Security Corner:

Exploits


August 12, 2009  12:39 AM

Patch Tuesday – 19 Windows Security Flaws Fixed



Posted by: Ken Harthun
Critical update, Exploits, Patch management, Patch Tuesday, Security, Security management, Vulnerabilities

It’s that day of the month again and this time Microsoft has patched 19 security holes, 15 of which have a “critical” rating. The good news is that none of the vulnerabilities affect Windows 7. As usual, a bunch of the flaws stem from ActiveX controls, probably the worst thing...

August 8, 2009  1:15 PM

Tsk, Tsk! Weak Passwords Allow Congressional Web Site Defacements



Posted by: Ken Harthun
Cyber-vandal, Exploits, Hacking, Password, Security, Security management, SQL Injection, Vulnerabilities

This is simply idiocy—or gross negligence—of the highest degree. In the last week, more than a dozen US Representatives’ websites were defaced by hackers who posted digital graffiti on the home pages. The graffiti read, “H4ck3d by 3n_byt3 @ Indonesia H4ck3rs” (see screen shot). There was...


July 29, 2009  9:08 PM

I’ll Say it Again—Turn Off the Remote Web Management Interface!



Posted by: Ken Harthun
Embedded systems, Exploits, Firewalls, Hacking, insecure, Remote Code Execution, Security, Security management, Storage, Vulnerabilities

I don’t know how many times I’ve told people that the embedded management interface on most devices is a security breach waiting to happen. I just got wind of some news, but can’t seem to find anything more than this mention. As soon as I dig up some details, I’ll let you know. This...


June 23, 2009  5:45 PM

Foxit Reader Contains Multiple Vulnerabilities



Posted by: Ken Harthun
Exploits, Foxit Reader, PDF Flaw, Security, Vulnerabilities

According to a U.S. Cert bulletin issued today, my favorite PDF reader, Foxit Reader has multiple security vulnerabilities:

  Bookmark and Share     0 Comments     RSS Feed     Email a friend


March 27, 2009  5:32 PM

NoScript Blocks Latest Firefox Bug



Posted by: Ken Harthun
Browsers, Exploits, Firefox, NoScript, Scripting, Secure Computing, Security, Security management, Vulnerabilities

Got NoScript? If not, get it--the latest Firefox bug, an XML tag remote memory corruption vulnerability released on Wednesday, is mitigated by having the NoScript addon installed. The bug can be exploited by a malicious...


March 6, 2009  1:35 AM

Firefox 3.0.7 Released, Addresses Multiple Vulnerabilities



Posted by: Ken Harthun
Critical update, Denial of Service, Exploits, Firefox, insecure, Security, Vulnerabilities

Mozilla Foundation released Firefox 3.0.7 today to address multiple vulnerabilities. According to the Security Advisories, the vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, obtain sensitive information, or spoof the location bar. Mozilla says...


January 17, 2009  3:27 AM

Software for Secure Computing: Exploit Prevention Labs Link Scanner



Posted by: Ken Harthun
Anti-malware, Cybercrime, Exploits, Malware, Secure Computing, Security, Vulnerabilities

With cybercriminals now actively poisoning search results and legitimate websites--unbeknownst to the webmasters--you can't be too careful when clicking on links. Take a look at this video library presented by


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: