More article whitepapers
Remote Data Replication: Combat Disasters And Optimize Business Operations
Metzler: The 2013 Application and Service Delivery Handbook
Evaluating the Performance of Shared WAN Links for Data Center Backup and Disaster Recovery
Riverbed vs Silver Peak: WAN Optimization Vendors Put to the Test
Improving SQL Availability and Performance: 6 Key Questions to Consider Before You Scale Up
Policy Control & SDN: A Perfect Match? - by Heavy Reading
Storage Infrastructure as a Service The Best of Cloud and On-premises Storage
Putting Metaswitch's SBC Software to the Test
Altair Speeds Complex Simulation and Workload Management with the Intel' Xeon Phi Coprocessor
Check Point 2013 Internet Security Report
Unified Communications Buyer's Guide
Demystifying Unified Communications
Secrets Revealed: Brilliant Simplicity and Lower TCO
Comparison of Cisco and ShoreTel Unified Communication Solutions
Comparison of Avaya and ShoreTel Unified Communication Solutions
Don't Get Stuck on Your Virtualization Journey: Where to Focus Next
How Virtualization is Key to Managing Risk
Top 10 Considerations for Getting Started with VMware Virtualization
Crash Insurance: Protect Your Business with Virtualization
Beyond Cost Savings: Four Compelling Reasons To Virtualize Your IT Environment
When It Makes Sense to Move to Desktop Virtualization: Seven Key Indicators
Top 10 Tech Tips: vSphere with Operations Management
Taneja Group: Overview of Virtualization and Cloud Market Vendor Landscape for SMBs
Real World Considerations for Implementing Desktop Virtualization eBook
Websense 2013 Threat Report
Free Research and Reports
Whitepapers
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- Endpoint Security: End user security requires layers of tools and training as employees use more devices and apps.
- Security Isn't A Piece Of Cake: It's time we rethink the conventional wisdom about security layering.
- BYOD Is Here To Stay: Trying to keep employees' devices off the network is futile.
Tech Insight
Bugs
Enterprise Vulnerabilities From DHS/US-CERT's National Vulnerability Database
CVE-2013-2969
Cross-site scripting (XSS) vulnerability in IBM Sterling Control Center (SCC) 5.2 before 5.2.0.9, 5.3 before 5.3.0.4, and 5.4 through 5.4.0.1 allows remote authenticated users to inject arbitrary web script or HTML via vectors involving invalid characters.
CVE-2013-2968
An unspecified buffer-read method in IBM Sterling Control Center (SCC) 5.2 before 5.2.0.9, 5.3 before 5.3.0.4, and 5.4 through 5.4.0.1 allows remote authenticated users to cause a denial of service via a large file that lacks end-of-line characters.
CVE-2013-4622
The 3G Mobile Hotspot feature on the HTC Droid Incredible has a default WPA2 PSK passphrase of 1234567890, which makes it easier for remote attackers to obtain access by leveraging a position within the WLAN coverage area.
CVE-2013-0484
The server process in IBM Cognos TM1 10.1.x before 10.1.1 FP1 allows remote attackers to cause a denial of service (daemon crash) via an undocumented API call that triggers the transmission of unexpected data.
CVE-2013-3744 (jre, jdk)
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2400.