Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content tagged with Vulnerabilities / Threats posted in May 2007
<<   <   Page 2 / 2
RFID Security Service, Tools on Tap
News  |  5/10/2007  | 
New audit service and appliance to target RFID customers looking to lock down their systems
New York Crackdown
News  |  5/10/2007  | 
Attorney general demonstrates that Empire State won't tolerate slow disclosure of security leaks
What Are You Lookin' At?
News  |  5/9/2007  | 
Eye-movement cameras work for advertisers - and could have applications in security
The Phisher King
News  |  5/9/2007  | 
RSnake gets a real 'pisher' to describe how he baits the hook and reels in his catch
Mizzou's Help Desk Hack
News  |  5/9/2007  | 
Attacker accesses more than 22,000 student records by cracking university's computer trouble-reporting system
Sophos Surpasses Rivals in Q1
News  |  5/9/2007  | 
Sophos announced significant growth for its final quarter, ending March 31, 2007, led by the North American market
Nevis Offers Free Assessment
News  |  5/9/2007  | 
Nevis is offering qualifying organizations a free Network Security Assessment
Honeypot Proves to Be Sticky
News  |  5/8/2007  | 
If you can swim in techie waters, there's fascinating data in here
Five Security Flaws in IPv6
News  |  5/8/2007  | 
The next-generation of IP transport has some glaring security problems - here's a rundown of what you need to know
Sophos Applauds SEC
News  |  5/8/2007  | 
Sophos is pleased to see the US SEC again take action against pump-and-dump scammers luring victims through spam email campaigns
SonicWALL Records Spam Spike
News  |  5/8/2007  | 
Email security statistics compiled by SonicWall indicate that spam volumes rose in first quarter 2007
EMC Focuses enVision
News  |  5/8/2007  | 
Overhauls its SIM/SEM solution in an attempt to tap into enterprises' compliance requirements
TSA Loses 100,000 Employee Records
News  |  5/8/2007  | 
Airport security organization loses hard drive containing personal information on workers
Forensics Follies
News  |  5/8/2007  | 
Or, where not to run when your hair's on fire - not the barn, not the house, not the data center
Symantec Readies New Client Tools
News  |  5/7/2007  | 
CTO, research VP offer glimpse at company's product drawing board
Reluctant Rock Star
News  |  5/7/2007  | 
Security expert Ivan Arce dodges security spotlight, shares his passion for research and futbol (soccer)
Trust & Deception
News  |  5/7/2007  | 
They're both actively at work in infosec, and new attacks take equal advantage of them
Law Firm Protects With IBM-ISS
News  |  5/7/2007  | 
Sonnenschein law firm protects thousands of devices with preemptive technology from IBM
Infoblox Intros New Appliances
News  |  5/7/2007  | 
Infoblox announced availability of a new appliance, the Infoblox-250
F-Secure Expands Reach in Security Market
News  |  5/7/2007  | 
F-Secure Corporation announced a surge of new partner wins in North America
IPS: Still Playing Catch Up
News  |  5/4/2007  | 
IPS isn't dead, but it's still not taking enterprises by storm
Security's Top Five Priorities
News  |  5/4/2007  | 
Portable devices, Web application security are among the issues keeping CSOs awake these days
You Can Quote Me on That
News  |  5/3/2007  | 
And we did - 12 months of memorable statements, gaffes, and asides from Dark Reading
SEC: WFI Insider Stole $7.7M
News  |  5/3/2007  | 
Stock options manager accused of abusing access rights to embezzle 700,000 shares from wireless security firm
Virtual Riots No Laughing Matter
News  |  5/2/2007  | 
Online attacks become new method of protest, disinformation
Microsoft Marches to Forefront
News  |  5/2/2007  | 
At LA launch, software giant pushes security, management, and all the cool integration possibilities
DRM Hack Flap Sparks Digg 'Riot'
News  |  5/2/2007  | 
Effort to take down hack postings results in crippling rebellion at social networking site
Learning to Love WAFs
News  |  5/2/2007  | 
A qualified love to be sure, but Web app firewalls do have their uses
Agnitum Intros Outpost Security Suite
News  |  5/2/2007  | 
Agnitum delivered battle-hardened protection against malware, spam, identity theft, and other Internet-borne threats
April Brings Deluge of Web Attacks
News  |  5/2/2007  | 
Sophos announces top 10 Web and email-borne threats reported in April 2007
Anchiva Joins Anti-Spyware Coalition
News  |  5/2/2007  | 
Anchiva Systems announced that it has joined the Anti-Spyware Coalition
Security's Biggest Train Wrecks
News  |  5/1/2007  | 
Think you've made security mistakes? These 10 prize-winners (we had to limit it) took the cake in Dark Reading's first year
Vanguard Unveils Security Admin Tools
News  |  5/1/2007  | 
Vanguard Integrity Professionals announced new enhancements to its unique line of enterprise-wide security software
Akonix Records IM Attack Increase
News  |  5/1/2007  | 
Akonix records first IM attack increase in 2007
FrontRange Finalizes Acquisition
News  |  5/1/2007  | 
FrontRange Solutions has finalized its acquisition of enteo Software
<<   <   Page 2 / 2


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
How Enterprises are Attacking the Cybersecurity Problem
Concerns over supply chain vulnerabilities and attack visibility drove some significant changes in enterprise cybersecurity strategies over the past year. Dark Reading's 2021 Strategic Security Survey showed that many organizations are staying the course regarding the use of a mix of attack prevention and threat detection technologies and practices for dealing with cyber threats.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-41154
PUBLISHED: 2021-10-18
Tuleap is a Free &amp; Open Source Suite to improve management of software developments and collaboration. In affected versions an attacker with read access to a &quot;SVN core&quot; repository could execute arbitrary SQL queries. The following versions contain the fix: Tuleap Community Edition 11.1...
CVE-2021-41155
PUBLISHED: 2021-10-18
Tuleap is a Free &amp; Open Source Suite to improve management of software developments and collaboration. In affected versions Tuleap does not sanitize properly user inputs when constructing the SQL query to browse and search revisions in the CVS repositories. The following versions contain the fix...
CVE-2021-41152
PUBLISHED: 2021-10-18
OpenOlat is a web-based e-learning platform for teaching, learning, assessment and communication, an LMS, a learning management system. In affected versions by manipulating the HTTP request an attacker can modify the path of a requested file download in the folder component to point to anywhere on t...
CVE-2021-41153
PUBLISHED: 2021-10-18
The evm crate is a pure Rust implementation of Ethereum Virtual Machine. In `evm` crate `&lt; 0.31.0`, `JUMPI` opcode's condition is checked after the destination validity check. However, according to Geth and OpenEthereum, the condition check should happen before the destination validity check. Thi...
CVE-2021-41156
PUBLISHED: 2021-10-18
anuko/timetracker is an, open source time tracking system. In affected versions Time Tracker uses browser_today hidden control on a few pages to collect the today's date from user browsers. Because of not checking this parameter for sanity in versions prior to 1.19.30.5601, it was possible to craft ...