Search results for flaw

WordPress update kyboshes XSS flawOpen in New Window
Avatar Posted by davemackey 2 days ago (http://go.theregister.com)
Category: security | Tags wordpress, update, xss, flaw, patch, Search All Tags
"WordPress has fixed a cross-site scripting (XSS) flaw in its blogging software." read more »
Discuss     Bury

One in ten DNS servers still vulnerable to poisoningOpen in New Window
Avatar Posted by MargaretM 24 days ago (http://go.theregister.com)
Category: internet | Tags dan goodin, the register, dan kominsky, dns, flaw, vulnerable, patched, domain name system servers, inflobox, Search All Tags
Dan Goodin of The Register writes that 4 months after Dan Kominsky revealed the DNS flaw that left servers vulnerable to attack 10% of DNS servers still aren't patched; that translates to about 1.3 read more »
1 Comment     Bury

Security flaw spotted in G1 Google phoneOpen in New Window
Avatar Posted by davemackey 38 days ago (http://www.infoworld.com)
Category: security | Tags security, flaw, g1, google, phone, Search All Tags, , , ,
"Researchers at Independent Security Evaluators say they've discovered a security flaw in the Android browser that could make users of phones with the browser vulnerable to attack." read more »
Discuss     Bury

Prominent Web sites have serious coding flawOpen in New Window
Avatar Posted by davemackey 65 days ago (http://www.infoworld.com)
Category: security | Tags coding, flaw, princeton, security, Search All Tags, , , , ,
"Two Princeton University academics have found a type of coding flaw on several prominent Web sites that could jeopardize personal data and in one alarming case, drain a bank account. The type of fl read more »
Discuss     Bury

Chrome suffers first security flawOpen in New Window
Avatar Posted by davemackey 92 days ago (http://news.cnet.com)
Category: security | Tags chrome, security, flaw, crash, browser, google, rishi narang, Search All Tags, ,
"Researcher Rishi Narang discloses a malicious link that can crash the new browser." read more »
Discuss     Bury

Expert: SOA vulnerable to DNS security flaw, tooOpen in New Window
Avatar Posted by MargaretM 119 days ago (http://blogs.zdnet.com)
Category: software | Tags black hat security, las vegas, dan kaminsky, dns flaw, tim wilson, dark reading, it, Search All Tags, ,
At the Black Hat security confab currently taking place in Las Vegas Dan Kaminsky disclosed his findings around the Domain Name Server flaw. Tim Wilson of Dark Reading reported on Kaminsky's presentation. The flaw enables attackers to "exploit the DNS design to quickly guess the transaction ID of an address query and potentially re-route the user to an unexpected domain." Kaminsky noted the DNS flaw can affect any system that uses the Internet, including older applications such as FTP. "Back-end IT systems such as Telnet, SNMP, authentication servers (such as Radius), backup and restoral systems, and even service-oriented architecture (SOA) environments all use DNS, and could be subject to attack via the newly discovered flaw." read more »
Discuss     Bury

Apple finally patches dangerous DNS flawOpen in New Window
Avatar Posted by MargaretM 124 days ago (http://www.infoworld.com)
Category: network | Tags apple, dangerous, dns, vulnerabilities, berkeley internet name domain, Search All Tags, , , ,
Apple posted a security advisory on Friday, August 1, saying that they have issued a patch that will fix Apple's implementation of the Berkeley Internet Name Domain (BIND) DNS server in Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.4, and Mac OS X Server v10.5.4. The DNS flaw is considered one of the most dangerous vulnerabilities ever to affect the Internet. Apple was very slow in providing the patch. The existence of the flaw was disclosed on July 8 and on July 21 details of how to exploit the flaw were leaked, leaving un-patched systems vulnerable to attack. read more »
Discuss     Bury

Top 10: iPhone 3G, DNS flaw, Microsoft's cloudOpen in New Window
Avatar Posted by BINK.domeshot 143 days ago (http://www.infoworld.com)
Category: network | Tags top 10, iphone 3g, dns, microsoft, Search All Tags, , , , ,
Top 10 Tech stories written July 11, 2008 includes the iPhone 3G, a DNS flaw and Microsoft's cloud forms. read more »
Discuss     Bury