articles sorted by relevance / date

vulnerabilities

add to my tags
  1. News to know: DNS flaw; Amazon; Microsoft shakeup; Faceblook details »
    blogs.zdnet.com Posted 2 hours ago by Larry Dignan feed details »

    Notable headlines: Ryan Naraine: Researchers borrow from Google PageRank for network defense service Attack code published for DNS flaw Nate McFeters: |)ruid and HD Moore...

  2. “Covert channel vulnerabilities in anonymity systems” wins best thesis award details »
    www.lightbluetouchpaper.org Posted 7 weeks and 2 days ago by Steven J. Murdoch feed details »

    My PhD thesis “Covert channel vulnerabilities in anonymity systems” has been awarded this year’s best thesis prize by the ERCIM security and trust...

  3. McAfee debunks recent vulnerabilities in AV software research, n.runs restates its position details »
    blogs.zdnet.com Posted 1 day ago by Dancho Danchev feed details »

    Several days after blogging about a research conduced by n.runs AG that managed to discover approximately 800 vulnerabilities in antivirus products, McAfee issued a...

  4. Use CFQUERYPARAM!! details »
    www.web-relevant.com Posted 16 hours ago feed details »

    This just in from 0x000000 # The Hacker Webzine via Ben Forta's blog: an article that is both called and about Attacking ColdFusion. I find this to be very significant...

  5. Flash Player downgrade via XP-SP3? details »
    flash.fincanon.com Posted 7 weeks and 2 days ago by Jason feed details »

    I just came across this post on Guya.net (which linked to this)and figured I’d help get the word out. Apparently the Windows XP SP3 update downgrades your Flash...

  6. Sony and the Joy of Craplets details »
    www.platformonomics.com Posted 8 weeks ago by CharlesF feed details »

    Delightful to see Sony CEO Sir Howard Stringer getting called on the carpet by Walt Mossberg for Sony's status as the industry leader in craplets.  I bought one of...

  7. Just How Vulnerable Is FriendFeed To Spam? details »
    www.deepjiveinterests.com Posted 9 days ago by Tony Hung feed details »

    So, in a threaded comment-ango on Friendfeed today, I noticed an odd comment by a Friendfeedster that seemed out of place. So out of place, it almost smelled …...

  8. Ajax Security Tools details »
    www.maxkiesler.com Posted 7 weeks and 3 days ago feed details »

    In this article, you'll learn about Ajax security tools, which you'll be using to scan for SQL injection and cross-site scripting vulnerabilities; to set a master...

  9. May 2008 Monthly Release details »
    blogs.technet.com Posted 10 weeks and 2 days ago by MSRCTEAM feed details »

    This is Tami Gallupe, MSRC Release Manager, and I want to let you know that we just posted our May 2008 Bulletins. We released four bulletins today, which include three...

  10. Study: OSS Communities Are Often Slackers in Security details »
    www.linuxinsider.com Posted 3 days ago by Jack M. Germain feed details »

    The most widely used open source software packages for the enterprise are exposing users to significant and unnecessary business risks, according to an open source...

  11. How to set up your computer so people can attack it details »
    www.identityblog.com Posted 7 weeks and 4 days ago by Kim Cameron feed details »

    As I said in the previous post, the students from Ruhr Universitat who are claiming discovery of security vulnerabilities in CardSpace did NOT “crack”...

  12. Vulnerabilities in AV software details »
    www.avertlabs.com Posted 2 weeks ago by Ryan Permeh feed details »

    A recent ZDnet blog discusses a large number of vulnerabilities German research team N.Runs says it found in antimalware products from nearly every vendor. The ZDNet...

  13. May's Microsoft Updates details »
    www.f-secure.com Posted 10 weeks and 1 day ago feed details »

    It's time once again for monthly updates from Microsoft.Microsoft Office Word and Publisher reportedly have Remote Code Execution vulnerabilities which could be exploited...

  14. David Litchfield on details of one of the critical vulnerabilities from the latest Oracle patch details »
    blogs.zdnet.com Posted 9 days ago feed details »

    More details coming out on the Oracle patches that were released last week, see Ryan Naraine's write up here. David Litchfield, noted security researcher from...

  15. ratproxy details »
    simonwillison.net Posted 6 days ago feed details »

    ratproxy. “A semi-automated, largely passive web application security audit tool”—watches you browse and highlights potential XSS, CSRF and other vulnerabilities in...

  16. Questions about Web Server Attacks details »
    blogs.technet.com Posted 12 weeks and 5 days ago by MSRCTEAM feed details »

    Hi there this is Bill Sisk. There have been conflicting public reports describing a recent rash of web server attacks. I want to bring some clarification about the...

  17. Is single vendor-driven open source a greater security risk? details »
    weblog.infoworld.com Posted 8 days ago by Savio Rodrigues feed details »

    How did two vulnerabilities in the widely used Spring Framework remain hidden for so long? And what are the security implications for single-vendor-driven open source...

  18. Flash Hardens, Some Sites May Shatter details »
    informationgift.com Posted 15 weeks and 2 days ago feed details »

    Skinny: upcoming Flash Player update may break sites that use Flash to talk cross-domain, via sockets, or to the hosting html, especially via javascript:. Also affected...

  19. Updates: Mark Cox on security; Spevack from LinuxTag details »
    www.redhatmagazine.com Posted 8 weeks and 1 day ago by the editorial team feed details »

    Mark Cox, security guru and star of our recent video series, posts his yearly, official risk report, a comprehensive evaluation of the metrics, vulnerabilities, and best...

  20. Phishing Piers on Legitimate Sites details »
    www.f-secure.com Posted 9 weeks and 1 day ago feed details »

    Let's say that you want to phish for PayPal accounts. One might attempt to register something such as paypol-sevice.com. But that's too obvious and is likely to be...