News (95)

Exploit code makes IE flaw more dangerous

The threat posed by a critical flaw in Internet Explorer has been ratcheted up by the release of a program designed to exploit the vulnerability, security researchers warned on Thursday. Read more »

Code to exploit Windows graphics flaw now public

A sample program hit the Internet on Wednesday, showing by example how malicious coders could compromise Windows computers by using a flaw in the handling of a widespread graphics format by Microsoft's software. Read more »

Exploit code chases two Firefox flaws

Two vulnerabilities in the popular Firefox browser have been rated 'extremely critical' because exploit code is now available to take advantage of them. Read more »

Flawed Safari browser endangers Windows users

Two security flaws have been found in the recently released Windows version of Apple's Safari browser — despite Apple's attempts to increase the user-base for Safari, its small size will help protect users, say security experts. Read more »

Microsoft exec kicks off new browser security war

Internet Explorer is more secure than Firefox, according to a senior Microsoft executive, who compared how many vulnerabilities were found in the two browsers -- but critics say his study is flawed. Read more »

DNS disaster: first attacks reported

The first attacks that are likely to have stemmed from a serious Domain Name System flaw have been reported. Read more »

Mozilla fixes critical flaws in Firefox 2.0, Thunderbird

Mozilla has fixed seven vulnerabilities in the latest release of Firefox — SeaMonkey and Thunderbird are also affected. Read more »

Microsoft warns of unpatched IE flaw

Microsoft has issued a security advisory for Internet Explorer, after a research firm published a working exploit to demonstrate how attackers could take advantage of the flaw. Read more »

BlackBerry PDF flaw exposes corporate networks

BlackBerry maker Research in Motion is warning businesses to disable the function which allows a BlackBerry to read PDF files until it can issue an update, after a security flaw was found in the company's software. Read more »

DNS exploits are happening

A fatal flaw with the DNS (Domain Name System) was currently being exploited in internet attacks and more attacks were likely, the security researcher who discovered the flaw said on Thursday in the US Read more »

More Browsers, Code, Flaw News Results

Features (12)

Windows' HTML converter vulnerability rated Critical

A problem has been discovered in the way Windows handles HTML file conversion during cut-and-paste. This buffer overrun could allow an attacker to run rogue code. Read more »

Don't get burned by downloaded code

Reusing code from the Web can save time and money, but there are potential problems too. Avoid these pitfalls when using downloaded code. Read more »

Develop secure software at the application level

Protect your application from input overflow and underflow attacks, and from other common tactics with these development techniques. Read more »

Clickjacking: Potentially harmful web browser exploit

Clickjacking has the potential to redirect unknowing users to malicious websites or even spy on them. We all need to be aware of clickjacking and how to avoid its trappings. Read more »

Watch out for IE Local Zone script injection flaw

A flaw in the way Internet Explorer handles some errors, discovered by security company GreyMagic, could result in an attacker being able to read local files on a system or run various scripting commands. Get the details. Read more »

Bug hunters, software firms in uneasy alliance

Although many software makers promote responsible disclosure, it isn't universally backed by the security community. Critics say it could make security companies lazy in patching. Full disclosure of flaws is better is preferred. Read more »

IE is evolving, but is it enough?

Microsoft's Internet Explorer Web browser is in the process of getting its first significant update in two years this week, as part of the company's overhaul of its operating system. Read more »

The secrets of open source security

The Linux vs. Windows security debate is a contest of examples, which stand in place of the concepts that comprise a larger, more fundamental question of what the security benefits and detriments are for the open source and closed source development models. Read more »

Are keywords the answer for font sizing?

With font sizes in CSS, you have three choices: absolute measurements, relative measurements, and keywords. Here's why we think keywords are the best compromise Read more »

Develop a VoiceXML solution using BeVocal

VoiceXML (VXML) is a markup language like HTML. The difference is that a phone browser rather than a Web browser renders VXML. Get started with this article. Read more »

More Browsers, Code, Flaw Features Results

Blog (1)

QuickTime and Firefox combine for insecurity

Nick Gibson [blogs:byteclub] -- A vulnerability in Apple Software's QuickTime media player can be exploited to execute remote javascript code, or by tapping into Firefox's chrome engine can execute remote code of any kind. Read more »

Log in


Sign up | Forgot your password?

Blogs

RSS feed

What's on?