Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content tagged with Vulnerabilities / Threats posted in November 2006
<<   <   Page 2 / 2
Centennial Unveils Tool
News  |  11/13/2006  | 
Centennial Software, developer of IT asset discovery and endpoint security solutions, today announced the availability of Security.Advisor
SurfControl Warns of Spoof
News  |  11/13/2006  | 
SurfControl warns Internet users of a malicious Trojan keylogger inside spoofed Adobe email message
Startups Push Security Management
News  |  11/13/2006  | 
Security management is the theme with two new startups that are launching this week
Ovum Warns of Risk
News  |  11/13/2006  | 
Security over VOIP: threat still unknown but risk very real, warns Ovum
Symantec Opens Phish Report
News  |  11/13/2006  | 
Symantec announced the opening of the Symantec Phish Report Network to consumers worldwide
Max Secure Unveils 2.0
News  |  11/12/2006  | 
Max Secure Software announced the unveiling of Max Spyware Detector 2.0, the world's fastest anti-spyware software
Phishing Continues Meteoric Rise
News  |  11/10/2006  | 
Phishing's chart is on a hockey-stick curve, and users are the ones getting pucked
'Hacker Safe': Safe for Hackers
News  |  11/10/2006  | 
Hackers are finding a home in 'Hacker Safe'-certified Websites
Authentium Rejects iDefense
News  |  11/9/2006  | 
Authentium rejected claims made by Virginia-based iDefense earlier this week that the antivirus industry had responded slowly to 'Stration'
There Ought to Be a Law
News  |  11/9/2006  | 
Even with Congressional shakeup, experts don't expect any fast moves on compliance or computer crime law
Qualys Launches PCI Platform
News  |  11/9/2006  | 
Launches the QualysGuard PCI On Demand platform
Attackers Exploiting New Windows Bug
News  |  11/9/2006  | 
Russian attackers are hammering away with this bug, but is this the first such attack?
The Truth About User Privileges
News  |  11/8/2006  | 
Denying your users full system privileges is in style
Shavlik Rolls Out 5.8
News  |  11/7/2006  | 
Shavlik Technologies announced the general availability of Shavlik NetChk Protect 5.8
E-Voting Hacks Facts
News  |  11/7/2006  | 
What every security pro should know about the potential for e-voting hackery
Malware, by the Script
News  |  11/7/2006  | 
Malicious scripts are yet another danger for Web apps, namely Web 2.0-based ones
Attention, Online Shoppers: Where R U?
News  |  11/7/2006  | 
Security worries are slowing online shopping and banking, but consumers should be afraid of that POS instead, Gartner says
Tumbleweed Intros AIF
News  |  11/7/2006  | 
Tumbleweed introduced its Adaptive Image Filtering (AIF) technology, specifically designed to combat the ever-increasing amount of image spam
A First Look Into the PhishTank
News  |  11/6/2006  | 
PhishTank's first monthly report shows the US as the main source of phishing exploits and lists the top ten ISPs hosting phishers
Microsoft Beckons to Early Adopters
News  |  11/6/2006  | 
Vista and Forefront are just around the corner, as customers weigh risks against maintaining the status quo
NAC-in-the-Box, Jump Up
News  |  11/6/2006  | 
Vernier, ConSentry launch improvements to their Network Access Control appliances
Let's Party Together
News  |  11/6/2006  | 
Disjointed efforts are a big reason why the criminals are winning
Sophos Unveils 'Dirty Dozen'
News  |  11/6/2006  | 
null
Anti-Spam's United Nations
News  |  11/3/2006  | 
StopSpam Alliance aims to bring regional anti-spam efforts together
Security Management in Flux
News  |  11/3/2006  | 
More integrated products mean tougher buying decisions and management challenges, CSI speaker says
Malware Pair Boosts Bots
News  |  11/2/2006  | 
The infamous Warezov/Stration and SpamThru are behind the latest mega-surge in spam and botnet activity, according to MessageLabs
Built-in Headaches
News  |  11/1/2006  | 
PC hardware vendors are building security capabilities into their systems, but those features may present compatibility problems for IT
When a Picture Paints a Thousand SSNs
News  |  11/1/2006  | 
As forensics investigators breathe down their necks, data thieves are getting more creative in hiding their booty
Kernel Bugs Come Marchin' In
News  |  11/1/2006  | 
Day one of the Month of Kernel Bugs is under way, and an Apple Mac OS X and wireless exploit kicks it off
<<   <   Page 2 / 2


COVID-19: Latest Security News & Commentary
Dark Reading Staff 5/27/2020
10 iOS Security Tips to Lock Down Your iPhone
Kelly Sheridan, Staff Editor, Dark Reading,  5/22/2020
How an Industry Consortium Can Reinvent Security Solution Testing
Henry Harrison, Co-founder & Chief Technology Officer, Garrison,  5/21/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13632
PUBLISHED: 2020-05-27
ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query.
CVE-2020-13253
PUBLISHED: 2020-05-27
sd_wp_addr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address, which leads to an out-of-bounds read during sdhci_write() operations. A guest OS user can crash the QEMU process.
CVE-2020-13630
PUBLISHED: 2020-05-27
ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature.
CVE-2020-13631
PUBLISHED: 2020-05-27
SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c.
CVE-2020-4226
PUBLISHED: 2020-05-27
IBM MobileFirst Platform Foundation 8.0.0.0 stores highly sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 175207.