Previous
Flaws found in BSD, Linux software updaters
News An attacker can replay the correctly signed packages or metadata from a previous release and your computer will install software with flaws that the attacker can exploit. The attacks work because of flaws in the system of secure signatures for...
[July 14, 2008, 17:08]
HP Software Update flaws threaten data leakage
News HP's Software Update tool has been found to contain flaws which can lead to remote code execution or the leakage of sensitive information stored on a PC. The offending component of the HP Software Update application is the HPeDiag ActiveX control...
[April 29, 2008, 10:20]
Browser flaws biggest software security risk
News The most common software flaws are now cross-site scripting (XSS) vulnerabilities, according to US Government organisation Mitre. XSS flaws have accounted for 21.5 percent of the vulnerabilities found in 2006 so far according to Mitre statistics.
[September 15, 2006, 18:00]
Browser flaws biggest software security risk
Talkback http://www.darkreading.com/document.asp? doc_id=104313 There ARE many XSS exploits on high profile sites as this article shows. It's just that us good guys are disclosing them. The problem isn't that there are many of them, but that they can be...
[September 22, 2006, 17:44]
Browser flaws biggest software security risk
Talkback Copy and paste the following line into your address bar. If it doesn't work, it may be fixed by then.http://www.zdnet.co.uk/search/? query=%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%27%3Balert%28String.fromCharCode%2888%2C83...
[September 22, 2006, 17:47]
CERT to disclose software flaws
News It may herald the end of a fight that has inflamed the security community for more than a decade: the Computer Emergency Response Team, or CERT, has endorsed a policy of open flaws in software that could affect security.
[October 9, 2000, 8:38]
Reporting software flaws safely
News Especially when we're talking about software where millions of users are potentially at risk. There's the case of Mike Lynn, who discovered some stuff a few years ago with Cisco; there were two researchers who discovered some vulnerabilities in the...
[June 8, 2007, 18:02]
Microsoft leaves its Wallet wide open
News Software flaws in the security of Microsoft's Passport authentication system left consumers' financial data wide open, causing the software giant to remove a key service from the Internet to protect people from having their data stolen, a company...
[November 5, 2001, 8:55]
Ubuntu creator wants to squash 'upstream' bugs
News The founder of the Ubuntu open-source operating system, Mark Shuttleworth, has called for Ubuntu developers to fix all software flaws found in the operating system, including, crucially, those in inherited source code.
[June 30, 2008, 16:20]
Group to set bug-reporting standards
News Microsoft and other software makers met with several computer-security companies Thursday to hash out the last details of a group that will set guidelines for reporting software flaws that affect Internet security.
[February 22, 2002, 10:56]
Flaws in common software threaten Net
News Software flaws in a fundamental language of the Internet have left the Information Age's basic infrastructure in danger of disruption, said an Internet security watchdog Tuesday. The security problems are caused by software flaws inadvertently...
[February 13, 2002, 8:40]
Patching 'still too difficult'
News Top security officers warned on Tuesday that patching software flaws is still far too difficult, with many companies left vulnerable because they are lagging behind on applying critical updates. The data and concerns spotlight a constant source of...
[February 25, 2004, 8:10]
Bugs bust open 'unbreakable' Oracle 9i
News A security researcher will detail a bevy of software flaws in Oracle's flagship database at the Black Hat Windows Security Briefings in New Orleans this week, busting up the company's promise that the program is "unbreakable.
[February 7, 2002, 10:21]
22 new Microsoft security holes revealed
News Microsoft published 10 new software security advisories on Tuesday, warning Windows users and corporate administrators of 22 new flaws that affect the company's products. Microsoft's highest severity rating for software flaws is its "critical...
[October 13, 2004, 8:55]
The eye of Oracle's security storm
News David Litchfield, managing director of UK security software firm Next-Generation Security Software, found himself in the eye of a media storm after he pointed out some security flaws in Oracle's core database software at the Black Hat Security...
[August 4, 2004, 14:55]
Fed-up customers want faster bug alerts
News Corporate customers are sick and tired of software flaws. A study of more than 300 companies published last week found that nearly 80 percent of companies support security consultants and hackers releasing information about software vulnerabilities...
[July 4, 2002, 7:35]
Wi-Fi attack on laptop demoed
News Flaws in the software that runs wireless-networking hardware could let an attacker break into a PC over Wi-Fi, security researchers warned Wednesday. According to a recent experiment by Intel flaws in driver software may be worrisome and a...
[August 3, 2006, 9:15]
RIM patches BlackBerry security flaw
News Research In Motion issued on Monday interim patches to address critical security flaws in BlackBerry software. The flaws affect BlackBerry Enterprise Server software version 4.1 Service Pack 3 through Service Pack 6.
[January 14, 2009, 8:25]
Libsafe guards against Linux hijackers
News The attacks can be quite difficult to guard against since they usually involve software flaws. However, Libsafe offers another way to deal with these dangerous flaws. Buffer overflows can also crash a program or even cause system instability due to...
[August 7, 2002, 8:52]
FBI names 20 most-wanted security flaws
News The Systems Administration, Networking and Security (SANS) Institute unveiled a list of 20 software flaws this week that the group, along with the FBI, recommends be given special attention by corporate data managers.
[October 3, 2001, 8:55]
