RIM has released security updates for its BlackBerry Enterprise Server (BES) product in order to address an information disclosure and denial of service flaw.The vulnerability, CVE-2011-0287, is located in the BlackBerry Administration API component which passes requests to the BlackBerry Administration Service."A vu... |
18 July 2011
03:31 GMT |
 |
|
McAfee has patched multiple cross-site scripting (XSS) and information disclosure vulnerabilities exposed by ethical hackers in its website.The vulnerabilities were disclosed as zero-days on the Full Disclosure mailing list after McAfee failed to address them for over a month.According to members of the YGN Ethical H... |
29 March 2011
09:41 GMT |
|
|
Microsoft has released its monthly batch of patches yesterday, but left open a vulnerability in the MHTML protocol handler that has been publicly known for two months.The vulnerability, which affects all supported version of Windows, is identified as CVE-2011-0096 and was disclosed in a Chinese-language hacking webzi... |
9 March 2011
11:08 GMT |
|
|
A design flaw on the forum of the UK Labour Party allowed potential spammers to harvest the email addresses of registered members.The security issue was located in the account activation process which involved users confirming their email address by clicking on an unique link sent to them.According to The Register, t... |
10 February 2011
03:49 GMT |
|
|
Apple has released a security update for Mac OS X v10.6.4 and Mac OS X Server v10.6.4, which addresses an information disclosure vulnerability in AFP.The Apple Filing Protocol (AFP) provides files services for Mac OS X. Clients can access AFP resources by browsing for them on the network or opening afp:// URLs direct... |
21 September 2010
04:27 GMT |
|
|
A highly critical Safari vulnerability, which facilitates remote code execution, has been disclosed as a zero-day at the end of last week. Because no patch is available the United States Computer Emergency Readiness Team (US-CERT) recommends disabling JavaScript entirely in the browser.
In a security advisory rele... |
12 May 2010
11:02 GMT |
|
|
A technique used to get complete listings of files and directories from illegal installations of vBulletin has been revealed on a Romanian hacking forum. This vulnerability is generated by a file included in many cracked versions of the forum platform.vBulletin (vB) is a commercial-only Internet forum software writte... |
25 January 2010
13:00 GMT |
|
|
The Internet's top whistleblowing website, Wikileaks, has been faced with a though decision, as someone submitted for publishing a partial list containing the e-mail addresses of its own donors. The web archive administrators eventually published it. Wikileaks specializes in the publishing of sensitive and secr... |
19 February 2009
06:29 GMT |
|
|
The names of 25 witnesses in a federal investigation were disclosed after a worker for the US Attorney Office of Patrick Fitzgerald in Chicago attached a confidential document when sending the criminal complaint to the press. The office wanted to announce the arrest of John Walsh and Charles Martin, principals of One... |
12 January 2009
06:01 GMT |
|
|
A deliveryman from Hertfordshire, UK, bought a camera for £17 (around $30) from eBay. After returning from a vacation in the US, the man tried to download his pictures only to discover images of rocket launchers and photos of al-Qaeda terrorists along with their names and fingerprints.The records fo... |
1 October 2008
08:03 GMT |
|
|
Christopher Boyd, Director of Malware Research for FaceTime Security Labs and Microsoft Security MVP, has come across a security flaw on the popular free image hosting service ImageShack through which anyone could have downloaded the log file associated with any image. Such a log file contains the IP address which wa... |
29 September 2008
10:16 GMT |
|
|
Users reported on Monday, according to The Register, that The Aberdeen Press and Journal website made public personal information of its registered members, through a simple URL manipulation. By simply changing a value in a URL, one could read sensitive information like the real name, home address, e-mail address and... |
2 September 2008
10:56 GMT |
|
|
Find us on Google+
