News (225)

Exploit code makes IE flaw more dangerous

The threat posed by a critical flaw in Internet Explorer has been ratcheted up by the release of a program designed to exploit the vulnerability, security researchers warned on Thursday. Read more »

IE plus Firefox equals 'critical' security risk

Firefox combined with Internet Explorer on the same desktop opens up a zero day vulnerability that is highly critical, according to security researchers. Read more »

Multiple flaws reported in Linux kernel

Multiple vulnerabilities have been reported in many iterations and distributions of Linux. Read more »

Exploit code chases two Firefox flaws

Two vulnerabilities in the popular Firefox browser have been rated 'extremely critical' because exploit code is now available to take advantage of them. Read more »

Apple QuickTime exploit in the wild

Symantec has found active exploit code in the wild for an unpatched Apple QuickTime vulnerability. Read more »

Code to exploit Windows graphics flaw now public

A sample program hit the Internet on Wednesday, showing by example how malicious coders could compromise Windows computers by using a flaw in the handling of a widespread graphics format by Microsoft's software. Read more »

Microsoft Office flaws up 300 percent

Between 2006 and 2007, there was an almost threefold rise in flaws found in Microsoft software, according to vulnerability-scanning company Qualys. Read more »

Apple QuickTime zero-day flaw 'extremely critical'

Security research firm Secunia has reported what it calls an "extremely critical" vulnerability in media-streaming program Apple QuickTime. Read more »

Image flaw pierces PC security

Six vulnerabilities in a common code that handles an open-source image format could allow intruders to compromise computers running Linux and may allow attacks against Windows PCs as well as Macs running OS X. Read more »

Firefox phishing vulnerability discovered

A newly discovered flaw in Firefox could allow cybercriminals to take advantage of Web surfers. Read more »

More Exploit, Flaw, Secure News Results

Features (13)

Highly critical flaw affects NetBSD and OpenBSD

A vulnerability that can result in a Denial of Service event, privilege escalation, or remote system access has been shown to exist in two popular Unix brands: NetBSD and OpenBSD. Read more »

Ten commandments for the security-conscious programmer

Here are the steps from Builder AU that you should take to keep hackers and other security threats at bay. Read more »

New security flaw in Outlook, IE

A Danish security researcher has warned that a recently discovered software flaw could leave user's systems open to malicious code carried on Web pages or in e-mails. Read more »

Clickjacking: Potentially harmful web browser exploit

Clickjacking has the potential to redirect unknowing users to malicious websites or even spy on them. We all need to be aware of clickjacking and how to avoid its trappings. Read more »

Watch out for IE Local Zone script injection flaw

A flaw in the way Internet Explorer handles some errors, discovered by security company GreyMagic, could result in an attacker being able to read local files on a system or run various scripting commands. Get the details. Read more »

Linux kernel flaw could trigger DoS incidents

Many Linux servers may be easy targets for DoS attacks because of a flaw in the Linux 2.4 kernel. Read more »

The secrets of open source security

The Linux vs. Windows security debate is a contest of examples, which stand in place of the concepts that comprise a larger, more fundamental question of what the security benefits and detriments are for the open source and closed source development models. Read more »

Open, closed source security about equal?

Proprietary programs should mathematically be as secure as those developed under the open-source model, a Cambridge University researcher argued in a paper presented in Toulouse, France. Read more »

ASP.NET security holes

Learn about the recently discovered holes in ASP.NET, and ponder who should be responsible for security. Read more »

Find and fix weak OpenSSL/OpenSSH keys: Debian-based Linux vulnerability

A recent vulnerability was found in the OpenSSL package as provided by Debian and Debian-based Linux distributions, such as Ubuntu, that broke the effectiveness of the OpenSSL PRNG (Predictable Random Number Generator). Read more »

More Exploit, Flaw, Secure Features Results

Blog (2)

Anti-Virus software hit with 6 critical vulnerabilities

Staff [blogs:syslog] -- Kaspersky Labs announced over easter that their latest maintenance pack fixes six critical security vulnerabilities in their anti-virus software. The security flaws affect the Anti-Virus 6.0 and Internet Security products, including both the workstation and server editions. Read more »

QuickTime and Firefox combine for insecurity

Nick Gibson [blogs:byteclub] -- A vulnerability in Apple Software's QuickTime media player can be exploited to execute remote javascript code, or by tapping into Firefox's chrome engine can execute remote code of any kind. Read more »

Log in


Sign up | Forgot your password?

Blogs

RSS feed

  • Staff Crying, mooning and leaving

    In this week's roundup we see that continuous whining can get results, Linux users get 64-bit Flash and Moonlight previews, the latest in the Yahoo/Microsoft relationship and Senator Conroy ducks and weave in Senate Question Time. Read more »

    -- posted by Staff

  • Brendon Chase Sun eye Web developers with Netbeans 6.5

    Despite the recent employment axe hitting Sun the company has pushed out a new release of its Netbeans open source IDE with an eye to appeal more to Web developers. Read more »

    -- posted by Brendon Chase

  • Renai LeMay BarCamp buzz: Let the hacking continue

    Attending last weekend's BarCamp in Sydney, it was hard to escape the conclusion that a certain "dot-com bust" flavour had seeped into the kool aid previously being drunk by Australia's web 2.0 and early stage start-up sector. Read more »

    -- posted by Renai LeMay

What's on?