Previous
Cyber Security - Growing Risk From Growing Vulnerability
White Papers Additional government support for research, development, and education in computer and network security would have a positive effect on the overall security of the Internet. Reported attacks against Internet systems are almost doubling each year...
[January 1, 1970, 0:59]
Microsoft Security Bulletin MS00-075: Patch Available For 'Microsoft VM ActiveX Component' Vulnerability
White Papers Microsoft has released a patch that eliminates a security vulnerability in Microsoft® virtual machine (Microsoft VM). This older alert is of new relevance because a new strain of the Seeker Trojan, JS/Seeker-E, reported January 3, 2002, takes...
[January 1, 1970, 0:59]
Dangerous Flaw In Lib CGI
News Symantec reported that its security team hadn't been notified of any official vendor patches to address the Lib CGI vulnerability. Symantec reported that "improper bounds checking" is the cause of a LibCGI vulnerability, and that the flaw could...
[December 17, 2002, 11:14]
Microsoft Denies Data Execution Problem
News Responding to a Russian security company's claim that it found a way to beat a protective element of Microsoft's Windows XP Service Pack 2, the software giant on Tuesday said it does not believe the issue represents a vulnerability.
[February 2, 2005, 8:50]
Microsoft's Gopher Hole Deepens
News This newly reported vulnerability is just one in a recent string of Microsoft security problems, despite increased emphasis on security following a companywide memo from chairman Bill Gates in January.
[June 13, 2002, 9:08]
'Highly Critical' Flaws Found In Safari For Windows
News He also reported a second vulnerability involving memory corruption, although Secunia has not yet established whether or not this flaw is exploitable. The one vulnerability is a classic spoofing vulnerability which will allow the attacker to make...
[March 26, 2008, 12:11]
Trillian Flaw Highlights IM Security Threat
News Researchers have reported a vulnerability in the Trillian instant-messaging application, adding to the rapid development of IM-related security threats. However, LogicLibrary said the issue springs from a vulnerability it first found and reported...
[March 29, 2005, 16:55]
Trojan Exploiting Unpatched Office Flaw Found In The Wild
News Microsoft is aware that a Trojan recently released into the wild may be exploiting a publicly reported vulnerability in Microsoft Office," a company representative said in a statement sent via email on Friday.
[October 3, 2005, 8:55]
Library Flaw Puts Applications At Risk
News The security vulnerability may affect many applications, but the potential impact is not simple to calculate, said Michael Sutton, a lab director at security company iDefense. Last year, a denial-of-service vulnerability was reported in the...
[July 8, 2005, 9:15]
ActiveX 'feature' Puts Office At Risk
News The vulnerability was reported by researcher Debasis Mohanty. The issue relates to the ability to load ActiveX controls in an Office document and is not a vulnerability but an Office feature, a Microsoft representative said.
[June 23, 2006, 8:55]
Internet Explorer Patch Is Flawed
News The vulnerability could let miscreants hijack a Windows PC running IE 6 with Service Pack 1 and the MS06-042 update installed, Microsoft said in a security advisory published on Tuesday. We are not aware of attacks that try to use the reported...
[August 23, 2006, 8:45]
Microsoft Claims IE7 Launch Success
News There is a vulnerability, but in Outlook Express, not IE, Christopher Budd, a Microsoft security response representative, wrote on a corporate Microsoft blog on Thursday. Aside from the vulnerability report, there was another security alarm.
[October 20, 2006, 9:10]
IE And Outlook Flaws Reported
News The vulnerability is only the latest IE security flaw researchers have discovered since Microsoft released a cumulative update for the browser last month, Puterbaugh said. While eEye has provided Microsoft details on the vulnerability it found, the...
[September 7, 2005, 8:00]
Secunia: More Red Hat Flaws Than Microsoft In 2007
News Secunia said that while Red Hat had more reported vulnerabilities than Windows, it was not possible to compare its relative security with Microsoft products, or comment on the relative security of open-source versus proprietary products based on...
[January 16, 2008, 12:06]
New IE Overflow Exploit Published
News The vulnerability has been confirmed on a fully patched PC running IE 6 and Windows XP with Service Pack 2, the security monitoring company said. At this time, we are not aware of any attacks attempting to use the reported vulnerability," the...
[March 21, 2006, 9:05]
Hotmail Vulnerability Exposed
News ZDNet's sister site BugNet has validated a security vulnerability that could allow a malicious user to gain access to your Hotmail account. Alp Sinan, owner of Pronet, a security consulting company, was able to apply the "Unauthorised Cookie Access...
[September 4, 2000, 9:35]
Cisco Sounds Multiple Security Warnings
News Cisco issued a software patch for the vulnerability when it was first reported. It reported that the Cisco ONS 15216 OADM contains a vulnerability in the handling of telnet sessions that can cause a denial-of-service condition.
[July 15, 2005, 9:40]
Trojans Target Unpatched IE Flaw
News Two exploits that use the recently disclosed vulnerability were reported by antivirus company Sophos on Friday. The unpatched Internet Explorer vulnerability was first reported in May. The vulnerability was initially thought to only allow a denial...
[December 5, 2005, 14:05]
Secunia: CA Backup Product 'inherently Insecure'
News Some CA products containing antivirus components have "inherent code problems", according to vulnerability-testing company Secunia, which published its annual report on security vulnerabilities on Monday.
[January 16, 2008, 11:55]
Vista Receives More Security Updates
Blog The Vista update is perhaps not "critical" as it was a single "privately reported vulnerability" about potential Denial of Service problem rather than something that was in active use by hackers or easy to carry out.
[October 11, 2007, 9:38]
