Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content tagged with Vulnerabilities / Threats posted in May 2007
<<   <   Page 2 / 2
RFID Security Service, Tools on Tap
News  |  5/10/2007  | 
New audit service and appliance to target RFID customers looking to lock down their systems
New York Crackdown
News  |  5/10/2007  | 
Attorney general demonstrates that Empire State won't tolerate slow disclosure of security leaks
What Are You Lookin' At?
News  |  5/9/2007  | 
Eye-movement cameras work for advertisers - and could have applications in security
The Phisher King
News  |  5/9/2007  | 
RSnake gets a real 'pisher' to describe how he baits the hook and reels in his catch
Mizzou's Help Desk Hack
News  |  5/9/2007  | 
Attacker accesses more than 22,000 student records by cracking university's computer trouble-reporting system
Sophos Surpasses Rivals in Q1
News  |  5/9/2007  | 
Sophos announced significant growth for its final quarter, ending March 31, 2007, led by the North American market
Nevis Offers Free Assessment
News  |  5/9/2007  | 
Nevis is offering qualifying organizations a free Network Security Assessment
Honeypot Proves to Be Sticky
News  |  5/8/2007  | 
If you can swim in techie waters, there's fascinating data in here
Five Security Flaws in IPv6
News  |  5/8/2007  | 
The next-generation of IP transport has some glaring security problems - here's a rundown of what you need to know
Sophos Applauds SEC
News  |  5/8/2007  | 
Sophos is pleased to see the US SEC again take action against pump-and-dump scammers luring victims through spam email campaigns
SonicWALL Records Spam Spike
News  |  5/8/2007  | 
Email security statistics compiled by SonicWall indicate that spam volumes rose in first quarter 2007
EMC Focuses enVision
News  |  5/8/2007  | 
Overhauls its SIM/SEM solution in an attempt to tap into enterprises' compliance requirements
TSA Loses 100,000 Employee Records
News  |  5/8/2007  | 
Airport security organization loses hard drive containing personal information on workers
Forensics Follies
News  |  5/8/2007  | 
Or, where not to run when your hair's on fire - not the barn, not the house, not the data center
Symantec Readies New Client Tools
News  |  5/7/2007  | 
CTO, research VP offer glimpse at company's product drawing board
Reluctant Rock Star
News  |  5/7/2007  | 
Security expert Ivan Arce dodges security spotlight, shares his passion for research and futbol (soccer)
Trust & Deception
News  |  5/7/2007  | 
They're both actively at work in infosec, and new attacks take equal advantage of them
Law Firm Protects With IBM-ISS
News  |  5/7/2007  | 
Sonnenschein law firm protects thousands of devices with preemptive technology from IBM
Infoblox Intros New Appliances
News  |  5/7/2007  | 
Infoblox announced availability of a new appliance, the Infoblox-250
F-Secure Expands Reach in Security Market
News  |  5/7/2007  | 
F-Secure Corporation announced a surge of new partner wins in North America
IPS: Still Playing Catch Up
News  |  5/4/2007  | 
IPS isn't dead, but it's still not taking enterprises by storm
Security's Top Five Priorities
News  |  5/4/2007  | 
Portable devices, Web application security are among the issues keeping CSOs awake these days
You Can Quote Me on That
News  |  5/3/2007  | 
And we did - 12 months of memorable statements, gaffes, and asides from Dark Reading
SEC: WFI Insider Stole $7.7M
News  |  5/3/2007  | 
Stock options manager accused of abusing access rights to embezzle 700,000 shares from wireless security firm
Virtual Riots No Laughing Matter
News  |  5/2/2007  | 
Online attacks become new method of protest, disinformation
Microsoft Marches to Forefront
News  |  5/2/2007  | 
At LA launch, software giant pushes security, management, and all the cool integration possibilities
DRM Hack Flap Sparks Digg 'Riot'
News  |  5/2/2007  | 
Effort to take down hack postings results in crippling rebellion at social networking site
Learning to Love WAFs
News  |  5/2/2007  | 
A qualified love to be sure, but Web app firewalls do have their uses
Agnitum Intros Outpost Security Suite
News  |  5/2/2007  | 
Agnitum delivered battle-hardened protection against malware, spam, identity theft, and other Internet-borne threats
April Brings Deluge of Web Attacks
News  |  5/2/2007  | 
Sophos announces top 10 Web and email-borne threats reported in April 2007
Anchiva Joins Anti-Spyware Coalition
News  |  5/2/2007  | 
Anchiva Systems announced that it has joined the Anti-Spyware Coalition
Security's Biggest Train Wrecks
News  |  5/1/2007  | 
Think you've made security mistakes? These 10 prize-winners (we had to limit it) took the cake in Dark Reading's first year
Vanguard Unveils Security Admin Tools
News  |  5/1/2007  | 
Vanguard Integrity Professionals announced new enhancements to its unique line of enterprise-wide security software
Akonix Records IM Attack Increase
News  |  5/1/2007  | 
Akonix records first IM attack increase in 2007
FrontRange Finalizes Acquisition
News  |  5/1/2007  | 
FrontRange Solutions has finalized its acquisition of enteo Software
<<   <   Page 2 / 2


Attackers Leave Stolen Credentials Searchable on Google
Kelly Sheridan, Staff Editor, Dark Reading,  1/21/2021
How to Better Secure Your Microsoft 365 Environment
Kelly Sheridan, Staff Editor, Dark Reading,  1/25/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: We need more votes, check the obituaries.
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-3278
PUBLISHED: 2021-01-26
Local Service Search Engine Management System 1.0 has a vulnerability through authentication bypass using SQL injection . Using this vulnerability, an attacker can bypass the login page.
CVE-2021-3285
PUBLISHED: 2021-01-26
jxbrowser in TI Code Composer Studio IDE 8.x through 10.x before 10.1.1 does not verify X.509 certificates for HTTPS.
CVE-2021-3286
PUBLISHED: 2021-01-26
SQL injection exists in Spotweb 1.4.9 because the notAllowedCommands protection mechanism is inadequate, e.g., a variation of the payload may be used. NOTE: this issue exists because of an incomplete fix for CVE-2020-35545.
CVE-2021-3291
PUBLISHED: 2021-01-26
Zen Cart 1.5.7b allows admins to execute arbitrary OS commands by inspecting an HTML radio input element (within the modules edit page) and inserting a command.
CVE-2021-3297
PUBLISHED: 2021-01-26
On Zyxel NBG2105 V1.00(AAGU.2)C0 devices, setting the login cookie to 1 provides administrator access.