Foxit Software has released version 5.0.2 of its PDF reader program in order to address two vulnerabilities that can result in remote code execution of arbitrary code.One of the vulnerabilities was discovered by Dmitriy Pletnev of Secunia and can be exploited by tricking the victim into opening a maliciously-crafted ... |
21 July 2011
14:26 GMT |
 |
|
Two security vulnerabilities which can be exploited to execute arbitrary code have been identified in different components of the popular VLC media player application.Vulnerability research vendor Secunia rates the two VLC security flaws discovered by security researcher Hossein Lotfi as highly critical.One of the vu... |
14 July 2011
08:36 GMT |
|
|
Adobe has released a major Flash Player update, which, in addition to several new features, patches critical security vulnerabilities that could allow attackers to compromise computers.The new Flash Player 10.2.152.26 version fixes a total of thirteen flaws, all of which could be exploited to crash the application an... |
9 February 2011
04:58 GMT |
|
|
Mozilla has released versions 3.6.13 and 3.5.16 of its popular Firefox browser to address critical vulnerabilities that could be exploited to execute arbitrary code.There are a total of eleven vulnerabilities affecting the browser’s both 3.6.x and 3.5.x branches and nine of them are rated as having a critical i... |
9 December 2010
13:39 GMT |
|
|
Apple has released version 7.6.9 of its QuicktTime player as a security update, addressing critical vulnerabilities that can potentially be exploited to execute arbitrary code.Most of the security issues apply to QuickTime 7 on Mac OS X v10.5.8, Mac OS X Server v10.5.8, Windows 7, Vista and XP SP2 or later, but there... |
8 December 2010
02:31 GMT |
|
|
Apple has released version 4.1 of the software powering its Apple TV (2nd generation) product, which addresses critical security issues in several components.Five vulnerabilities, the most severe of which can allow for the execution of arbitrary code on the system, were identified and patched in the FreeType font eng... |
23 November 2010
08:22 GMT |
|
|
Apple has released new versions of its Safari browser in order to address a significant number of vulnerabilities, many of which allow for arbitrary code execution.Apple's newly published security advisory mentions 27 flaws discovered and patched in Safari 4 and 5 for Mac and Safari 5 for Windows.The new version... |
19 November 2010
02:22 GMT |
|
|
French security research company VUPEN confirmed that an Adobe Reader and Acrobat vulnerability reported as a zero-day earlier today, can be exploited to execute arbitrary code.According to the reputed vulnerability intelligence vendor, the flaw is caused by a heap corruption error in the EScript.api plugin, which ca... |
4 November 2010
12:57 GMT |
|
|
A local privilege escalation vulnerability that could allow attackers to execute malicious code with root rights was patched in the newly released Linux kernel 2.6.36.The vulnerability, identified as CVE-2010-3904, is located in the Reliable Datagram Sockets (RDS) protocol implementation in Linux kernel and can be ex... |
21 October 2010
13:46 GMT |
|
|
QuickTime 7.6.8 for Windows has been released to address two critical arbitrary code execution vulnerabilities, one of which was being actively exploited in the wild.The first vulnerability, identified as CVE-2010-1818, is located in the QuickTime ActiveX control and can be leveraged to execute arbitrary code by tric... |
16 September 2010
06:31 GMT |
|
|
Version 3.5.5 of the Samba Windows-Unix interoperability software suite was released in order to address a critical vulnerability that could be exploited to execute arbitrary code.
The vulnerability, which is identified as CVE-2010-3069 and affects all previous Samba versions, leads to a buffer overflow condition an... |
14 September 2010
12:25 GMT |
|
|
The latest patched version of Flash Player is vulnerable to a type of attack known as remote binary planting or DLL preloading.According to information disclosed by an outfit called the YGN Ethical Hacker Group, attackers can force Flash Player to execute arbitrary code by placing a rogue file named dwmapi.dll on the... |
10 September 2010
14:36 GMT |
|
|
Opera has released the 10.62 version of its browser, which addresses a security issue known as remote binary planting or DLL hijacking."Opera uses dynamic link libraries (DLLs) of its own, and several provided by the host operating system or plug-ins."In some cases, Opera searches for these DLLs in the same location ... |
9 September 2010
07:53 GMT |
|
|
A new Windows vulnerability that could allow for privilege escalation and arbitrary code execution has been identified. According to vulnerability research company VUPEN Security, the flaw affects all supported versions of Microsoft Windows.The issue is described by VUPEN in its advisory as a Windows kernel memory co... |
6 August 2010
13:18 GMT |
|
|
French vulnerability research company VUPEN Security reports the discovery of a use-after-free vulnerability affecting all versions of Internet Explorer that could possibly lead to code execution. According to the company's new "no more bugs for free" policy, details of the flaw will not be shared with Microsoft... |
7 July 2010
06:33 GMT |
|
|
Vulnerability intelligence vendor Secunia warns that a highly critical remotely exploitable vulnerability has been identified in the recently released Opera 10.52. The browser developer has patched the potential arbitrary code execution flaw in Opera 10.53.The issue was identified by a programmer named Mathias Karlss... |
29 April 2010
11:08 GMT |
|
|
Core Security has issued a warning on "Multiple vulnerabilities in iCal." Classified as "remotely exploitable," the vulnerabilities in iCal "may allow un-authenticated attackers to execute arbitrary code on vulnerable systems with (and potentially without) assistance from the end user of the application, or to repeat... |
22 May 2008
04:43 GMT |
|
|
Find us on Google+
