Previous
New Outlook Bug Can Sting With Spam
News The only defence against the vulnerability is installing the Microsoft patch, which will be available shortly on the Microsoft.com security Web site. The vulnerability in Microsoft's Outlook email program has widespread implications: Until now...
[July 19, 2000, 9:05]
Cursor Flaw Throws Doubt On Vista Security
News The SDL was never meant to catch every single vulnerability, period. Still, Microsoft's Vista security promise doesn't fall apart because of this single vulnerability. In the case of the cursor vulnerability, even though something may look similar...
[April 4, 2007, 16:27]
New Security Hole Found In MS Word
News Microsoft is readying a security update for Word that repairs this vulnerability, a company representative said in an emailed statement. When the document is opened by the user the vulnerability is triggered.
[May 22, 2006, 9:45]
Cisco Flaw Presentation Spreads Across The Web
News Security expert Richard Forno, founder of the infowarrior.org Web site, said that Cisco's "heavy-handed tactics" have helped publicise the vulnerability. This is because an individual vulnerability could be exploited, on each network device, to...
[August 1, 2005, 16:00]
Cisco Squashes One Bug
News As reported earlier by ZDNet UK sister site CNET News.com, the vulnerability found in TCP -- the Transmission Control Protocol -- allows for what's known as a reset attack. The vulnerability, which was introduced through a previous version of a...
[April 22, 2004, 8:40]
Oracle Moves To Monthly Patches
News The most important aspect here is that information technology groups can schedule updates and rollouts and you don't have a surprise patch-of-the-day," said Gerhard Eschelbeck, chief technology officer of vulnerability assessment firm Qualys.
[August 20, 2004, 9:10]
MS Passport Reveals Credit Card Details
News The simplicity of the attack and the high value of the data frequently stored in Passport accounts combined to make the vulnerability critical. It is hardly an exploit or even vulnerability; it's just a flaw, in their Web-application logic," the...
[May 8, 2003, 9:09]
Vital Intrusion Detection
News Intrusion detection is vital because it is impossible to keep pace with every threat and vulnerability in a network, yet 60 percent of respondents to a recent NetAdmin poll said they have yet to implement one.
[May 15, 2002, 14:49]
Threat From TCP Hole 'small' - Researcher
News Although large Internet service providers are vulnerable "to a very low degree," large and medium-sized businesses should make sure they have assessed their vulnerability to the issue, said Sean Hernan, senior member of the technical staff for US...
[April 22, 2004, 9:05]
Excite@Home IP Flaw Exposed
News Excite@Home -- an Internet service run in Australia by Cable & Wireless Optus -- has warned it will take action against anybody who attempts utilise an IP vulnerability that allows a single user to block up to 127 IP addresses, effectively...
[August 4, 2000, 9:50]
Streamlining Global Security On Multiple Platforms From A Single Console With BindView Technology From Symantec
White Papers The company needed to integrate the networks and simplify their security administration and compliance reporting and turned to BindView Vulnerability Management solutions from Symantec for help. Now from a single console, the BindView solution...
[August 29, 2006, 0:00]
Vulnerability Management: Protect Your Assets With The New ETrust Vulnerability Manager R8
White Papers eTrust Vulnerability Manager r8 is an innovative solution that allows organizations to understand their security risks and automatically patch or configure their systems to remediate vulnerabilities. It's the first solution to deliver complete...
[April 30, 2008, 1:22]
Barca
Downloads The e-mail capabilities of Barca have built-in Bayesian spam filters, protect users from viruses and spam, and are not susceptible to the virus vulnerability of Outlook and Outlook Express. Aimed at the professional and small-business market, Barca...
[July 20, 2006, 11:31]
Secure Auditor
Downloads Secure Auditor Version performs audit on Oracle, MSSQL, Windows and Cisco Routers, presents vulnerability specification, prioritizes risk levels, and provides step by step methods of mitigation.Version 2.0.1251 may include unspecified updates...
[August 4, 2008, 12:46]
Manipulating Microsoft SQL Server Using SQL Injection
White Papers This may lead them to believe that they cannot be compromised by this vulnerability. However, in large and complex applications, a single oversight can result in the compromise of the entire system. Web applications are becoming more secure because...
[May 11, 2004, 1:03]
Vista Receives More Security Updates
Blog The Vista update is perhaps not "critical" as it was a single "privately reported vulnerability" about potential Denial of Service problem rather than something that was in active use by hackers or easy to carry out.
[October 11, 2007, 9:38]
IE Flaw Introduces New Form Of Infection
News An independent researcher warned that an Internet Explorer vulnerability could turn drag-and-drop into drag-and-infect, even on computers updated with Microsoft's latest security patch. Secunia rated the flaw as "highly critical," its second...
[August 23, 2004, 8:15]
Open-source Flaw Database Opens Its Doors
News The Open Source Vulnerability Database (OSVDB) has launched a free Web site that catalogues security flaws in Internet-related software. It will, say its creators, promote more open collaboration between companies and individuals "and reduce...
[April 2, 2004, 14:00]
Flaw Leaves Work PCs And Internet Cafes Open
News Applications that run with system privileges but don't follow Microsoft's recommended security practices allow the vulnerability to be exploited. Because the vulnerability requires that a user on the system run the attack code, many people...
[July 14, 2003, 7:36]
Mozilla Fixes Another Firefox URI Flaw
News The update, Firefox 2.0.0.6, also patches a privilege escalation vulnerability. The second issue deals with a vulnerability that could enable privilege escalation attacks. The vulnerability involves add-ons that create "about:blank" windows.
[August 1, 2007, 11:00]
