Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content tagged with Vulnerabilities / Threats posted in May 2007
<<   <   Page 2 / 2
RFID Security Service, Tools on Tap
News  |  5/10/2007  | 
New audit service and appliance to target RFID customers looking to lock down their systems
New York Crackdown
News  |  5/10/2007  | 
Attorney general demonstrates that Empire State won't tolerate slow disclosure of security leaks
What Are You Lookin' At?
News  |  5/9/2007  | 
Eye-movement cameras work for advertisers - and could have applications in security
The Phisher King
News  |  5/9/2007  | 
RSnake gets a real 'pisher' to describe how he baits the hook and reels in his catch
Mizzou's Help Desk Hack
News  |  5/9/2007  | 
Attacker accesses more than 22,000 student records by cracking university's computer trouble-reporting system
Sophos Surpasses Rivals in Q1
News  |  5/9/2007  | 
Sophos announced significant growth for its final quarter, ending March 31, 2007, led by the North American market
Nevis Offers Free Assessment
News  |  5/9/2007  | 
Nevis is offering qualifying organizations a free Network Security Assessment
Honeypot Proves to Be Sticky
News  |  5/8/2007  | 
If you can swim in techie waters, there's fascinating data in here
Five Security Flaws in IPv6
News  |  5/8/2007  | 
The next-generation of IP transport has some glaring security problems - here's a rundown of what you need to know
Sophos Applauds SEC
News  |  5/8/2007  | 
Sophos is pleased to see the US SEC again take action against pump-and-dump scammers luring victims through spam email campaigns
SonicWALL Records Spam Spike
News  |  5/8/2007  | 
Email security statistics compiled by SonicWall indicate that spam volumes rose in first quarter 2007
EMC Focuses enVision
News  |  5/8/2007  | 
Overhauls its SIM/SEM solution in an attempt to tap into enterprises' compliance requirements
TSA Loses 100,000 Employee Records
News  |  5/8/2007  | 
Airport security organization loses hard drive containing personal information on workers
Forensics Follies
News  |  5/8/2007  | 
Or, where not to run when your hair's on fire - not the barn, not the house, not the data center
Symantec Readies New Client Tools
News  |  5/7/2007  | 
CTO, research VP offer glimpse at company's product drawing board
Reluctant Rock Star
News  |  5/7/2007  | 
Security expert Ivan Arce dodges security spotlight, shares his passion for research and futbol (soccer)
Trust & Deception
News  |  5/7/2007  | 
They're both actively at work in infosec, and new attacks take equal advantage of them
Law Firm Protects With IBM-ISS
News  |  5/7/2007  | 
Sonnenschein law firm protects thousands of devices with preemptive technology from IBM
Infoblox Intros New Appliances
News  |  5/7/2007  | 
Infoblox announced availability of a new appliance, the Infoblox-250
F-Secure Expands Reach in Security Market
News  |  5/7/2007  | 
F-Secure Corporation announced a surge of new partner wins in North America
IPS: Still Playing Catch Up
News  |  5/4/2007  | 
IPS isn't dead, but it's still not taking enterprises by storm
Security's Top Five Priorities
News  |  5/4/2007  | 
Portable devices, Web application security are among the issues keeping CSOs awake these days
You Can Quote Me on That
News  |  5/3/2007  | 
And we did - 12 months of memorable statements, gaffes, and asides from Dark Reading
SEC: WFI Insider Stole $7.7M
News  |  5/3/2007  | 
Stock options manager accused of abusing access rights to embezzle 700,000 shares from wireless security firm
Virtual Riots No Laughing Matter
News  |  5/2/2007  | 
Online attacks become new method of protest, disinformation
Microsoft Marches to Forefront
News  |  5/2/2007  | 
At LA launch, software giant pushes security, management, and all the cool integration possibilities
DRM Hack Flap Sparks Digg 'Riot'
News  |  5/2/2007  | 
Effort to take down hack postings results in crippling rebellion at social networking site
Learning to Love WAFs
News  |  5/2/2007  | 
A qualified love to be sure, but Web app firewalls do have their uses
Agnitum Intros Outpost Security Suite
News  |  5/2/2007  | 
Agnitum delivered battle-hardened protection against malware, spam, identity theft, and other Internet-borne threats
April Brings Deluge of Web Attacks
News  |  5/2/2007  | 
Sophos announces top 10 Web and email-borne threats reported in April 2007
Anchiva Joins Anti-Spyware Coalition
News  |  5/2/2007  | 
Anchiva Systems announced that it has joined the Anti-Spyware Coalition
Security's Biggest Train Wrecks
News  |  5/1/2007  | 
Think you've made security mistakes? These 10 prize-winners (we had to limit it) took the cake in Dark Reading's first year
Vanguard Unveils Security Admin Tools
News  |  5/1/2007  | 
Vanguard Integrity Professionals announced new enhancements to its unique line of enterprise-wide security software
Akonix Records IM Attack Increase
News  |  5/1/2007  | 
Akonix records first IM attack increase in 2007
FrontRange Finalizes Acquisition
News  |  5/1/2007  | 
FrontRange Solutions has finalized its acquisition of enteo Software
<<   <   Page 2 / 2


COVID-19: Latest Security News & Commentary
Dark Reading Staff 6/5/2020
How AI and Automation Can Help Bridge the Cybersecurity Talent Gap
Peter Barker, Chief Product Officer at ForgeRock,  6/1/2020
Cybersecurity Spending Hits 'Temporary Pause' Amid Pandemic
Kelly Jackson Higgins, Executive Editor at Dark Reading,  6/2/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: What? IT said I needed virus protection!
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13890
PUBLISHED: 2020-06-06
The Neon theme 2.0 before 2020-06-03 for Bootstrap allows XSS via an Add Task Input operation in a dashboard.
CVE-2020-13889
PUBLISHED: 2020-06-06
showAlert() in the administration panel in Bludit 3.12.0 allows XSS.
CVE-2020-13881
PUBLISHED: 2020-06-06
In support.c in pam_tacplus 1.3.8 through 1.5.1, the TACACS+ shared secret gets logged via syslog if the DEBUG loglevel and journald are used.
CVE-2020-13883
PUBLISHED: 2020-06-06
In WSO2 API Manager 3.0.0 and earlier, WSO2 API Microgateway 2.2.0, and WSO2 IS as Key Manager 5.9.0 and earlier, Management Console allows XXE during addition or update of a Lifecycle.
CVE-2020-13871
PUBLISHED: 2020-06-06
SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c because the parse tree rewrite for window functions is too late.