 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
|
Security News PCI security standard endangers wireless LANs 11 Mar 2008 11:29 GMT With wireless penetration tools like KARMA and the new FreeRADIUS-WPE, users who are using urban legend security and enterprise wireless LANs are more vulnerable than ever. One of the biggest threats facing wireless LAN users is SSID probing which is forced by the reckless usage of SSID broadcast suppression. Unfortunately,... Source: ZDNet Judge rules against accused spyware distributor 11 Mar 2008 10:29 GMT A man connected to a company accused of distributing spyware and adware to unsuspecting users will be handing his ill-gotten gains over to the FTC: $4,595.36. (Truly, crime does not pay.) Source: Computerworld Norton AntiVirus Dual Protection for Mac debuts 11 Mar 2008 09:27 GMT Symantec has released Norton AntiVirus Dual Protection for Mac, intended for users of Intel-based Macs who have both Mac OS X and Windows running on their computers. Source: Computerworld Security must evolve, CERT official says 11 Mar 2008 09:27 GMT A CERT official speaking at this week's European Computer Audit, Control and Security Conference told attendees that security needs to evolve into something that supports business, rather than the other way around. Source: Computerworld MS08-017 - Critical: Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (933103) 11 Mar 2008 08:00 GMT Bulletin Severity Rating:Critical - This critical update resolves two privately reported vulnerabilities in Microsoft Office Web Components. These vulnerabilities could allow remote code execution if a user viewed a specially crafted Web page. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Source: TechNet MS08-016 – Critical: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (949030) 11 Mar 2008 08:00 GMT Bulletin Severity Rating:Critical - This security update resolves two privately reported vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a malformed Office file. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Source: TechNet MS08-015 - Critical: Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (949031) 11 Mar 2008 08:00 GMT Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in Microsoft Office Outlook. The vulnerability could allow remote code execution if Outlook is passed a specially crafted mailto URI. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. This vulnerability is not exploitable by simply viewing an e-mail through the Outlook preview pane. Source: TechNet MS08-014 - Critical: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (949029) 11 Mar 2008 08:00 GMT Bulletin Severity Rating:Critical - This security update resolves several privately reported and publicly reported vulnerabilities in Microsoft Office Excel that could allow remote code execution if a user opens a specially crafted Excel file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Source: TechNet Why flu virus prefers to strike in winter 10 Mar 2008 18:19 GMT You probably have been affected by flu several times in your life, and it has certainly happened in cold winter months, at least if you don't live in tropical countries. Why is the flu virus more infectious when it's cold? A U.S. National Institutes of Health (NIH) has an explanation.... Source: ZDNet Concerned over Apple iPhone's third-party development and deployment model? Yep. 10 Mar 2008 16:37 GMT
In a much ballyhooed media event, Apple released the iPhone SDK at a press conference last week. I've been watching the wire to see if other security researchers are as concerned about Apple's development and deployment model as I am. They are. A good friend and colleague... Source: ZDNet |
|
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage |
©2008 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.