Dark Reading
Protect The Business - Enable Access
Do more than just cursory scans. Develop
a holistic approach to app security.
Find out how!
Learn to take the ambiguity out of managing IT so you can guide your business forward.
Download now!
Use these tips from Gartner to identify the EPP solution that best suits your business.
Download now!
Most Recent | 1 | 2 | 3 | 4
Around The Web
WASHINGTON POST
Experts Chart Spike In Cyber Sieges
DDoS attacks on ISPs, hosting providers spark concerns about Internet infrastructure
FINANCIAL TIMES
Hackers Breach Weak Walls Of Facebook, Twitter
Multiple breaches rattle walls of two of the Web's most popular sites
CNET
Lime Wire Tells Congress Its P2P Software Is Safe Now
Internet file-sharing software vendor says it no longer poses security risk
TMC.net
Verizon Wireless' "Zero Tolerance" Privacy Policy Breached; Company Files Suits
Three companies sued for allegedly making illegal use of Verizon customer, employee data
IT NEWS AUSTRALIA
Mystery Email Outage Cuts Off WebCentral Customers
Australian service rendered inoperable
INFORMATIONWEEK
Cloud Security Needs Its Rainmaker
Cloud Security Alliance kicks off ambitious educational effort, but still lacks focus
INTEROUTE
Interoute Internet Barometer 1.0
New ISP gauge shows real-time statistics on Internet attacks
CNET
Log Toggling Speeds Up Cloud Antivirus
Panda seeks to improve performance of security products by pushing processing into the cloud
NETWORK WORLD
Microsoft Improves, Rebrands Managed Security Offering
Cloud-based email security service gets update
COMPUTERWORLD UK
European Commission Charges UK Over Phorm Spyware Trials
Behavioral advertising services may violate users' right to privacy, EC says
PC WORLD
Microsoft Warning Over Untrustworthy Internet
In preview of RSA keynote, security executive Charney says Internet growth depends on trust
ARS TECHNICA
Online And Anonymous: Swedish ISP Won't Retain Internet Data
As law enforcement demands ISP data, one provider chooses not to store it in the first place
MSNBC
Internet Providers Want To Meter Usage
Users who watch movies, streaming video may pay more fees
ARS TECHNICA
Congressman: There Should Be A Law Against Internet Data Caps
Download limits, fees are unfair, legislator says
CIO
African Countries Boost Internet Security Training
Twenty-two countries studying methods for improving security of critical infrastructure
INTERNET NEWS
Is Mobile Broadband Still Considered A Luxury?
Despite security advantages, many still see service as a nice-to-have
IP WORLD
U.S. ISPs Begin Warning Internet Users Against Piracy
Warning letters will go to users accused of downloading music illegally
ICANN
ICANN Continues Collaborative Response To Conficker Worm
Service providers, DNS community join researchers in effort to slow growing threat
LAW.COM
Email Theft Case Sparks First-Of-A-Kind Ruling
Court takes new position after employer steals messages from employee's personal AOL account
SYDNEY MORNING HERALD
Australian ISP Stands Up For BitTorrent Users
Australian iiNet refuses to admit that any of its users are illegally downloading content
Best Of Web Archive:
Most Recent | 1| 2| 3| 4
When And How Attackers Are Owning Businesses
Smarter, Stealthier, Sneakier Malware
Más DDoS: More Powerful, Complex, And Widespread
MORE KEYHOLE
Published:2010-11-03
Severity:High
Description:Stack-based buffer overflow in SonicWALL SSL-VPN End-Point Interrogator/Installer ActiveX control (Aventail.EPInstaller) before 10.5.2 and 10.0.5 hotfix 3 allows remote attackers to execute arbitrary code via long (1) CabURL and (2) Location arguments to the Install3rdPartyComponent method.
Published:2010-11-03
Severity:High
Description:Untrusted search path vulnerability in VIM Development Group GVim before 7.3.034, and possibly other versions before 7.3.46, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse User32.dll or other DLL that is located in the same folder as a .TXT file. NOTE: some of these details are obtained from third party information.
Published:2010-11-03
Severity:Medium
Description:Multiple cross-site scripting (XSS) vulnerabilities in wp-content/plugins/cforms/lib_ajax.php in cforms WordPress plugin 11.5 allow remote attackers to inject arbitrary web script or HTML via the (1) rs and (2) rsargs[] parameters.
Published:2010-11-03
Severity:High
Description:Multiple SQL injection vulnerabilities in search.php in WSN Links 5.0.x before 5.0.81, 5.1.x before 5.1.51, and 6.0.x before 6.0.1 allow remote attackers to execute arbitrary SQL commands via the (1) namecondition or (2) namesearch parameter.
Published:2010-11-03
Severity:Medium
Description:SQL injection vulnerability in misc.php in DeluxeBB 1.3, and possibly earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the xthedateformat parameter in a register action, a different vector than CVE-2005-2989, CVE-2006-2503, and CVE-2009-1033.
|
