Threat Center Security News
Security News
Mac OS 10.5.5 packs many security fixes Print E-mail
Written by Rebecca Mints   
Wednesday, 17 September 2008 06:08

With the release of Mac OS X 10.5.5 on Monday, Apple provided patches for almost three dozen software flaws. Some of the fixes are specific to Apple features, such as image processing and Finder. Other fixes are updates to various open-source projects, including Bind, ClamAV, OpenSSH and Ruby.
Read more...
 
Vulnerabilities in Apple Bonjour Print E-mail
Written by Rebecca Mints   
Thursday, 11 September 2008 01:51

Two vulnerabilities have been identified in Apple Bonjour for Windows, which could be exploited by attackers to cause a denial of service or spoof DNS responses.
Read more...
 
Another Google Chrome Security Flaw Identified Print E-mail
Written by Rebecca Mints   
Friday, 05 September 2008 10:54

The "SaveAs" problem is a critical buffer-overflow vulnerability that could allow a hacker to perform a remote attack and take complete control of the affected system. Vietnamese security company Bach Khoa Internet Security (BKIS) has found a flaw in Google Chrome 0.2.149.27 and posted details on its Web site. The company says the problem is a critical buffer-overflow vulnerability that could allow a hacker to perform a remote attack and take complete control of the affected system.
Read more...
 
Cisco Secure ACS EAP Remote Denial Of Service Vulnerability Print E-mail
Written by Rebecca Mints   
Thursday, 04 September 2008 11:27

A vulnerability has been identified in Cisco Secure ACS, which could be exploited by remote attackers to cause a denial of service. This issue is caused by an error when processing a specially crafted Remote Authentication Dial In User Service (RADIUS) Extensible Authentication Protocol (EAP) Message Attribute packet containing an overly large "length" field, which could allow attackers to cause the CSRadius and CSAuth processes to crash, creating a denial of service condition.
Read more...
 
Google's Chrome Susceptible to Apple Vulnerability Print E-mail
Written by Rebecca Mints   
Tuesday, 02 September 2008 12:51

Unfortunately Chrome has already been demonstrated to be vulnerable to the Apple Safari "Carpet Bombing" vulnerability. The new version of the attack drops files in the Chrome download folder; the user would have to be persuaded to run them via a social engineering attack. This may or may not be practical, but the sandbox did fail.
Read more...
 
More Articles...


Page 12 of 33

WTW Threat Level