Adobe has patched a critical vulnerability in Flash Player that was being actively exploited in the wild to infect users with malware.The vulnerability, identified as CVE-2011-2110, was addressed in the newly released Adobe Flash Player 10.3.181.26 for Windows, Macintosh, Linux and Solaris.Flash Player for Android ha... |
15 June 2011
11:56 GMT |
 |
|
Six Apart, the company developing Movable Type, has released updates for the popular blogging platform in order to patch a zero-day vulnerability used by hackers to break into the PBS.org website two weeks ago.At the end of May, LulzSec, a hacker group that recently captured headlines with attacks against Sony and ot... |
9 June 2011
09:45 GMT |
|
|
A critical zero-day vulnerability has been discovered in VLC media player and can potentially be exploited to execute arbitrary code on a user's system.The flaw is located in libmodplug, a third-party library used to load and render music module files in multiple formats including .669, .amf, .ams, .dbm, .dmf, .... |
8 April 2011
07:59 GMT |
|
|
Reputed security company RSA said the intrusion incident it suffered last month was the result of a spear phishing attack leveraging a recently patched Adobe Flash vulnerability.In mid-March, RSA Security, a division of EMC Corp., admitted being the victim of an Advanced Persistent Threat (APT) attack which resulted ... |
3 April 2011
23:57 GMT |
|
|
A critical RealPlayer vulnerability that could be exploited in drive-by download attacks has been disclosed as a zero-day.According to Luigi Auriemma, the independent security researcher who discovered it, the flaw is a classic heap overflow in rvrender.dll that occurs when handing Internet Video Recording (IVR) file... |
24 March 2011
04:54 GMT |
|
|
A security researcher has publicly disclosed 34 serious and critical vulnerabilities in multiple SCADA software applications together with proof-of-concept exploit code. Italian security researcher Luigi Auriemma stirred up controversy two days ago when he published detailed information about vulnerabilities in s... |
23 March 2011
04:47 GMT |
|
|
Microsoft is expected to provide fixes for two zero-day vulnerabilities tomorrow, but they don't include the MHTML remote code execution flaw revealed at the end of January.In it's advance notification for the upcoming security bulletins, Microsoft announced that it will release two patches postponed last m... |
7 February 2011
01:24 GMT |
|
|
The latest version of the Opera browser is affected by a publicly disclosed vulnerability that allows potential attackers to execute arbitrary code remotely.The flaw was discovered by French security researcher Jordi Chancel who disclosed it on his blog on January 7 and described it as an integer truncation error.Mr.... |
24 January 2011
10:48 GMT |
|
|
Faced with no response from the vendor for months, a security researcher published exploit code for a critical vulnerability in a widespread Chinese SCADA software package.The affected software is called KingView and is developed by Beijing WellinControl Technology Development Co., Ltd., commonly referred to as Welli... |
11 January 2011
07:04 GMT |
|
|
Microsoft announced that it doesn't plan to patch two publicly known 0-day vulnerabilities in Internet Explorer and Windows during this month's Patch Tuesday.Next week, on January 11, the Redmond software giant is scheduled to release its monthly batch of security bulletins, however, it will leave out some ... |
7 January 2011
03:23 GMT |
|
|
A 0-day vulnerability in HyperVM, a virtualization application produced by Lxlabs, led to a major hack on the servers of VAServ, a UK-based hosting provider. The attackers obtained root access and wiped large portions of the data. VAServ is a low-cost virtual private server (VPS) provider serving thousands of custom... |
9 June 2009
06:13 GMT |
|
|
The development department at anti-virus vendor Trend Micro has been recently hard at work to plug a hole in the Internet Security 2008 and 2009 products after someone posted a PoC exploit for it. Trend Micro is one of the largest providers of anti-virus and security solutions in the world. Its flagship product is P... |
3 April 2009
06:21 GMT |
|
|
Find us on Google+
