Vulnerabilities / Threats // Insider Threats
6/10/2010
06:23 PM
Cora Nucci
Cora Nucci
Slideshows
50%
50%

Image Gallery: 5 Early Android 2.2 Candidates

Google's Nexus One, the original Android 2.1 phone, will be the first to update to Android 2.2 and at least four HTC handsets are slated for the initial wave of Froyo updates expected in the second half of the year.
Previous
1 of 5
Next


The Nexus One will be the first to update to Android 2.2. It as a 1 GHz Snapdragon CPU from Qualcomm and comes with 512MB of ROM, 512MB of RAM, and a 3.7-inch AMOLED 480 x 800 touch screen. The Nexus One weighs 130 grams, about as much as a Swiss army knife. It includes a 5 MP camera with an LED flash, stereo Bluetooth support, a 3.5 mm headphone jack and two microphones -- one on the bottom and one on the back -- for active noise cancellation.

Android 2.2: Ready For Enterprise?
Google is touting its new mobile platform's business-friendly features, but licensing Microsoft's ActiveSync may not offer enough security to make Android ready to work in the enterprise.

Previous
1 of 5
Next
Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-8917
Published: 2015-01-28
Multiple cross-site scripting (XSS) vulnerabilities in (1) dojox/form/resources/uploader.swf (aka upload.swf), (2) dojox/form/resources/fileuploader.swf (aka fileupload.swf), (3) dojox/av/resources/audio.swf, and (4) dojox/av/resources/video.swf in the IBM Dojo Toolkit, as used in IBM Social Media A...

CVE-2014-8920
Published: 2015-01-28
Buffer overflow in the Data Transfer Program in IBM i Access 5770-XE1 5R4, 6.1, and 7.1 on Windows allows local users to gain privileges via unspecified vectors.

CVE-2015-0235
Published: 2015-01-28
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."

CVE-2015-0312
Published: 2015-01-28
Double free vulnerability in Adobe Flash Player before 13.0.0.264 and 14.x through 16.x before 16.0.0.296 on Windows and OS X and before 11.2.202.440 on Linux allows attackers to execute arbitrary code via unspecified vectors.

CVE-2015-0581
Published: 2015-01-28
The XML parser in Cisco Prime Service Catalog before 10.1 allows remote authenticated users to read arbitrary files or cause a denial of service (CPU and memory consumption) via an external entity declaration in conjunction with an entity reference, as demonstrated by reading private keys, related t...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
If youíre a security professional, youíve probably been asked many questions about the December attack on Sony. On Jan. 21 at 1pm eastern, you can join a special, one-hour Dark Reading Radio discussion devoted to the Sony hack and the issues that may arise from it.