Vulnerabilities

Welcome to the 'Vulnerabilities' tag page at Technorati. This page features content from the farthest reaches of the Blogosphere that authors have "tagged" with 'Vulnerabilities'.

Latest blogosphere posts tagged “Vulnerabilities”

• Top Web Sites Moving to Mitigate SSL/TLS Bug

  
  Security Watch — Authority: 547
  Netcraft reports that 24 of the top 100 HTTPS sites have disabled renegotiation , blocking a recently-revealed flaw in the SSL3/TLS protocols. There is some controversy over how much of a real-world danger that flaw represents . Disabling renegotiations blocks the attacks with only a theoretical costA lot of work is ...
  4 hours ago

• Its Holiday Cyber Theft Season

  
  Security Watch — Authority: 547
  Today is Cyber Monday , a marketing creation of the National Retail Federation as the Monday after Black Friday. The Internet is full of deals! deals! deals!Sadly, its full of scams too. How do you stay safe?Check out our feature on Safe Online Shopping by Neil Rubenking. Its full of guidelines that will help you ...
  5 hours ago

• Vuln: Apache Tomcat Form Authentication Existing/Non-Existing Username Enumeration Weakness

  
  Firmo Technologies, L.L.C., Kansas City Unix and Open Source Software Support. |AIX|Solaris|Linux| — Authority: 150
  Source Apache Tomcat Form Authentication Existing/Non-Existing Username Enumeration Weakness
  1 day ago

• Vuln: Apache Tomcat ‘RequestDispatcher’ Information Disclosure Vulnerability

  
  Firmo Technologies, L.L.C., Kansas City Unix and Open Source Software Support. |AIX|Solaris|Linux| — Authority: 150
  Source Apache Tomcat ‘RequestDispatcher’ Information Disclosure Vulnerability
  1 day ago

• Vuln: Apache Tomcat Java AJP Connector Invalid Header Denial of Service Vulnerability

  
  Firmo Technologies, L.L.C., Kansas City Unix and Open Source Software Support. |AIX|Solaris|Linux| — Authority: 150
  Source Apache Tomcat Java AJP Connector Invalid Header Denial of Service Vulnerability
  1 day ago

• Vuln: PHP ‘proc_open()’ ’safe_mode_protected_env_var’ Restriction-Bypass Vulnerability

  
  Firmo Technologies, L.L.C., Kansas City Unix and Open Source Software Support. |AIX|Solaris|Linux| — Authority: 150
  Source PHP ‘proc_open()’ ’safe_mode_protected_env_var’ Restriction-Bypass Vulnerability
  2 days ago

• Vuln: Mozilla Firefox Form History Information Disclosure Vulnerability

  
  Firmo Technologies, L.L.C., Kansas City Unix and Open Source Software Support. |AIX|Solaris|Linux| — Authority: 150
  Source Mozilla Firefox Form History Information Disclosure Vulnerability
  3 days ago

• Vuln: IBM DB2 Multiple Unspecified Security Vulnerabilities

  
  Firmo Technologies, L.L.C., Kansas City Unix and Open Source Software Support. |AIX|Solaris|Linux| — Authority: 150
  Source IBM DB2 Multiple Unspecified Security Vulnerabilities
  3 days ago

• Vuln: Cacti Multiple Cross Site Scripting and HTML Injection Vulnerabilities

  
  Firmo Technologies, L.L.C., Kansas City Unix and Open Source Software Support. |AIX|Solaris|Linux| — Authority: 150
  Source Cacti Multiple Cross Site Scripting and HTML Injection Vulnerabilities
  3 days ago

• Bugtraq: [ GLSA 200911-05 ] Wireshark: Multiple vulnerabilities

  
  Firmo Technologies, L.L.C., Kansas City Unix and Open Source Software Support. |AIX|Solaris|Linux| — Authority: 150
  Source [ GLSA 200911-05 ] Wireshark: Multiple vulnerabilities
  3 days ago

• Vuln: America Online ICQ ActiveX Control Remote Code Execution Vulnerability

  
  Firmo Technologies, L.L.C., Kansas City Unix and Open Source Software Support. |AIX|Solaris|Linux| — Authority: 150
  Source America Online ICQ ActiveX Control Remote Code Execution Vulnerability
  3 days ago

• Bugtraq: [resent] [ GLSA 200911-04 ] dstat: Untrusted search path

  
  Firmo Technologies, L.L.C., Kansas City Unix and Open Source Software Support. |AIX|Solaris|Linux| — Authority: 150
  Source [resent] [ GLSA 200911-04 ] dstat: Untrusted search path
  3 days ago

• Bugtraq: [ GLSA 200911-03 ] UW IMAP toolkit: Multiple vulnerabilities

  
  Firmo Technologies, L.L.C., Kansas City Unix and Open Source Software Support. |AIX|Solaris|Linux| — Authority: 150
  Source [ GLSA 200911-03 ] UW IMAP toolkit: Multiple vulnerabilities
  3 days ago

• Bugtraq: Re: Millions of PDF invisibly embedded with your internal disk paths

  
  Firmo Technologies, L.L.C., Kansas City Unix and Open Source Software Support. |AIX|Solaris|Linux| — Authority: 150
  Source Re: Millions of PDF invisibly embedded with your internal disk paths
  3 days ago

• The Other Patch Tuesday is the Fourth

  
  Security Watch — Authority: 547
  Everyone knows about Patch Tuesday on the second Tuesday of the month, but its less-known that Microsoft regularly releases non-security updates on the 4th Tuesday of the month. You might have noticed Automatic Updates rebooting your system with several non-security updates just this Tuesday.Ive never heard an ...
  4 days ago

• Oops, They Did It Again… IE Flaws Attacked

  
  Infosecurity.US — Authority: 133
  News , overnight, of another, highly critical Microsoft Corporation’s (NasdaqGS: MSFT ) Internet Explorer vulnerability making the rounds… A flaw in the Redmond, WA software behemoth’s browser CSS implementation permits the execution of nefarious code, and the subsequent capability of the attack generator ...
  5 days ago

• OWASP India: Researchers Discover Compromised Firefox Add-ons

  
  Infosecurity.US — Authority: 133
  News , from the recent Indian OWASP AppSec Conference , of the discovery of very badly behaved Mozilla Firefox extensions. Tell me it ain’t so… More information, including links to the HelpNet Security blog post appears after the jump. From the HelpNet Security blog post: “ Zero-day vulnerabilities in ...
  5 days ago

• Facebook Hit With A New Clickjacking Worm

  
  CyberInsecure.com — Authority: 128
  The attack began when a victim encountered the image of the near-naked woman on a friend’s profile page along with the words “Want 2 C something hot? Click da button, baby!” Facebookers who took the bait - and were logged in to their accounts at the time - found their profile pages were updated to [...]
  6 days ago

• Metasploit 3.3 Released! Exploitation Framework

  
  Darknet - The Darkside — Authority: 461
  What is Metasploit?The Metasploit Framework is a development platform for creating security tools and exploits. The framework is used by network security professionals to perform penetration tests, system administrators to verify patch installations, product vendors to perform regression testing, and security ...
  6 days ago

• iPhone Worm Infects Devices And Redirecs Dutch Online Bank Users To A Phishing Site

  
  CyberInsecure.com — Authority: 128
  The second worm to infect jailbroken iPhone users reportedly targets customers of Dutch online bank ING Direct. Surfers visiting the site with infected devices are redirected to a phishing site designed to harvest online banking login details, the BBC reports. ING Direct told the BBC it planned to warn users’ of the ...
  6 days ago

Comments about Vulnerabilities