warned of multiple critical vulnerabilities in its own and other vendors' products. The vulnerabilities exist in the way the products respond to malformed archive files, and were discovered by researchers at the...
[March 19, 2008, 13:07]
VMware patches multiple holes
News VMware has released a security advisory alerting businesses to multiple vulnerabilities in its server and workstation virtualisation software. The US Computer Emergency Response Team issued a warning on Tuesday that these vulnerabilities may allow...
[September 3, 2008, 16:51]
Oracle to push out 51 patches
News Some of the vulnerabilities addressed in the critical patch update affect multiple products. The patches include fixes for 27 vulnerabilities in Oracle Database, five of which may be exploited remotely without authentication.
[October 15, 2007, 13:10]
Cisco IOS FTP Server warning
Blog One from last week here, but Cisco is warning users of its IOS FTP Server feature about "multiple vulnerabilities", which could lead to denial-of-service attacks and other such nasties. What to do about it?
[May 15, 2007, 12:49]
Internet Explorer 5.5 Certificate Spoofing Vulnerability Patch
Downloads Download now to eliminate multiple certificate validation vulnerabilities and to prevent malicious Web site operators from making it appear that the content from their Web site actually originated from another site, even a trusted or secure Web site.
[June 30, 2001, 7:40]
Researchers warn of XML library flaws
News According to Cert-FI, the vulnerabilities are related to the parsing of XML elements with unexpected byte values and recursive parentheses, which cause the program to access memory out of bounds, or to loop indefinitely.
[August 6, 2009, 13:06]
Dynamic Situational Awareness: GeoWireless Solutions
White Papers Securing our borders and infrastructures from potential threats and vulnerabilities requires a coordinated response between multiple government agencies and first responders. Dynamically updating and quickly disseminating information about the...
[September 1, 2005, 3:00]
Network Warrior: VLANs
White Papers Assuming no vulnerabilities exist in the switch's operating system, there is no way for a frame that originates on one VLAN to make its way to another. VLANs enabled a single switch to serve multiple LANs.
[October 24, 2007, 1:00]
