Flaw
2064 Stories

Cisco patches Security Manager flaw

News The company has released an out-of-cycle patch for a vulnerability that could enable a successful attack on Cisco security products.

Friday, January 23 2009 12:29 AM

Tags: Web 2.0, Web sites, Security, Security Manager, TCP, Cisco Systems Inc., Vulnerability, Database, Intrusion Prevention System, Flaw

Zero-day PowerPoint flaw gives rise to attacks

News Hackers are trying to exploit an unpatched vulnerability in the Office software, leading Microsoft to issue a warning and workarounds.

Monday, April 06 2009 08:55 AM

Tags: Hacking, Microsoft Office, windows alerts, Microsoft Corp., Security, Attack, Microsoft Office 2003, SP3, Flaw, Environment

Virtual-machine exploit lets attackers take over host

News The exploit for an VMware flaw uses malicious code running on a virtual machine to let an intruder take over the host operating system.

Wednesday, June 10 2009 10:57 AM

Tags: Network security, Virtualization, Security, Virtual Machine, VMware Workstation, Tool, Video, VMware Inc., operating system, Flaw

Microsoft: Windows 7 not affected by latest flaw

News Following up on a vulnerability disclosed in the last 24 hours, Microsoft says the flaw affects Vista and Windows Server 2008, but not the final version of Windows 7.

Wednesday, September 09 2009 11:30 AM

Tags: Microsoft Windows, Authentication and encryption, Server Message Block, Security, Vulnerability, Microsoft Windows 7, software company, Flaw, Microsoft Windows Server 2008, Microsoft Windows 2000

Windows 7, Vista zero-day flaw reported

News Security researcher says vulnerability in Windows 7 could lead to an attack causing a critical system error, or "blue screen of death".

Wednesday, September 09 2009 09:29 AM

Tags: Microsoft Windows, Server Message Block, Microsoft Windows Vista, Zero-day Bug, BSOD, Small And Medium Business, Microsoft Windows 7, Flaw, Microsoft Windows Vista SP1, Microsoft Windows

UK Ministry of Defense site carried cross-site scripting flaw

News Ministry admits to security flaw that could have allowed visitors to be redirected to a malicious site.

Wednesday, August 12 2009 10:07 AM

Tags: Data security, Authentication and encryption, Network security, Security, Spokesperson, Flaw, e-mail, malicious code, Web Site, Network security

Microsoft investigating newly reported IIS flaw

News Software maker says it is looking into a potential vulnerability that could allow attackers to take over machines running older versions of Microsoft's Web server.

Tuesday, September 01 2009 09:06 AM

Tags: Microsoft Windows, Hacking, Data security, Authentication and encryption, Microsoft IIS Server, Vulnerability, International Data Group, Flaw, information service, IT administrator

Apple patches multiple iPhone, QuickTime flaws

News Ten holes in Apple's smartphone operating system and media player software could leave owners open to hacking and phishing attacks.

Friday, September 11 2009 08:58 AM

Tags: Cellular phones, Applications and tools, Apple Inc., Phishing, Apple QuickTime, Web Browser, Flaw, patch management, Apple iPhone, Web Site

Intel motherboards suffer Bios flaws

News Chipmaker releases updates to address privilege escalation holes in a number of its motherboards, and says to its knowledge the flaws have not been exploited.

Thursday, July 30 2009 12:53 PM

Tags: Components, Intel Corp., Rootkit, Motherboard, Flaw, BIOS Update, Environment, Server, BIOS, desktop

UK intelligence site breached by hacker

News Intelligence agency has closed up a cross-site scripting vulnerability on its Web site after details of the flaw were published on a hacker forum.

Friday, July 31 2009 11:06 AM

Tags: Authentication and encryption, Data security, Hacking, Spokesperson, Flaw, malicious attack, search tool, Hacker, agency, Web Site

Researchers exploit flaws in SSL, domain authentication system

News Dan Kaminsky and Moxie Marlinspike explain how flaws in the way domain names are verified on the Internet could allow attackers to impersonate a site and steal information from unsuspecting Web surfers.

Friday, July 31 2009 11:12 AM

Tags: Network security, Data security, Authentication and encryption, Web sites, Authentication, Security, SSL, Domain Name, Web Browser, Vulnerability

Chink in encryption armor discovered

News An underlying flaw in the OpenSSH encryption protocol has been revealed by academics.

Wednesday, May 20 2009 10:39 AM

Tags: Authentication and encryption, OpenSSH, SSH, IT Professional, Encryption, Information Security, Flaw, Server, Attacker, RFC

Flaw exposes Chrome, Firefox to clickjacking

News Security researchers have discovered a vulnerability that exposes Google's Chrome browser and Firefox 3.0.5 to a clickjacking attack.

Friday, January 30 2009 06:44 AM

Tags: Web browsers, Web sites, Security, Google Chrome, Web Browser, Google Inc., Attack, Spokesperson, Flaw, Clickjacking

Zero-day flaw found in Web encryption

News Security issue with underlying web encryption protocols TLS and SSL has left many authentication mechanisms open to attack, according to security researchers.

Friday, November 06 2009 02:57 PM

Tags: Authentication and encryption, Business security, Authentication, Security, Business security, SSL, Authentication and encryption, Web Browser, Zero-day Bug, Encryption