// archivio

vulnerability

Questo tag è associato con 1 articoli



19 Ago/10

BitDefender Total Security 2011 Review, Giveaway

BitDefender Total Security 2011 Review, Giveaway

(adsbygoogle = window.adsbygoogle || []).push({}); BitDefender recently launched their security product line for 2011, with improvements all over the board, a set of new features to increase the protection of the system, and a new customizable interface suitable suitable for users of all experience levels. Total Security 2011 is the top of the line product that includes all features that the two other available products, Antivirus Pro and Internet Security offer, plus some that...

29 Lug/10

Adobe / Microsoft to team up on Vulnerability Sharing

Adobe / Microsoft to team up on Vulnerability Sharing

(adsbygoogle = window.adsbygoogle || []).push({}); Microsoft has announced that it’s to extend it’s Microsoft Active Protections Program (MAPP) to include vulnerability sharing information from Adobe. The programme, launched in October 2008 allows sharing of information about security vulnerabilities with security software vendors.  So far 65 companies have signed up to the scheme. In a statement, Microsoft said… “Adobe products are relied on by individuals...

5 Lug/10

Google fixes YouTube xxx spam flaw

Google fixes YouTube xxx spam flaw

YouTube owner Google has been forced to act quickly to fix a flaw on it’s YouTube video sharing website that allowed hackers to bombard users with pop-up messages, redirecting them to adult websites. The code was placed in the comments section of targeted videos and would run automatically when people watched the clip. Google says the problem was fixed within only two hours of being reported, according to the BBC. “We took swift action to fix a cross-site scripting (XSS)...




11 Giu/10

Adobe release ‘critical’ Flash patch

Adobe release ‘critical’ Flash patch

Adobe have today released a patch to sort out the critical vulnerability in Flash that was discovered last week, which is a quick turnaround. The patch, released through version 10.1 of the Flash player is available now from www.adobe.com and there is also a new version of Adobe Air as well. The company may have managed to shoot itself in the foot with this patch however as you’ll see from the amusing screenshot below, where the news story about the patch in the new version of the...

29 Mar/10

Out Of Band Internet Explorer Security Update

Out Of Band Internet Explorer Security Update

Microsoft’s Security Response team just announced that they will be publishing an out of band cumulative update for Internet Explorer due to a publicly disclosed security vulnerability that is affecting Internet Explorer 6 and Internet Explorer 7. The team notes that Internet Explorer 8 installations are not affected by the security vulnerability and that the security update will be released on March 30 at approximately 10:00 a.m. PDT. The update for Internet Explorer will be provided...

10 Mar/10

Old Internet Explorers Affected By Security Vulnerability

Old Internet Explorers Affected By Security Vulnerability

Microsoft has posted a security advisory about a new security vulnerability that is affecting older Internet Explorer , precisely Internet Explorer 6 and Internet Explorer 7. Microsoft’s latest web browser Internet Explorer 8 is not affected by the vulnerability according to the security advisory. The impact of the vulnerability is a remote code execution that can be triggered by an invalid pointer reference that can be the cause for the remote code execution. Microsoft is aware...

10 Mar/10

Microsoft Security Updates March 2010

Microsoft Security Updates March 2010

Microsoft yesterday released security patches for Windows and Office products on their monthly Patch Tuesday. A total of two security bulletins have been released by Microsoft that patch flaws in Microsoft Excel, Windows Movie Maker and Microsoft Producer 2003. The severity of both security bulletins has been rated as important. Attackers can exploit the issues for remote code execution. The security updates are offered through the usual channels including Windows Update, Microsoft Update...

24 Feb/10

Adobe Fixes Adobe Download Manager Vulnerability

Adobe Fixes Adobe Download Manager Vulnerability

A security vulnerability in Adobe Download Manager was discovered this month besides the recently discovered security vulnerabilities in Adobe Reader, Adobe Acrobat and Adobe Flash which had also been discovered and fixed by Adobe. We have posted information about the security vulnerability in the forum but not here on the blog. Adobe has now updated information about the security vulnerability which basically fixed the issue so that users who download and use the Adobe Download Manager...

12 Feb/10

Adobe Flash Player Security Update

Adobe Flash Player Security Update

Microsoft is not the only company that has released security updates in the last days. Adobe has also identified a security vulnerability in Adobe Flash Player version 10.0.42.34 and earlier that “could subvert the domain sandbox and make unauthorized cross-domain requests”. This vulnerability has received a critical rating which is the highest rating a vulnerability can get. The update furthermore resolves “a potential Denial of Service issue”. An Adobe Flash Player...

4 Feb/10

Internet Explorer Vulnerability And Temporary Fix

Internet Explorer Vulnerability And Temporary Fix

Another Internet Explorer vulnerability was disclosed yesterday by Microsoft. All Internet Explorer versions from Internet Explorer 5.01 to 8 are affected on all Microsoft operating systems. A mitigating factor on Windows Vista and later operating systems (like Windows 7) prevents the exploitation of the vulnerability in Internet Explorer 7 and Internet Explorer 8 if protected mode is enabled in the web browser. Protected mode is enabled by default in those browsers. That leaves Windows...

15 Dic/09

Another Adobe Reader Zero Day Vulnerability In The Wild

Another Adobe Reader Zero Day Vulnerability In The Wild

Adobe Reader and Adobe Acrobat have been hit with yet another zero day vulnerability that is affecting all versions of both programs up to Adobe Reader and Adobe Acrobat 9.2. The vulnerability has been disclosed to the public by Adobe’s Security Response team who wrote in their blog that they “are currently investigating this issue and assessing the risk to [their] customers”. Adobe itself did not reveal details about the exploit in the blog post but a post at the Shadowserver...

13 Ott/09

Microsoft Security Updates October 2009 Online

Microsoft Security Updates October 2009 Online

Microsoft has published all security patches for today’s Patch Day a few minutes ago. The patches are available via Windows Update, Microsoft Update and the individual security bulletins that describe the nature of each security patch in detail. Windows users are encouraged to update their operating system and software programs as soon as possible to block attacks from malicious software that could exploit the security vulnerabilities. Microsoft has released the following security...

9 Set/09

New Security Vulnerability Affects Windows Operating Systems

New Security Vulnerability Affects Windows Operating Systems

Microsoft yesterday released a security advisory that described a new security vulnerability affecting several Microsoft operating systems. The article, which was posted only a few hours after the release of security patches for this month’s patch-day affects the Microsoft Server Message Block (SMB) implementation. The operating systems that are affected by the new vulnerability are Windows Vista, Windows Server 2008 and the Windows 7 Release Candidate. Operating systems that are...

12 Ago/09

Microsoft Security Updates August 2009

Microsoft Security Updates August 2009

Microsoft has released its monthly set of security patches yesterday which patch several security vulnerabilities in Microsoft software programs including Microsoft operating systems and Microsoft Office. A summary of the patches can be accessed at the Microsoft website which lists nine security bulletins. Of these nine security bulletins five are rated critical and four important. Users who operate Microsoft operating systems or Microsoft products should install the security patches as...

11 Ago/09

WordPress Remote Admin Password Reset Vulnerability

WordPress Remote Admin Password Reset Vulnerability

The password of my WordPress admin account was not valid when I tried to login today. I first thought it was a problem with the LastPass password manager and tried to see if I was still logged into the service. When I checked my email inbox I noticed that I have received a new password for the account. That was strange since I did not request a new password. It was not that much of a concern to me as I thought that someone might have used the password reset functionality to reset the password...

24 Lug/09

Adobe Reader, Acrobat and Flash Player Zero Day Vulnerability

Adobe Reader, Acrobat and Flash Player Zero Day Vulnerability

Adobe has issued a security advisory that describes a critical vulnerability in the current versions of Adobe Reader, Acrobat and Flash Player. The vulnerability “could cause a crash and potentially allow an attacker to take control of the affected system”. Adobe’s Flash Player seems to be affected completely while the file authplay.dll is the reason for the vulnerability affecting Adobe Reader and Acrobat as well. Adobe mentioned that the vulnerability is already exploited...