vulnerabilities

Fri
25
Nov
John Lister's picture

Government to Scan Every Internet Device

A government plans to scan every Internet-connected device in the country for vulnerabilities. The agency concerned insists it won't compromise privacy. The scan is the work of the United Kingdom's National Cyber Security Centre (NCSC). It says its ... looking for zero-day vulnerabilities, meaning security holes that hackers are actively exploiting before a fix is available. The NCSC says it will regularly scan all Internet connected devices based in the UK. It doesn't intend to access any data on devices but instead simply make a connection request. The scanning software will then log any ... (view more)

Thu
11
Aug
John Lister's picture

Google Says Android Bug Overblown

Google says a set of security flaws on Android devices may not be as serious as initially feared. It says 90 percent of devices should be largely immune from what's been dubbed the "Quadrooter" exploit. A security research company found the problem ... in software which works with processors manufactured by Qualcomm, which are used in an estimated 900 million Android devices. The bugs affect the communication between different actions (known as processes) running on the phone at the same time. The name of the exploit (Quadrooter) comes from the fact that there are four ... (view more)

Wed
09
Oct
Dennis Faas's picture

Patch Tuesday: Critical IE, Windows 8.1 Flaws Fixed

This month's Patch Tuesday brings two major fixes for Internet Explorer zero-day flaws. In total, Microsoft has released eight new security bulletins, four of which have been marked 'critical' -- Microsoft's highest security rating. Experts point to ... MS13-080 as the most important security update this month. It address ten different vulnerabilities in Microsoft's Internet Explorer (IE) and applies to every supported version of the web browser. Aside from the number of vulnerabilities addressed, the update is considered important because it's designed to eliminate two zero-day flaws that have ... (view more)

Thu
16
May
Dennis Faas's picture

Adobe Fixes 'Critical' Reader, Flash Flaws

Microsoft earlier this week released a Patch Tuesday security update that addressed two 'critical' security flaws, one of which was found in its Internet Explorer browser. Now, Adobe has released its own security update package. The goal: to fix ... vulnerabilities in its Reader, Acrobat, and Flash Player products. Remote Code Execution a Concern Adobe's security update for its Reader and Acrobat software involves almost thirty different vulnerabilities. Most of those flaws are related to potential arbitrary code execution vulnerabilities that, if exploited successfully, could allow a hacker to ... (view more)

Fri
12
Apr
Dennis Faas's picture

Hackers Could Hijack Planes, Security Expert Warns

A security researcher is warning that vulnerabilities in the aviation industry's communications systems could allow a hacker to take control of an airplane mid-flight. German security consultant Hugo Teso recently presented his research on the ... aviation industry's security vulnerabilities at the 'Hack in the Box' conference in Amsterdam. (Source: cnn.com ) Teso, who held a commercial pilot license for more than a decade, spent three years examining the aviation industry's security systems. He found a staggering number of vulnerabilities, particularly in a system known as ADS-B, or automatic ... (view more)

Mon
12
Nov
Dennis Faas's picture

Windows 8, RT: 'Critical' Fixes Coming This Week

Windows 8 and Windows RT will get their first security fixes this Patch Tuesday, November 13, 2012. For Windows 8, three of the fixes have been marked "critical," Microsoft's highest security rating. The fixes address zero-day vulnerabilities ... reported by security firm Vupen last week. Vupen recently announced it had found "multiple vulnerabilities" in Windows 8 and also in Microsoft's newest web browser, Internet Explorer 10. Remote Code Flaws Found in Windows 8 The "critical" fixes will address remote code execution vulnerabilities that, theoretically, could allow a hacker to install malware ... (view more)

Fri
05
Aug
Dennis Faas's picture

August Patch Tuesday to Address 22 Windows Flaws

Microsoft's August Patch Tuesday will be relatively moderate, though it does address 22 flaws. According to Microsoft, 13 of the patches addressed in August Patch Tuesday will address 22 flaws in a number of different programs, including Windows, ... Internet Explorer (IE), Visio and Visual Studio. Compared to last month's Patch Tuesday , the one set for release next Tuesday (August 9th) is only slightly larger: there are more patches offered, but the number of vulnerabilities remains the same. The number of fixes released this month is somewhat unusual as historically, Microsoft doles out fixes ... (view more)

Fri
08
Oct
Dennis Faas's picture

Patch Your PC: Next Tuesday, MS Fixes Nearly 50 Exploits

Microsoft yesterday announced that its next monthly security update due on October 12th, popularly referred to as " Patch Tuesday ," will include a record 16 Security Bulletins -- the most ever released at one time by the company. The bulletins ... address a total of nearly 50 vulnerabilities. Almost All Windows Versions Susceptible to Exploits Of the nearly 50 vulnerabilities to be addressed this next Patch Tuesday , four have been rated 'Critical,' Microsoft's most serious designation for security threats. Another ten are marked 'Important,' the second-highest rating, and two more are ... (view more)

Wed
10
Feb
Dennis Faas's picture

MS Warns: Critical DirectShow Flaw Could Poison Windows

It's still a few days till Valentine's, but already Microsoft has provided its February security gift for Windows users. In yesterday's Patch Tuesday release, the Redmond-based software firm has unveiled fixes for 26 vulnerabilities, almost ... one-fifth of which are marked "critical". Critical Fixes for Windows, MS Office Suite The recent patches address flaws in Microsoft's Windows operating system and its Office software suite. Five of the vulnerabilities have been ear-marked "critical," Microsoft's highest threat rating, and another seven "important". One is considered "moderate". Across the ... (view more)

Thu
14
Jan
Dennis Faas's picture

Update Adobe Flash Immediately, Says Microsoft

If you're still running an old version of Adobe's popular Flash player plug-in, you'd better update, says Microsoft. The software giant, which rarely tells customers to halt their use of another company's wares, has had it with the many bugs and ... security vulnerabilities in Flash Player 6.0, released several years ago. In response to multiple bugs and a slew of security vulnerabilities, Microsoft has through its most recent Security Advisory (#979267) told users that they should either uninstall Flash Player 6.0 or immediately switch to a newer edition of the plugin. Threats Include Remote ... (view more)

Pages

Subscribe to RSS - vulnerabilities