Displaying items by tag: Flaw

A warning has been issued by the Israel National Cyber Directorate about a critical remote code execution flaw in the Drupal content management system.

A script that mines for cryptocurrencies on Linux systems first needs to infect these systems, either by using brute force to guess SSH passwords or else by gaining entry through the use of stolen credentials that can be bought on dark web forums.

After patching one of the Flash zero-day security flaws last week, Adobe has finally issued a patch for the second zero-day flaw that could let attackers take over your computer.

Some people got very excited when word spread of the discovery of a 'scary' vulnerability in Android that could be exploited to modify an application without the operating system detecting that the app's signature and content no longer match.

ANZ Bank has disabled the use of all online bank statements until a critical flaw is fixed.

HTC Sense phones may be exposing loads of users' personal data and information, a dedicated Android web blog claims.

The first Patch Tuesday for 2011 has proved a quiet affair with just two bulletins from Microsoft, only one of which is rated critical.

Microsoft has warned its customers of a vulnerability in Windows' graphics rendering engine. No patch is available yet, but the company is unaware of any attacks using the vulnerability.

The latest version of Firefox fixes 11 vulnerabilities, most of them critical.

Apple has updated its Safari browser, delivering several minor improvements plus a laundry list of security fixes. Versions 4 and 5 for both Mac OS X and Windows and Safari are affected.

Apple has released a second version of Mac OS X Server 10.6.5 to repair a security issue in the originally released build.

Microsoft has now widened the distribution of its latest security patch for Windows. It is now being pushed out through Windows Update and other channels.

Microsoft is hastening the release of a patch for a publicly disclosed security vulnerability in ASP.NET. It will be available for download tonight (Australian time), and will be pushed out via Windows Update in a few days time.

The 0day exploit for Adobe Acrobat and Reader can be mitigated by a free tool from Microsoft, according to officials at the two companies.

Adobe is warning its users that a critical vulnerability in Acrobat and Reader is being actively exploited.

Updates to Apple's Safari browser address a trio of security issues, one specific to Windows, as well as delivering compatibility improvements. The iWeb web page creation program has also been updated.

Adobe has released updates for Acrobat and Reader that fix multiple critical security vulnerabilities.

Microsoft will patch critical vulnerabilities in Windows and Office this month, but a fix for the SharePoint cross-site scripting vulnerability isn't ready yet.

Adobe has released an update for Photoshop CS4 to fix multiple critical security vulnerabilities. The update also addresses a number of performance and other issues.

Microsoft has re-released a previously withdrawn patch for a critical vulnerability in Windows 2000 Server. The company thinks it's cracked the problem this time.