Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content tagged with Vulnerabilities / Threats posted in July 2006
<<   <   Page 2 / 2
The Patch Race Is On
News  |  7/11/2006  | 
In the wake of Microsoft's latest security patches, enterprises must hurry with testing and deployment before hackers come a-calling
New Windows Worm on the Loose
News  |  7/11/2006  | 
As much chameleon as worm, Win32.Detnat.a affects executable files in Windows 98, ME, NT, 2000, XP, and Server 2003
Marshal Intros New Tool
News  |  7/11/2006  | 
Marshal announced immediate availability of WebMarshal 2006, a powerful Internet management tool
A Garbage Can for Hard Drives
News  |  7/10/2006  | 
New magnetized units to wipe away the data in seconds
On Your Mark, Get Set... Patch
News  |  7/10/2006  | 
Microsoft may be readying seven new patches for tomorrow, but few IT managers think it's a lucky number
LINX Unites Against Spam
News  |  7/10/2006  | 
AGM, the 200 strong membership agreed operational principles for spam management teams to share information
'Vishing' Attacks Use VOIP
News  |  7/10/2006  | 
Phishing with VOIP may be the next big thing to get users to give up personal information
RazorGate Protects
News  |  7/10/2006  | 
Mirapoint announced that the RazorGate email security appliance protects its customers from the rising tide of image-based spam
Secure Coding Catches Fire
News  |  7/7/2006  | 
Multiple efforts underway help developers write more secure software
Windermere Wades Into Network Security
News  |  7/6/2006  | 
Surveillance and monitoring specialist gets ready to enter the network security market
Researchers Break Down NAC Defenses
News  |  7/6/2006  | 
Researchers will demonstrate new ways to bypass Network Access Control technologies at the Black Hat conference later this month
MX Logic Gets Spam Patent
News  |  7/6/2006  | 
MX Logic has been granted US patent #7,051,077 by the United States Patent and Trademark Office
MessageLabs Releases Report
News  |  7/6/2006  | 
MessageLabs announced the results of its MessageLabs Intelligence Report for June
Leap Fraud
News  |  7/5/2006  | 
New phishing, social engineering exploits are outdating old-school security tactics
New Trojan Can Change IP Addresses
News  |  7/5/2006  | 
A new Trojan horse called DNSChanger.eg can route unsuspecting users to a fraudulent site - even if they type the URL themselves
ISPs Hate Zombies
News  |  7/5/2006  | 
StreamShield survey shows potential disruption to service from zombie machines causes UK ISPs the most concern
<<   <   Page 2 / 2


44% of Security Threats Start in the Cloud
Kelly Sheridan, Staff Editor, Dark Reading,  2/19/2020
Zero-Factor Authentication: Owning Our Data
Nick Selby, Chief Security Officer at Paxos Trust Company,  2/19/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
How Enterprises Are Developing and Maintaining Secure Applications
How Enterprises Are Developing and Maintaining Secure Applications
The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-8818
PUBLISHED: 2020-02-25
An issue was discovered in the CardGate Payments plugin through 2.0.30 for Magento 2. Lack of origin authentication in the IPN callback processing function in Controller/Payment/Callback.php allows an attacker to remotely replace critical plugin settings (merchant ID, secret key, etc.) and therefore...
CVE-2020-8819
PUBLISHED: 2020-02-25
An issue was discovered in the CardGate Payments plugin through 3.1.15 for WooCommerce. Lack of origin authentication in the IPN callback processing function in cardgate/cardgate.php allows an attacker to remotely replace critical plugin settings (merchant ID, secret key, etc.) and therefore bypass ...
CVE-2020-9385
PUBLISHED: 2020-02-25
A NULL Pointer Dereference exists in libzint in Zint 2.7.1 because multiple + characters are mishandled in add_on in upcean.c, when called from eanx in upcean.c during EAN barcode generation.
CVE-2020-9382
PUBLISHED: 2020-02-24
An issue was discovered in the Widgets extension through 1.4.0 for MediaWiki. Improper title sanitization allowed for the execution of any wiki page as a widget (as defined by this extension) via MediaWiki's } parser function.
CVE-2020-1938
PUBLISHED: 2020-02-24
When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats AJP connections as having higher trust than, for example, a similar HTTP connection. If such connections are available to an attacker, they can be exploited in ways that ...