flaw

Wed
19
May
Dennis Faas's picture

Microsoft Warns of 'Unlikely' Windows 7 Aero Flaw

A new security flaw in Microsoft's very popular Windows 7 operating system (OS) could open users up to a remote code execution and denial-of-service attack, Microsoft said in a security advisory on Tuesday evening. The vulnerability affects only ... 64-bit versions of Windows Server 2008 R2 and Windows 7. The flaw affects the Canonical Display Driver, or CDD.DLL, used in the Windows Graphics Device Interface (GDI) and DirectX drawing. The vulnerability is tied to the graphics system's desktop composition process. (Source: zdnet.com ) Microsoft: Remote Code Attack "Unlikely" Luckily, it ... (view more)

Fri
14
May
Dennis Faas's picture

Researcher Reveals Critical Flaw in Safari Web Browser

A zero-day flaw has recently been discovered in the latest version of Apple's Safari browser. The flaw is considered to be "highly critical," the second-highest rating in the five-step threat-assessment system. It also has the potential to infect ... Windows PCs with malicious code. In actuality, the bug is the result of an error in the handling of the browser's parent windows. It can result in a "function call using an invalid pointer". Different Flaw, Same Tactics Malware peddlers might also attempt to exploit the vulnerability by creating a malicious site and coaxing users into coming to the ... (view more)

Wed
10
Mar
Dennis Faas's picture

Light Patch Tuesday Release Brings Heavy Warning from Microsoft

Microsoft yesterday unveiled its March Patch Tuesday offering, and by comparison to recent months it was a relatively calm affair. Only two security bulletins addressing eight vulnerabilities were announced, but they were joined by a warning related ... to a new zero-day Internet Explorer flaw which does not yet have a fix. Both of the bulletins Microsoft released in accordance with its March Patch Tuesday have been designated "important". That's a big step down from this past February's Patch Tuesday , where about one-fifth of the 26 vulnerabilities were considered "critical," Microsoft's ... (view more)

Wed
10
Feb
Dennis Faas's picture

MS Warns: Critical DirectShow Flaw Could Poison Windows

It's still a few days till Valentine's, but already Microsoft has provided its February security gift for Windows users. In yesterday's Patch Tuesday release, the Redmond-based software firm has unveiled fixes for 26 vulnerabilities, almost ... one-fifth of which are marked "critical". Critical Fixes for Windows, MS Office Suite The recent patches address flaws in Microsoft's Windows operating system and its Office software suite. Five of the vulnerabilities have been ear-marked "critical," Microsoft's highest threat rating, and another seven "important". One is considered "moderate". Across the ... (view more)

Fri
05
Feb
Dennis Faas's picture

Black Hat Hackers Conference Confirms New IE Flaw

Microsoft has confirmed a flaw in Internet Explorer could be used by hackers to access the files on a user's computer. The flaw was demonstrated at a security conference this week. The man who discovered the flaw, Jorge Luis Alvarez Medina of Core ... Security Technologies, says that so far as he can tell, it's not something which can be easily patched. The good news is that Windows Vista and Windows 7 both have default options for Internet Explorer which can block the problem. Medina first noted the existence of the flaw last week, but held back details until this week's Black Hat Conference. ... (view more)

Mon
18
Jan
Dennis Faas's picture

Avoid Internet Explorer, Says German Government

The German government has issued an official warning that citizens should avoid using Internet Explorer. It's a response to a recently discovered flaw in the browser that is believed to have been exploited by hackers attacking Google in China. ... Germans Expect Flaw to be Widely Exposed Soon The warning comes from the Federal Office for Information Security, known locally as the Bundesamt für Sicherheit in der Informationstechnik (BSI). The warning, which was translated via Google Translate, read: "The BSI expects that [the Internet Explorer] vulnerability will be used [very soon] for attacks on ...<a href="/news/5401/avoid-internet-explorer-says-german-government" class="more-link">view more

Tue
12
Aug
Dennis Faas's picture

Internet Security Flaw 'Worse Than Realised'

A recently-discovered security flaw in fundamental operation of the Internet could be much more serious than first believed. Every form of network, including email services, could be vulnerable. Dan Kaminsky, the security expert heading efforts to ... solve the problem, told a Las Vegas convention that the central problem can be exploited in at least 15 different ways. As we recently reported , the heart of the problem is the Domain Name System (DNS), which translates website addresses into the identifying number of the particular computer where the content of site is physically stored. A key ... (view more)

Wed
02
Apr
Dennis Faas's picture

Mac Hacker Wins $10,000

A security researcher won $10,000 for hacking a MacBook Air in just two minutes. Rubbing salt in the wound, he said Apple's operating system was the easiest of targets. The competition, held at Vancouver security conference CanSecWest, challenged ... entrants to break into one of three laptops: a MacBook Air running the latest version of Macintosh's Operating System, a Fujitsu running the latest edition of Windows Vista, and a Sony Vaio running Ubuntu, an operating system based on the open-source Linux system. All three machines were protected with the latest security patches offered by the ... (view more)

Tue
22
Aug
Dennis Faas's picture

Yahoo Mail Again Secure

For those like myself who use Yahoo's online mail service everyday, the recent announcement that a security leak has been rectified is welcome news. A few problems have arisen this summer, including a Javascript flaw featuring the Yammaner worm with ... the ability to attack all versions of Yahoo web-based mail except for the most recent (Summer 2006) version of the program. News of the threat was first reported in mid-June, but the most serious attacks appear to be from threats arising earlier this month. Emerging in Late July, Yahoo mail users were susceptible to an attacker with the potential ... (view more)

Pages

Subscribe to RSS - flaw