|
Nuke ET Journal Module Security Bypass and HTML Injection Vulnerabilities: related news
Tags:
bypass et html injection journal module nuke security vulnerabilities
Copyright 2007, SecurityFocus
in Web Developer
via SecurityFocus @ 15:22 8th May
- Related
New 10Gbps IPS, E-mail and Web Security Platforms Break the 'LAN Speed Barrier' while Providing Uncompromised Security and Performance LONDON, April 22 /PRNewswire-FirstCall/ -- INFOSECURITY EUROPE -- McAfee, Inc. (NYSE: MFE) today announced two products that strengthen the company's leadership position in network security. McAfee M-8000 Network Security Platform (formerly known as McAfee IntruShield Network Intrusion Prevention) and the McAfee Content Security Blade Server eliminate performance bottlenecks, reduce complexity and deliver uncompromised intrusion prevention, e-mail and Web security. "Today McAfee is changing the game for network security," said Dave DeWalt, president and chief executive officer of McAfee. "For customers, it means that they now have access to the strongest, fastest network security solutions available today.
in Computer Security
via Reuters @ 3:06 22nd Apr
- Related
Systems (www.ingate.com), which develops firewall technology and products that enable SIP communications for the enterprise while maintaining control and security at the network edge, has added another layer of security for SIP-based applications with the Ingate Enhanced Security Module, a new optional software offering for all Ingate Firewall
in Computer Security
via IP Communications @ 14:10 18th Mar
- Related
Stony Stevenson writes "Google presents a big fat target for would-be hackers and attackers. At the RSA conference Google offered security professionals a look at its internal security systems. Scott Petry, director of Google's Enterprise and founder of security firm Postini, explained how the company handles constant pressure and scrutiny from attackers. In order to keep its products safe, Google has adopted a philosophy of 'security as a cultural value.' The program includes mandatory security training for developers, a set of in-house security libraries, and code reviews by both Google developers and outside security researchers."
in Search Engines
via Slashdot @ 14:35 10th Apr
- Related
Ben Rothke writes "It is 2008 and never has so much been spent in information security. Year after year, more and more security hardware and software is purchased, more and more security professionals are hired, and more security is done; yet things are not getting better. Every indicator, every pundit, everything points to more security breaches, vulnerabilities and incidents. Large amounts of proprietary data are compromised on a daily basis. Obviously something is wrong, yet the entire industry goes along thinking things are getting better and more secure. Obviously something needs to change. And that new change is what The New School of Information Security attempts to conceive."
in Web Developer
via Slashdot @ 19:10 21st Apr
- Related
CARLSBAD, Calif., March 7 /PRNewswire/ -- Breach Security, Inc., the leader in Web application security, today announced that its flagship Web application security appliance, WebDefend, earned top marks in the Web application firewall market round-up review, featured in the March 2008 issue of Information Security magazine. In this head-to-head review of six application firewall appliances, WebDefend received an A minus rating-the highest grade awarded. WebDefend was given high praise for features relating to compliance with the Payment Card Industry Data Security Standard (PCI DSS), ease of deployment, high detection accuracy, low false positives and performance.
in Computer Security
via Earthtimes.org @ 19:12 7th Mar
- Related
McAfee, Inc. Solution Named 'Security Product of the Year' and 'Best Security Solution for Government' at SC Magazine Awards Double Award Success for McAfee at Prestigious Industry Event SANTA CLARA, Calif., April 24 /PRNewswire-FirstCall/ -- McAfee, Inc. (NYSE: MFE) today announced that McAfee(R) Endpoint Encryption for Devices (formerly SafeBoot(R) Encryption) has won two 2008 SC Magazine Europe awards, which recognize excellence in the information security industry. McAfee Endpoint Encryption for Devices is part of a portfolio of data protection solutions from McAfee and was awarded 'Security Product of the Year' and 'Best Security Solution for Government' at a presentation dinner at The Hurlingham Club in London. "McAfee is proud to be acknowledged as a leader in data encryption solutions," said Mike Dalton, president, McAfee EMEA.
in Computer Security
via Reuters @ 5:05 25th Apr
- Related
YourFreeWorld Short Url & Url Tracker Script Multiple HTML Injection Vulnerabilities
in Web Developer
via SecurityFocus @ 17:37 25th Mar
- Related
Red Hat Security Advisory Synopsis: Important: openoffice.org security update Advisory ID: RHSA-2008:0176-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2008-0176.html Issue date: 2008-04-17 CVE Names: CVE-2007-5746 CVE-2008-0320 ===================================================================== 1. Summary: Updated openoffice.org 1.x packages to correct multiple security issues are now available for Red Hat Enterprise Linux 3 and Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 3 - i386, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386
in Open Source
via OSZine @ 2:18 18th Apr
- Related
Red Hat Security Advisory Synopsis: Important: openoffice.org security update Advisory ID: RHSA-2008:0175-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2008-0175.html Issue date: 2008-04-17 CVE Names: CVE-2007-5746 CVE-2008-0320 CVE-2007-5745 CVE-2007-5747 ===================================================================== 1. Summary: Updated openoffice.org 2.x packages to correct multiple security issues are now available for Red Hat Enterprise Linux 4 and Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 4 - i386, ppc, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x
in Open Source
via OSZine @ 2:18 18th Apr
- Related
Red Hat Security Advisory Synopsis: Â Â Â Â Â Moderate: java-1.5.0-bea security update Advisory ID: Â Â Â RHSA-2008:0156-02 Product: Â Â Â Â Â Red Hat Enterprise Linux Extras Advisory URL: Â Â Â https://rhn.redhat.com/errata/RHSA-2008-0156.html Issue date: Â Â Â Â 2008-03-05 CVE Names: Â Â Â Â CVE-2007-5232 CVE-2007-5239 CVE-2007-5240 Â Â Â Â Â Â Â Â Â Â CVE-2007-5273 CVE-2008-0657 ===================================================================== 1. Summary: Updated java-1.5.0-bea packages that correct several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having moderate security impact by the Red Hat Security Response Team.
in Developer
via OSZine @ 1:46 6th Mar
- Related
Bruce Schneier: Schneier is one of the foremost minds on computer security today, and on this site you can read his blog along with seemingly every article he's written and interview he's granted over the past few years. It's also the place to sign up for Crypto-Gram, Schneier's monthly newsletter which delves into topics as diverse as Israeli aircraft security, privacy and vendor lock-in. Cisco Security Center: Cisco provides all of its product security alerts here, along with a wealth of other information. In-depth reports include a monthly response to the latest Microsoft security bulletin, a variety of technical guides, and reports from Cisco's IntelliShield on recent vulnerabilities. Some content must be paid for, but a lot of it is free.
in Computer Security
via Computerworld Australia @ 0:10 8th Apr
- Related
Bruce Schneier: Schneier is one of the foremost minds on computer security today, and on this site you can read his blog along with seemingly every article he's written and interview he's granted over the past few years. It's also the place to sign up for Crypto-Gram, Schneier's monthly newsletter which delves into topics as diverse as Israeli aircraft security, privacy and vendor lock-in. Cisco Security Center: Cisco provides all of its product security alerts here, along with a wealth of other information. In-depth reports include a monthly response to the latest Microsoft security bulletin, a variety of technical guides, and reports from Cisco's IntelliShield on recent vulnerabilities. Some content must be paid for, but a lot of it is free.
in Computer Security
via Australian PC World @ 0:10 8th Apr
- Related
Drupal Ubercart Module 5.x-1.0.rc3
in Web Developer
via SecurityFocus @ 15:53 24th Apr
- Related
cwgordon7 of the Drupal security team
in Web Developer
via SecurityFocus @ 3:15 4th Apr
- Related
WAKEFIELD, Mass. - The PCI Security Standards Council, a global, open industry standards body providing management of the Payment Card Industry Data Security Standard (DSS), PCI PIN Entry Device (PED) Security Requirements and the Payment Application Data Security Standard (PA-DSS), today an
in Computer Security
via Earthtimes.org @ 18:19 7th May
- Related
Headline of release should read: Cyber Security Veteran Howard A. Schmidt Named (ISC)2(R) Security Strategist (sted Cyber Security Veteran Howard A. Schmidt Named Board (ISC)2(R) Security Strategist).
in Computer Security
via Forbes.com @ 19:18 19th Mar
- Related
Check Point Software Technologies Ltd. develops, markets and supports a range of software and combined hardware and software products and services for information technology (IT) security and offers its customers an extensive portfolio of network and gateway security solutions, data and endpoint security solutions and management solutions. Its solutions operate under a unified security architecture that enables total end-to-end security with a single line of unified security gateways and allows a single agent for all endpoint security, which can be managed by a single unified management console. On January 17, 2007 the Company acquired 98.5% interest in Protect Data AB.
in Computer Security
via TransWorldNews @ 8:49 12th Apr
- Related
Wakefield, Mass., May 7, 2008 -- The PCI Security Standards Council, a global, open industry standards body providing management of the Payment Card Industry Data Security Standard (DSS), PCI PIN Entry Device (PED) Security Requirements and the Payment Application Data Security Standard (PA-DSS), today announces it is offering a complimentary and educational webinar, “Understanding the Payment Application Data Security Standard,” to be held on Thursday May 22, 2008 at 11:30 a.m. EDT and a second session the same day at 7:30 p.m. EDT.
in Computer Security
via PR Newswire via The Green Sheet @ 20:08 8th May
- Related
Red Hat releases free security code Crowded NAC space spells doom for Lockdown Networks Gartner declares iPhone ready for enterprise SP1 for Vista available for download Gordon Brown announces new UK security push Peer-to-peer identity thief sentenced to 51 months Apple delivers record Mac OS X security update Breach of Britney Spears patient data highlights health care security shortfalls March Madness hoops-watching may drive IT staff mad McAfee steps up online safety education drive Experts try to make sense of Hannaford data breach Fake Google Calender meeting invitations used in new spam attack Australian companies praised for implementing data security Hackers strike Hannaford supermarket, steal 4.
in Computer Security
via SC Magazine @ 8:56 22nd Mar
- Related
alphadogg writes "Microsoft's U.S. general manager/chief security advisor for its National Security Team, Bret Arsenault, thinks like a true security professional. In every bit of good news, he wonders what bad news could be coming. Application security, virtualization security and the fact that over half of computer attacks seen by Microsoft come from the .edu domain are just some of the things keeping him up at night."
in Web Developer
via Slashdot @ 12:56 27th Mar
- Related
Bruce Schneier is one of the foremost experts on cryptography and is a well-known security author and commentator. He is the founder of the managed security services company Counterpane, which was acquired in October 2006 by BT. Schneier sat down with IDG News Service at the Infosec security show in London to talk about the effectiveness of security products and the psychology of security.
in Computer Security
via NetworkWorld @ 14:23 22nd Apr
- Related
In 2004, Visa USA, MasterCard International, American Express and Discover aligned their individual data protection programs to create the Payment Card Industry Data Security Standard (PCI DSS or PCI). This alignment in standards provided an industry-wide framework that complemented each brands' individual security policies - MasterCard's Site Data Protection program (SDP), Visa USA's Cardholder Information Security Program (CISP), American Express' Data Security Operating Policy (DSOP), and Discover's Information Security and Compliance (DISC).
in Computer Security
via ZDNet.fr @ 10:03 30th Mar
- Related
Copyright 2007, SecurityFocus
in Web Developer
via SecurityFocus @ 2:00 8th Apr
- Related
Search took 0.37 seconds.
|
|
