Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9
Best Of The Web
THE INDEPENDENT
New Powers For Police To Hack Your PC
British police now can hack into people's PC's without a warrant
VNUNET
Microsoft Restructure Rumours Abound
Microsoft is expected to employ cost-cutting measures in the upcoming months, including holding off on new hires
DATABREACHES.NET
Pepsi Employee Data on Missing Storage Device
The Pepsi Bottling Group's payroll department is unable to locate a portable data storage device that contains unencrypted personal information on its U.S. employees
FERGIE'S TECH BLOG
Wyndham Hotel Group Hacked
The chain is sending letters to customers who stayed in its hotels alerting them to a breach
INTERNATIONAL HERALD TRIBUNE
Beijing Urges Firms To 'Purify' Web From Porn
Chinese government criticized several Internet companies, including Google
BBC NEWS
Welsh Government Data 'Missing'
The Welsh Assembly Government says 16 of its documents have been lost or stolen in the past three years
IT BACKBONES
The Year in Mac Security 2008: An Annual Report from Intego
A look back at the 2008 Mac malware and threats
SANS INTERNET STORM CENTER
JournalSpace Demise Attributed to RAID
Speculation that a malicious insider or software error overwrote JournalSpace's primary and mirror disks containing its database
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9
Phishers Launch Scam On Twitter Users
New GA Law Forces Sex Offenders to Hand Over Their Internet Passwords
Hundreds of Israeli Websites Hacked in 'Propaganda War'
MORE KEYHOLE
Published:2008-12-22
Severity:Medium
Description:SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
Published:2008-12-22
Severity:Medium
Description:The skype_tool.copy_num method in the Skype extension BETA 2.2.0.95 for Firefox allows remote attackers to write arbitrary data to the clipboard via a string argument.
Published:2008-12-22
Severity:Medium
Description:HTMLTokenizer::scriptHandler in Konqueror in KDE 3.5.9 and 3.5.10 allows remote attackers to cause a denial of service (application crash) via an invalid document.load call that triggers use of a deleted object. NOTE: some of these details are obtained from third party information.
Published:2008-12-22
Severity:Medium
Description:The name service cache daemon (nscd) in Sun Solaris 10 and OpenSolaris snv_50 through snv_104 does not properly check permissions, which allows local users to gain privileges and obtain sensitive information via unspecified vectors.
Published:2008-12-22
Severity:Medium
Description:libata in the Linux kernel before 2.6.27.9 does not set minimum timeouts for SG_IO requests, which allows local users to cause a denial of service (Programmed I/O mode on drives) via multiple simultaneous invocations of an unspecified test program.
|
