VB Migration

Tag: vulnerability

  • 4 critical flaws patched this Patch Tuesday

    Microsoft’s June Security Bulletin covers range of vulnerabilities. Microsoft ‘s latest ‘Patch Tuesday’ security bulletin, released yesterday, includes fixes for six vulnerabilities, four of which are rated ‘critical’. In the June release two of the fixes plug holes in Vista and earlier versions of the operating system, a third patch fixes a vulnerability in Internet…

  • Bugs found in Apple’s new Windows browser within hours of release

    Safari not so good-y. A number of security researchers say they found bugs in Apple ‘s brand new web browser Safari for Windows just hours after its public beta release on 11 June. The only bug to have been independently verified so far was discovered by researcher Thor Larholm and concerns Safari ‘s failure to…

  • Serious holes in Yahoo! Messenger

    Critical vulnerabilities fully disclosed. Two security flaws in the popular Yahoo! Messenger communications software have been reported, with full details available online before a fixed version of the product became available. Initial reports of the flaws, both buffer overflow issues in ActiveX controls used by the software, imply they are simple to exploit, with in-depth…

  • CA struck by vulnerability

    CAB handling issue affects swathe of products. Two flaws related to the handling of CAB archive files by the CA anti-virus engine have been reported, rendering products across CA ‘s range vulnerable exploitation allowing remote access to affected systems. One flaw is a buffer overflow caused by excessively long filenames within CAB archives, while the…

  • Vulnerabilities strike more AV firms, and Mac too

    F-Secure and Authentium patch holes, while Samba flaws worry Apple users. Users of Mac OS X , used to a cosy sense of security, have been warned of possible penetration vectors thanks to a slew of flaws unveiled in the Samba networking system used to connect Mac s to Windows systems. An alert issued by…

  • Overflows hit NOD32

    Vulnerabilities disclosed after patching. Two stack-overflow vulnerabilities have been disclosed in Eset ‘s flagship NOD32 AntiVirus product, which could have been exploited to escalate privileges, or even execute code remotely and thus access a vulnerable system. The overflow issues, which involve specially formatted pathnames which are not properly processed by the product when dealing with…

  • Latest flaws affect AV giants

    Symantec, McAfee and CA all patch vulnerabilities. Three of the biggest names in the security sector, McAfee , Symantec and CA , have all revealed details of flaws in their software which have been discovered and patched in recent months. The most severe vulnerability was suffered by a wide range of McAfee products, including its…

  • ZOO archive issues hit security vendors

    Errors handling rare format patched by four AV and anti-spam products. A researcher has revealed details of flawed implementation of a somewhat archaic archive format, .zoo, which has required patching in several anti-virus products and a popular anti-spam appliance, and also affects some archiving software. Products from Avira , Alwil and Panda were all patched…

  • 7 critical flaws patched on Patch Tuesday

    May Security Bulletin covers wide range of vulnerabilities. Microsoft ‘s latest ‘Patch Tuesday’ security bulletin included fixes for seven vulnerabilities, all rated ‘Critical’ and allowing remote access to affected systems, which affect most of the company’s major products. The May release, unveiled yesterday, includes fixes for long-standing bugs in Excel spreadsheet software, word processor Word…