Welcome Guest. | Log In| Register | Membership Benefits
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9

Around The Web

eWEEK
How To Secure Sensitive Data Before A Layoff Occurs
Up-to-date auditing of data is a must, experts say

COMPUTERWORLD NEW ZEALAND
New Zealand Privacy Administrator Calls For DNA Database Oversight
Agency will look to step up security following revelation of data breach

ZDnet
BCS Attempts Cultural Shift In Data Protection
Data protection “code” is aimed at getting public and private sector to take better care of personal information

CIO
T-Mobile Confirms Stolen Data Is Genuine
Company still uncertain whether personal data was compromised

OFFICE OF INADEQUATE SECURITY
Fired Worker Charged In ID Theft, Child Porn
Employee allegedly accessed Gexa database, caused more than $70,000 worth of damage to company

FLORIDA TODAY
Clerks Fired For Snooping On Potential Dates
Fort Myers police department employees allegedly looked up Match.com matches in classified database

ARS TECHNICA
Last.fm, CBS: We Have Not Shared Data With Anyone
Amid allegations of leaks to the RIAA, Last.fm executive says user data could not have been given out without his approval

Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9






Bugs
ENTERPRISE VULNERABILITIES
Vulnerability:blazeds, coldfusion, flex data services, lifecycle
Published:2010-02-15
Severity:Medium
Description:Unspecified vulnerability in BlazeDS 3.2 and earlier, as used in LiveCycle 8.0.1, 8.2.1, and 9.0, LiveCycle Data Services 2.5.1, 2.6.1, and 3.0, Flex Data Services 2.0.1, and ColdFusion 7.0.2, 8.0, 8.0.1, and 9.0, allows remote attackers to obtain sensitive information via vectors that are associated with a request, and related to injected tags and external entity references in XML documents.
Vulnerability:odyssey access client
Published:2010-02-15
Severity:High
Description:Stack-based buffer overflow in dsInstallerService.dll in the Juniper Installer Service, as used in Juniper Odyssey Access Client 4.72.11421.0 and other products, allows remote attackers to execute arbitrary code via a long string in a malformed DSSETUPSERVICE_CMD_UNINSTALL command to the NeoterisSetupService named pipe.
Vulnerability:acrobat, acrobat reader, adobe air, flash player
Published:2010-02-15
Severity:High
Description:Cross-domain vulnerability in Adobe Flash Player before 10.0.45.2, Adobe AIR before 1.5.3.9130, and Adobe Reader and Acrobat 8.x before 8.2.1 and 9.x before 9.3.1 allows remote attackers to bypass intended sandbox restrictions and make cross-domain requests via unspecified vectors.
Vulnerability:adobe air, flash player
Published:2010-02-15
Severity:Medium
Description:Adobe Flash Player before 10.0.45.2 and Adobe AIR before 1.5.3.9130 allow remote attackers to cause a denial of service (application crash) via a modified SWF file.
Vulnerability:dokuwiki
Published:2010-02-15
Severity:Medium
Description:Directory traversal vulnerability in the ACL Manager plugin (plugins/acl/ajax.php) in DokuWiki before 2009-12-25b allows remote attackers to list the contents of arbitrary directories via a .. (dot dot) in the ns parameter.


Briefing Centers
POWERFUL INFORMATION
AT YOUR FINGERTIPS
(SPONSORED LINKS)