|
vulnerability: search
A security vulnerability in Mozilla's Firefox 3 was found within hours of the open-source browser's release. Tipping Point received a tip about the Firefox 3 vulnerability, which said the problem could allow an attacker to execute arbitrary code. Tipping Point also questioned the tip it received, suggesting the "researcher" waited for the release.
in Open Source
via Enterprise Security Today @ 8:27 20th Jun
- Related
Titoxd writes "Apple has released a new version of Safari that fixes the carpet bomb vulnerability in Safari 3.1 for Windows. This comes in the heels of Microsoft recommending against using Safari in Windows, as well as the release of code exploiting this vulnerability."
in Web Developer
via Slashdot @ 10:36 21st Jun
- Related
SALT LAKE CITY --(Business Wire)-- Organizations relying on encryption within their most mission-critical business systems must take steps to ensure they can address vulnerabilities like the recently reported Debian Linux flaw when-not if-they happen again, according to Venafi, inventor of systems management for encryption. Such preparations should include automating the management of encryption certificates and keys, to enable rapid identification and replacement. A guide outlining specifically how organizations can address issues and vulnerabilities like the Debian vulnerability using the Venafi encryption management platform and help from a team of expert consultants at Venafi, is available at www.venafi.com/disaster_recovery/linux-debian-openssl-vulnerability.
in Developer
via TMC Net @ 3:40 23rd May
- Related
SALT LAKE CITY (Business Wire) -- Organizations relying on encryption within their most mission-critical business systems must take steps to ensure they can address vulnerabilities like the recently reported Debian Linux flaw when-not if-they happen again, according to Venafi, inventor of systems management for encryption. Such preparations should include automating the management of encryption certificates and keys, to enable rapid identification and replacement. A guide outlining specifically how organizations can address issues and vulnerabilities like the Debian vulnerability using the Venafi encryption management platform and help from a team of expert consultants at Venafi, is available at www.venafi.com/disaster_recovery/linux-debian-openssl-vulnerability.
in Linux
via Globe Investor @ 0:26 23rd May
- Related
SALT LAKE CITY--(BUSINESS WIRE)--May 23, 2008--Organizations relying on encryption within their most mission-critical business systems must take steps to ensure they can address vulnerabilities like the recently reported Debian Linux flaw when–not if–they happen again, according to Venafi, inventor of systems management for encryption. Such preparations should include automating the management of encryption certificates and keys, to enable rapid identification and replacement. A guide outlining specifically how organizations can address issues and vulnerabilities like the Debian vulnerability using the Venafi encryption management platform and help from a team of expert consultants at Venafi, is available at www.venafi.com/disaster-recovery/linux-debian-openssl-vulnerability.
in Open Source
via Macro World Investor @ 2:52 23rd May
- Related
It took only five hours from the release of Firefox version 3.0 for a researcher to report a critical vulnerability in the open source browser.
in Open Source
via ENT News @ 8:27 20th Jun
- Related
This vulnerability was submitted to BugTraq on August 15th by Jochen Topf . Additional techniques for exploitation were published by Obscure .
in Web Developer
via SecurityFocus @ 20:23 18th Jun
- Related
A vulnerability has been reported in Linksys WRH54G, which can be exploited by malicious people to cause a DoS (Denial of Service).
in Computer Security
via Secunia @ 11:03 10th Jun
- Related
This vulnerability was reported by the Tomcat development team.
in Java
via SecurityFocus @ 18:11 1st Jul
- Related
A vulnerability has been reported in Asterisk Addons, which can be exploited by malicious people to cause a DoS (Denial of Service).
in Computer Security
via Secunia @ 10:41 5th Jun
- Related
Categories: Patch Watch, Hackers, Microsoft, Browsers, Vulnerability research, Responsible disclosure, Botnets, Exploit code, Data theft, Open source, Pen testing, Passwords, Arbitrary Code Execution, Complex Attacks
in Top Tech
via ZDNet @ 0:57 23rd Jul
- Related
The Vulnerability Research Team of Assurent Secure Technologies (a TELUS company) and Greg Patton of PropertyInfo Corporation
in Robotics
via SecurityFocus @ 23:49 9th Jul
- Related
Microsoft Security issued a patch today for a critical vulnerability affecting all supported editions of Windows 2000, Windows XP, Windows Vista, Microsoft Office 2003, and the 2007 Microsoft Office System. The hole is in Microsoft XML Core Services and could allow remote code execution if a user viewed a malicious Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
in XML & Metadata
via NetworkWorld @ 8:21 25th Jun
- Related
A severe vulnerability was found in the random number generator (RNG) of the Debian OpenSSL package, starting with version 0.9.8c-1 (and similar packages in derived distributions such as Ubuntu). While this bug is not present in the OpenSSL packages provided by CentOS, it may still affect CentOS users. The bug barred the OpenSSL random number generator from gaining enough entropy required for generating unpredicatable keys. In fact it appearss that the only source for entropy was the process ID of the process generating a key, which is chosen from a very small range and is predictable. As such, all keys generated using the Debian OpenSSL library should be considered compromized. Programs that use OpenSSL include OpenSSH and OpenVPN. Note that GnuPG and GNU TLS do not use OpenSSL, so they are not affected.
in Computer Security
via LWN @ 20:40 17th May
- Related
Categories: Patch Watch, Hackers, Browsers, Vulnerability research, Responsible disclosure, Botnets, Exploit code, Viruses and Worms, Mozilla, Firefox, Arbitrary Code Execution
in Open Source
via ZDNet @ 15:24 19th Jun
- Related
Security experts have warned of a suspected vulnerability in the Debian and Ubuntu Linux operating systems.
in Linux
via VNUNet.com @ 8:35 21st May
- Related
Tipping Point ranked the severity of Firefox 3's vulnerability as high, but said users would have to click on a link in an e-mail or visit a malicious Web page before being affected
in Open Source
via InfoWorld @ 11:19 19th Jun
- Related
Five hours after Mozilla officially released Firefox 3.0, researchers found a vulnerability in the new browser.
in Linux
via Linux World @ 5:15 19th Jun
- Related
TMCNet: Digital Defense Releases Critical Vulnerability Check for the OpenSSL Implementation on Debian and Ubuntu Linux Distributions
in Linux
via TMC Net @ 16:17 19th May
- Related
Discovery of this vulnerability has been credited to Aldrin Martoq.
in Computer Security
via SecurityFocus @ 19:26 1st Jul
- Related
A new attack on PayPal could have allowed users who thought they were on a trusted page to access a fraudulent page and possibly expose personal information. On Friday, Finnish researcher Harry Sintonen reported the vulnerability on an IRC chat room.
in Computer Security
via CNET News.com @ 20:39 16th May
- Related
Security experts have confirmed a suspected vulnerability in the Debian and Ubuntu Linux operating systems.
in Open Source
via VNUNet.com @ 2:05 21st May
- Related
Vincenzo "snagg" Iozzo has reported a vulnerability in Ruby, which can be exploited by malicious people to cause a DoS (Denial of Service).
in Computer Security
via Secunia @ 8:22 2nd Jul
- Related
Dominus is credited with discovering this vulnerability.
in Web Developer
via SecurityFocus @ 20:25 18th Jun
- Related
TMCNet: Digital Defense Rolls Out Critical Vulnerability Check for the OpenSSL Implementation on Debian and Ubuntu Linux Distributions
in Linux
via TMC Net @ 3:20 24th May
- Related
Search took 0.04 seconds.
|
|
