Browse by Tags

All Tags » Advisories (RSS)
Friday, October 26, 2007 7:21 AM

Microsoft Security Advisory 943521 (Updated)

Microsoft Security Advisory (943521) URL Handling Vulnerability in Windows XP and Windows Server 2003 with Windows Internet Explorer 7 Could Allow Remote Code Execution Published: October 10, 2007 | Updated: October 25, 2007 Revisions: • October 10, 2007...
Posted by donna | 3 comment(s)
Filed under:
Thursday, October 25, 2007 12:51 AM

Microsoft Security Bulletin MS06-067 revised

MS06-067 - http://www.microsoft.com/technet/security/bulletin/ms06-067.mspx - Reason for Revision: Revised to include MS06-065 as a bulletin that is replaced by this bulletin. - Originally posted: November 14, 2006 - Updated: October 24, 2007 - Bulletin...
Posted by donna | with no comments
Filed under:
Monday, October 22, 2007 6:51 PM

Adobe Security Bulletin APSB07-18

Update available for vulnerability in versions 8.1 and earlier of Adobe Reader and Acrobat Release date: October 22, 2007 Vulnerability identifier: APSB07-18 CVE number: CVE-2007-5020 Platform: Windows XP (Vista users are not affected) with Internet Explorer...
Posted by donna | with no comments
Filed under:
Tuesday, January 09, 2007 8:44 AM

Opera JPEG Processing Heap Corruption Vulnerabilities

Opera is vulnerable in parsing the JPEG file format. Discovered were four vulnerabilities, each in different segments of the file format. posidron will describe in this advisory the two important ones. 1 - ntdll.RtlAllocateHeap() DHT vulnerability 2 ...
Posted by donna | with no comments
Filed under: ,
Monday, January 08, 2007 12:20 PM

Kerio Fake 'iphlpapi' DLL injection Vulnerability

A vulnerability in the Kerio allows local attackers to cause the product to load an arbitrary DLL which in turn can be used to compromise the system. Vulnerable software: * Sunbelt Kerio Personal Firewall 4.3.268 * Sunbelt Kerio Personal Firewall 4.3...
Posted by donna | with no comments
Filed under:
Sunday, January 07, 2007 11:20 PM

Multiple PDF Readers Multiple Remote Buffer Overflow Vulnerability

Vulnerable: Xpdf Xpdf 3.0.1 (Patch 2) Apple Mac OS X Preview.app 3.0.8 Adobe Acrobat Reader v8 and earlier versions Multiple PDF readers are prone to multiple remote buffer-overflow vulnerabilities. These issues occur because the applications fail to...
Posted by donna | with no comments
Filed under:
Saturday, January 06, 2007 11:10 AM

Kaspersky Antivirus PE File Handling Denial of Service

Affected Software: Kaspersky Anti-Virus 4.x Kaspersky Anti-Virus 5.x Kaspersky Anti-Virus 6.x Kaspersky Internet Security 6.x Kaspersky SMTP Gateway 5.x Description: A vulnerability has been reported in Kaspersky Antivirus, which can be exploited by malicious...
Posted by donna | with no comments
Filed under:
Saturday, January 06, 2007 12:39 AM

Microsoft Security Bulletins Advanced Notification (UPDATED)

Microsoft earlier plan to release eight (8) updates on 9 January 2007 but there is a change today on the said plan: Security Updates One Microsoft Security Bulletin affecting Microsoft Windows. The highest Maximum Severity rating for this is Critical...
Posted by donna | with no comments
Filed under:
Saturday, January 06, 2007 12:23 AM

Apple iLife, Opera Browser, OpenOffice, StarOffice & WordPress Vulnerabilities

Apple iLife iPhoto Photocast XML "title" Format String Vulnerability - a vulnerability in iLIfe iPhoto, which potentially can be exploited by malicious people to compromise a user's system has been discovered by Kevin Finisterre. Possible solution is...
Posted by donna | with no comments
Filed under:
Friday, January 05, 2007 12:42 AM

Microsoft Security Bulletins - Advanced Notifications

Microsoft Security Bulletin Advance Notification http://www.microsoft.com/technet/security/bulletin/advance.mspx On 9 January 2007 Microsoft is planning to release: Security Updates Three Microsoft Security Bulletins affecting Microsoft Windows. The highest...
Posted by donna | with no comments
Filed under:
Tuesday, December 26, 2006 7:03 PM

Windows Workstation Service NetrWkstaUserEnum Denial of Service

Affected OS: Microsoft Windows 2000 Advanced Server Microsoft Windows 2000 Datacenter Server Microsoft Windows 2000 Professional Microsoft Windows 2000 Server Microsoft Windows XP Home Edition Microsoft Windows XP Professional h07 has discovered a weakness...
Posted by donna | with no comments
Filed under:
Thursday, December 21, 2006 1:49 AM

Microsoft Windows MessageBoxA Denial of Service Vulnerability

Microsoft Windows is prone to a local denial-of-service vulnerability because the operating system fails to handle certain API calls with unexpected parameters. A local unprivileged attacker may exploit this issue by executing a malicious application...
Posted by donna | with no comments
Filed under:
Wednesday, December 20, 2006 6:47 PM

NOD32 Antivirus DOC parsing Arbitrary Code Execution Advisory

Affected Products: ESET NOD32 Antivirus Vulnerability: Arbitrary Code Execution (remote) Risk: HIGH Vendor communication: 2006/08/24 initial notification of ESET 2006/08/28 ESET Response 2006/08/29 PGP keys exchange 2006/08/29 PoC files sent to ESET 2006...
Posted by donna | with no comments
Filed under:
Wednesday, December 20, 2006 6:40 PM

CA Portal Technology Session Handling Vulnerability;CA Anti-Virus vetfddnt.sys and vetmonnt.sys Local DoS Vulnerabilities

Affected Software: CA BrightStor Portal 11.x CA CleverPath Aion 10.x CA CleverPath Portal 4.x CA eTrust Security Command Center 1.x CA eTrust Security Command Center 8.x CA Unicenter Asset Portfolio Management 11.x CA Unicenter Database Command Center...
Posted by donna | with no comments
Filed under:
Wednesday, December 20, 2006 4:19 AM

Apple Mac OS X Quicktime For Java Information Disclosure Vulnerability;Apple released security fixes

Apple Mac OS X is prone to an information-disclosure vulnerability. Attackers may exploit this issue by convincing victims into visiting a malicious website. Exploiting this issue may allow remote attackers to capture images rendered locally on screen...
Posted by donna | with no comments
Filed under:
Wednesday, December 20, 2006 3:54 AM

Microsoft Security Bulletin Revised: MS06-078

MS06-078 - Vulnerability in Windows Media Format Could Allow Remote Code Execution (923689) http://www.microsoft.com/technet/security/bulletin/MS06-078.mspx?pubDate=2006-12-19 Revisions: V2.0 (December 19, 2006): Bulletin updated has been revised and...
Posted by donna | with no comments
Filed under:
Wednesday, December 20, 2006 3:40 AM

Mozilla Foundation Security Advisories (Dec. 19, 2006)

MFSA 2006-76 XSS using outer window's Function object MFSA 2006-75 RSS Feed-preview referrer leak MFSA 2006-74 Mail header processing heap overflows MFSA 2006-73 Mozilla SVG Processing Remote Code Execution MFSA 2006-72 XSS by setting img.src to BLOCKED...
Posted by donna | with no comments
Filed under: ,
Tuesday, December 19, 2006 2:33 PM

Winamp Web Interface Multiple Vulnerabilities

Winamp Web Interface (Wawi) is "a nice open source plugin for Winamp which allows the remote administration of the media player through any web browser". The Winamp Web Interface, WAWI for short, has been found to contain multiple vulnerabilities that...
Posted by donna | with no comments
Filed under:
Tuesday, December 19, 2006 2:24 PM

Intel 2200BG W29N51.SYS Driver Beacon Frame Race Condition

Breno Silva Pinto has reported a vulnerability in Intel 2200BG drivers, which potentially can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a race condition when W29N51.SYS handles multiple beacon...
Posted by donna | with no comments
Filed under:
Tuesday, December 19, 2006 2:21 PM

Microsoft Outlook Recipient ActiveX Control Lets Remote Users Deny Service

http://www.securitytracker.com/alerts/2006/Dec/1017397.html A vulnerability was reported in Microsoft Outlook. A remote user can cause denial of service conditions. A remote user can create specially crafted HTML that, when loaded by the target user,...
Posted by donna | with no comments
Filed under:
More Posts Next page »