Previous
Vulnerability found in Yoggie Pico
News A vulnerability has been found in Linux-based USB security device Yoggie Pico. The zero-day vulnerability was disclosed on Monday by vulnerability researcher Cody Brocious. Avi Dardick, Yoggie's senior director of product management and support...
[July 4, 2007, 17:08]
Vulnerability Management Solution will build confidence to sign
Talkback A comprehensive vulnerability management solution will help build the confidence to enable them to sign. Patented vulnerability remediation with automatic health monitoring and status through digital fingerprint technology, a vast repository of...
[January 30, 2009, 23:54]
Vulnerability Anti.dote - Zero-Hour Protection Against Known Vulnerabilities
White Papers The revolutionary Vulnerability Anti.dote engine represents the culmination of a decade of researching malicious code and security technologies. The Vulnerability Anti.dote engine identifies any attempt by mobile code to exploit known and new...
[July 6, 2007, 1:00]
vulnerability is automatically being activated without user intervention
Talkback This vulnerability involving a Direct X component of Microsoft’s Windows QuickTime Parser is facilitating current drive-by hacking incidents. It is reported that the vulnerability is automatically being activated without user intervention when a...
[May 29, 2009, 17:17]
Vulnerability Assessment Plus Web Application Firewall (VA+WAF)
White Papers Once detected and validated by WhiteHat, detailed information about these vulnerabilities are passed to the F5 BIG-IP Application Security Manager (ASM) web application firewall, where they are implemented as blocking rules and prohibit exploiting...
[July 13, 2009, 1:21]
Vulnerability Exploits Break Records
White Papers In fact they have long noted the closing gap between the discovery of a new vulnerability and corresponding attacks. According to security experts at Trend Micro, the bot attacks that occurred on the 16 August 2005 were not completely unexpected.
[January 25, 2007, 11:07]
Vulnerability Management and Policy Compliance Overview
White Papers Take a multimedia tour of QualysGuard, the Web-based Vulnerability Management and Policy Compliance solution that pinpoints network vulnerabilities before hackers have a chance to exploit them. This demo introduces you to Qualys' award-winning, on...
[March 30, 2007, 0:00]
Vulnerability Management Is Critical to Managing Enterprise Risk
White Papers Vulnerability management is an emerging market that has captured the interest of enterprises concerned with mitigating and managing the threats within their networks. As the vulnerability management market space expands, comprehensive vulnerability...
[August 4, 2005, 6:00]
Windows Certificate Enrollment Control Vulnerability Patch (Windows XP)
Downloads An attacker who successfully exploited the vulnerability could corrupt trusted root certificates, EFS encryption certificates, e-mail signing certificates, and any other certificates on the system, thereby preventing the user from using these...
[September 18, 2002, 0:55]
Internet Explorer 5.5 Certificate Spoofing Vulnerability Patch
Downloads In addition, this update includes a previously released update that eliminates a vulnerability that allows a malicious user to run an executable e-mail attachment on your computer. This update resolves several security vulnerabilities in Internet...
[June 30, 2001, 7:40]
Automated Penetration Testing: Completing the Vulnerability Management Framework
White Papers Today's network pen test services like AOmega's Automated Penetration Service (APS) are designed in support of the vulnerability management process. Vulnerability scanning is the first component of the pen test methodology and is also referred to...
[May 8, 2009, 4:26]
Microsoft Office 95 ODBC Driver Vulnerability Security
Downloads Microsoft has released a security update for Jet and ODBC that addresses the Office ODBC Driver Vulnerability for Microsoft Office 95. This patch updates Microsoft Jet 3.0 and associated ODBC database drivers to eliminate a vulnerability that could...
[January 19, 2000, 7:00]
IP Fragment Reassembly Vulnerability (Windows 2000)
Downloads The vulnerability would not allow a malicious user to compromise data on the machine or usurp administrative control. Machines protected by a proxy server or a firewall that drops fragmented packets would not be affected by this vulnerability.
[May 24, 2000, 7:19]
Gmail cookie vulnerability exposes user's privacy
News It's just a proof of concept at the moment but what they're demonstrating is the potential to use this vulnerability for malicious purposes. According to Gatford, attackers could compromise a Gmail account — using a cross-site scripting [XSS...
[September 27, 2007, 8:12]
Is the Latest Wireless Vulnerability Just the Tip (or TKIP) of the Iceberg?
White Papers The newly discovered Temporal Key Integrity Protocol (TKIP) vulnerability on Access Points using WPA encryption protocol opens the door to potentially new WPA/TKIP attacks. While it is an exaggeration to say TKIP is broken today, this is a new and...
[October 1, 2009, 1:24]
MSDN Webcast: Digital Blackbelt Series: Social Engineering and Mitigating System Vulnerability (Level 200)
White Papers After reviewing these social engineering lead-ins to technical attacks the webcast discusses the kinds of operational and technical functionality that helps mitigate system's vulnerability to social engineering.
[June 9, 2006, 0:00]
Apple fixes QuickTime vulnerability
News The media player vulnerability lies in QuickTime for Java, Apple said in a security alert. Apple's fix comes just over a week after the vulnerability was used to grab a $10,000 prize and a MacBook Pro in a hack-a-Mac contest at the CanSecWest...
[May 2, 2007, 9:10]
Experts warn on 'unpatched' vulnerability
News Security experts have warned that a vulnerability that has apparently been left un-patched by Microsoft is being exploited by attackers "in the wild". The "object type" vulnerability, which was first acknowledged publicly by Microsoft on 20 August...
[September 29, 2003, 9:10]
Microsoft plans fix for DNS vulnerability
News Microsoft's updates will include a patch for a vulnerability in the Windows domain name system, or DNS. The security vulnerability affects Windows 2000 Server and Windows Server 2003. Microsoft on Tuesday plans to release seven security bulletins...
[May 4, 2007, 8:35]
Plaxo plugs phishing vulnerability
News Lodoga's security test engineer Jeremy Wood told ZDNet UK it took him less than an hour after discovering the weakness to build an attack script that could exploit the vulnerability. Rikk Carey, vice president of engineering at Plaxo, told ZDNet UK...
[March 16, 2004, 12:25]
