A zero-day proof-of-concept exploit for a critical vulnerability in the latest Mozilla Firefox version has been recently released. The flaw allows attackers to execute malicious code on users' computers by tricking them into visiting a maliciously crafted page. According to Mozilla's Security Team, the bug... |
15 July 2009
05:12 GMT |
 |
|
A hacker calling himself Arr1val has published proof-of-concept exploit codes for two 0-day vulnerabilities affecting Adobe Reader and Acrobat. The company has already confirmed one of them and strongly suggests disabling JavaScript in the products until a patch will be made available. The flaws are classified by Se... |
29 April 2009
05:27 GMT |
|
|
The release of proof-of-concept exploit code for an unresolved critical bug that allows for remote arbitrary code execution on the latest stable version of Mozilla Firefox has put developers on alert. A fix will be included in the 3.0.8 version of the browser, which is scheduled for release in a few days. The vulner... |
27 March 2009
05:53 GMT |
|
|
Adobe has just released the 10.0.22.87 version of its Flash Player application. It includes fixes for serious vulnerabilities and is classified as critical. Users are urged to deploy the update, as attacks might follow. One of the most serious flaws addressed in the new version has been reported by security and vuln... |
25 February 2009
04:50 GMT |
|
|
Experts from vulnerability research firm Secunia warn that disabling JavaScript in Adobe Reader and Acrobat products does not efficiently protect against the recently-disclosed 0-day remote code execution vulnerability affecting them. Until Adobe will address the problem, another security researcher has created an un... |
25 February 2009
03:24 GMT |
|
|
Security researchers from antivirus vendor Trend Micro warn of a new strain of malware that targets a recently-patched vulnerability in Internet Explorer 7. Successful exploitation results in remote code execution in the form of a malicious .dll file. During "Patch Tuesday" last week, Microsoft addressed a critical ... |
18 February 2009
06:26 GMT |
|
|
The security research company Secunia has released an advisory regarding a highly critical vulnerability that affects Trend Micro's free online HouseCall scanner. If exploited successfully, the bug allows for remote code execution, and the system is completely compromised. HouseCall is an online anti-virus scann... |
23 December 2008
06:13 GMT |
|
|
Adobe has announced the existence of no less than five local and remote code execution vulnerabilities in the 8.1.2 and earlier versions of Adobe Reader and Acrobat. Security patches have been released for all of them along with an advisory, which also includes a privilege escalation and a denial of service vulnerabi... |
5 November 2008
08:08 GMT |
|
|
Opera 9.61 security update was released last week and fixed a vulnerability in the browser's History Search feature which allowed for remote attackers to read the browser history of the users visiting a maliciously crafted web page. Even though Opera rated this vulnerability as “Extremely Severe”, it... |
28 October 2008
04:47 GMT |
|
|
Microsoft usually releases patches once a month, on a day called by the industry the “Patch Tuesday”. However, the Redmond company released an unscheduled advisory along with a patch for a highly critical vulnerability in the Server service, which can be exploited remotely and allow code execution. Accord... |
24 October 2008
08:26 GMT |
|
|
