Previous
Cisco Security Advisory: Vulnerabilities in Cisco IOS Secure Shell Server
White Papers Certain release trains of Cisco Internetwork Operating System (IOS), when configured to use the IOS Secure Shell (SSH) server in combination with Terminal Access Controller Access Control System Plus (TACACS+) as a means to perform remote...
[October 8, 2008, 1:21]
Assessment and Remediation of Vulnerabilities in the SCADA and Process Control Systems of Utilities
White Papers This paper reviews the proven methodology and comprehensive approach that the Vulnerability and Threat Analysis teams of Internet Security Systems recommend for fully assessing the vulnerabilities of supervisory control and data acquisition (SCADA...
[January 31, 2009, 7:25]
Cisco Security Advisory: Multiple SSH Vulnerabilities - Revision 1.5
White Papers Four different Cisco product lines are susceptible to multiple vulnerabilities discovered in the Secure Shell (SSH) protocol version 1.5. These issues have been addressed, and fixes have been integrated into the Cisco products that support this...
[April 16, 2004, 1:04]
IBM: Public vulnerabilities are tip of the iceberg
News IBM's Internet Security Systems division has warned that there is a "colossal difference" between the number of publicly disclosed security vulnerabilities and the number of vulnerabilities that are discovered but not publicly disclosed.
[June 1, 2007, 12:07]
802.11 Denial-of-Service Attacks: Real Vulnerabilities and Practical Solutions
White Papers This paper provides an experimental analysis of such 802.11-specific attacks - their practicality, their efficacy and potential low-overhead implementation changes to mitigate the underlying vulnerabilities.
[October 6, 2005, 3:00]
Exploiting MMS Vulnerabilities to Stealthily Exhaust Mobile Phone's Battery
White Papers As cellular data services and applications are being widely deployed, they become attractive targets for attackers, who could exploit unique vulnerabilities in cellular networks, mobile devices, and the interaction between cellular data networks...
[August 25, 2007, 1:00]
ISC confirms BIND vulnerabilities
News Confusion is rife about potential vulnerabilities in BIND, the most commonly used domain name server on the Internet, and experts are calling on the makers of the software to clarify the issue. However, on Wednesday the site had been updated...
[March 5, 2003, 10:52]
Understanding SCADA System Security Vulnerabilities
White Papers The article also explains the types of vulnerabilities commonly found at utility companies, as well as remediation strategies that utility companies should adopt to mitigate risk. A computer hacker publicly announced his intention to release a...
[January 9, 2004, 9:09]
Linux and Unix 'had more vulnerabilities than Windows'
News The US Government has reported that fewer vulnerabilities were found in Windows than in Linux/Unix operating systems in 2005. Linux/Unix-based operating systems — a set that includes Mac OS X, as well as the various Linux distributions and flavours...
[January 5, 2006, 16:55]
Microsoft patches ten IIS vulnerabilities
News Since at least three of these vulnerabilities affecting IIS 4.0, IIS 5.0, and IIS 5.1 are rated critical by Microsoft, the cumulative patches are very important unless you have installed IIS Lockdown Tool according to best practices and don't need...
[April 29, 2002, 13:39]
Linux and Unix 'had more vulnerabilities than Windows'
Talkback What the article fails to mention that anytime new applications come out that there will be chances for vulnerabilities to be found cause the likely hood of those vulnerabilities to be tested will be zero.it sounds to me as if windows is getting...
[March 3, 2006, 15:41]
Cisco warns of more router vulnerabilities
News The intrusion-prevention capabilities of Cisco's routers are prone to attack, after the networking giant revealed two vulnerabilities in its key operating system. The vulnerabilities affect those versions of Cisco's Internetwork Operating System...
[February 14, 2007, 11:24]
Finding Security Vulnerabilities in Java Applications With Static Analysis
White Papers This paper proposes a static analysis technique for detecting many recently discovered application vulnerabilities such as SQL injections, cross-site scripting, and HTTP splitting attacks. These vulnerabilities stem from unchecked input, which is...
[June 23, 2007, 1:00]
Microsoft Windows 95 Patch: Security Vulnerabilities in Scriptlet.typlib
Downloads Update for Security Vulnerabilities in "Scriptlet.typlib" and "Eyedog" ActiveX Controls. This update eliminates the "scriptlet.typlib/eyedog" security vulnerability. Without this update, these ActiveX controls can be maliciously used to perform...
[September 7, 1999, 8:00]
Cisco admits to more vulnerabilities
News Cisco has found two more vulnerabilities in its range of networking products. Hackers could use the various vulnerabilities to crash a networking appliance and bypass security policies. Cisco has made patches available for the firewall service...
[February 16, 2007, 16:14]
Cisco patches Wi-Fi vulnerabilities
News Cisco has issued two sets of patches for vulnerabilities in its wireless networking software. In an advisory published on Thursday, Cisco warned that its Wireless Control System (WCS) contains multiple vulnerabilities that can result in information...
[April 13, 2007, 14:37]
Microsoft: 'We won't charge to fix vulnerabilities'
News While Microsoft currently provides free patches for vulnerabilities in Windows, Eckert said Sybari's software would carry a cost because viruses were completely unrelated to its software flaws. We are not charging the user for anything related to...
[July 6, 2005, 9:40]
Layer Seven: The Future of Vulnerabilities - Featuring SPI Dynamics WebInspect
White Papers This paper provides a survey of the different types of computer vulnerabilities and explains why Layer 7 or application vulnerabilities are the emerging trend for hacker exploits. The paper further explains how SPI Dynamics web application...
[February 21, 2005, 2:00]
Security Vulnerabilities and Solutions in Mobile WiMAX
White Papers This paper shows different security vulnerabilities found in IEEE 802.16e and gives possible solutions to eliminate them. These vulnerabilities are the possibilities to forge key messages in Multi- and Broadcast operation, some unauthenticated...
[April 23, 2009, 1:24]
Common network vulnerabilities and how to prevent them
White Papers Join TechRepublic vice president Bob Artner and Nick Brigman, vice president of product strategy at RedSiren, as they discuss a best practices approach for dealing with today's common network vulnerabilities.
[June 8, 2004, 1:03]
