logo

zeroday

Category: vulnerabilities | Posted by Avatar Staff 331 days ago
Via: http://www.symantec.com | Tags: zeroday vulnerabilities trailblazers comments Discuss  
In the world of IT, many vendors publish software sprinkled with bugs and potential security holes. It is very difficult (some would argue next to impossible) and extremely costly to create totally bug- and vulnerability-free software. So software vendors usually aim for a balance between acceptable quality versus cost. Of course that means some software contains bugs and vulnerabilities just waiting to be uncovered. In the majority of cases, the vendors and their software never come to the attention of m read more »
addto Add this link to... report Bury 
Category: vulnerabilities | Posted by Avatar Staff 331 days ago
Via: http://www.symantec.com | Tags: zeroday exploit apple quicktime vulnerability comments Discuss  
Proof of concept exploit code for a newly discovered vulnerability in Apple's QuickTime player has been made available to the public today. The vulnerability (Apple QuickTime RTSP Response Header Content-Length Remote Buffer Overflow Vulnerability) was first reported on November 23rd by Polish security researcher Krystian Kloskowski. The publicly released exploit works successfully when tested with the latest stand-alone QuickTime player application version 7.3. It does not seem to execute any shellcode read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 330 days ago
Via: http://feeds.ziffdavisenterprise.com | Tags: excel zeroday unpatched comments Discuss  
p strong Patch Tuesday includes 11 security bulletins with patches for 17 documented software flaws but none for a Microsoft Excel zero-day that is under attack. strong p ...Go beyond knowing technology and manage it Get a Master of Science in Technology Management online. Enroll with National University today. read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 265 days ago
Via: http://www.infoworld.com | Tags: chinese blogs zeroday flaw microsoft works comments Discuss  
Chinese-language blogs are detailing a zero-day vulnerability in Microsoft Works, the company's lower-end office productivity suite, according to security vendor McAfee. read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 245 days ago
Via: http://www.infoworld.com | Tags: zeroday treasure hunt researcher hides attack web comments Discuss  
Security researcher Aviv Raff has published code that would allow someone to take control of a computer running Internet Explorer, but there's a catch. He's not saying exactly where he's hidden the attack. read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 244 days ago
Via: http://feeds.ziffdavisenterprise.com | Tags: zeroday challenge revives disclosure debate comments Discuss  
An Israeli researcher has embedded a proof-of-concept Zero-day bug in his blog and challenged readers to find it....Build IT Knowledge with Current & Trusted Content Helps Employees Develop & Hone New Technical Programming Skills. Sign Up & Get Full Access. read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 183 days ago
Via: http://feeds.ziffdavisenterprise.com | Tags: microsoft pushes workarounds dodge zeroday attack comments Discuss  
Microsoft's suggested workarounds can help thwart targeted attacks against the ActiveX control for Snapshot Viewer.... read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 160 days ago
Via: http://lists.jammed.com | Tags: isn oracle issues zeroday security alert comments Discuss  
From: InfoSec News <alerts_at_private>Date: Fri, 1 Aug 2008 04:06:00 -0500 (CDT)http://www.vnunet.com/vnunet/news/2222923/oracle-issues-security-warningBy Shaun Nichols in San Franciscovnunet.com31 Jul 2008Oracle has posted an alert [1] for a serious flaw in its WebLogic Server and Express products.The issue lies within the Apache Connector component used by both systems, and attack code is publicly available.Oracle warned that the attack could be remotely exploited by an attacker without the need fo read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 147 days ago
Via: http://go.theregister.com | Tags: torrent silently fixes longstanding zeroday vuln comments Discuss  
No fanfare herePopular BitTorrent client µTorrent has quietly patched a vulnerability that created a means for hackers to load malware onto the PCs of file-sharers simply by persuading them to open a poisoned Torrent.… read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 112 days ago
Via: http://www.infoworld.com | Tags: hacker posts quicktime zeroday attack code comments Discuss  
A hacker has released attack code that exploits an unpatched vulnerability in Apple's QuickTime,  just a week after the company updated the media player to plug nine other serious vulnerabilities, a security researcher said Wednesday. read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 73 days ago
Via: http://go.theregister.com | Tags: opera scrambles quash zeroday bug freshlypatched browser comments Discuss  
Multiple platform pwnageJust a few days after Opera Software patched critical vulnerabilities in its browser, researchers have identified another serious bug that allows attackers to remotely execute malicious code on the machines of people running the most recent version of the software. Opera has vowed to fix the flaw soon.… read more »
addto Add this link to... report Bury