Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content tagged with Vulnerabilities / Threats posted in July 2007
<<   <   Page 2 / 2
Thinning the Herd
News  |  7/17/2007  | 
No matter how you slice it, it's time to cut the password plethora
Sana & EarthLink to Offer Anti-Malware
News  |  7/17/2007  | 
EarthLink will offer a version of Sana Security's Primary Response SafeConnect anti-malware solution directly to EarthLink subscribers
Sana, PlumChoice Team on Malware
News  |  7/17/2007  | 
Sana Security announced an agreement with PlumChoice to help rid home and small office users' PCs of malicious software
Hackers Tap Western Union
News  |  7/17/2007  | 
Breach of customer database threatens personal info of about 20,000 customers
BorderWare Finds New Trend: PDF Image Spam
News  |  7/17/2007  | 
BorderWare Technologies announced that its BorderWare Security Network reported a new trend in spam in which images are embedded in PDFs
SSC Launches Vulnerability Assessment Service
News  |  7/17/2007  | 
SSC announced a comprehensive Vulnerability and Risk Assessment service
Symantec Unveils Anti-Botware
News  |  7/17/2007  | 
Tool aimed at tough-to-detect bot infections
NSS Labs Expands Operations, Relocates to US
News  |  7/16/2007  | 
NSS Labs announced the relocation of its operations and company headquarters to the US and the expansion of its senior management team
Black Hat: DLP Hack
News  |  7/16/2007  | 
Researchers will show how some data leakage prevention products are buggy - and even risky
Cross-Site, Cross-Service
News  |  7/16/2007  | 
New cross-site scripting worm could propagate across Webmail services, user address lists
AirMagnet Ships Mobile WLAN Analyzer
News  |  7/16/2007  | 
AirMagnet announced the on-time delivery of AirMagnet Laptop Analyzer 7.5
Watchfire Upgrades AppScan
News  |  7/16/2007  | 
Watchfire introduced AppScan 7.6, the latest enhancement of the company's flagship product, and AppScan OnDemand
Hacking, Iron Chef Style
News  |  7/16/2007  | 
Open contest at Black Hat to pit static-code versus runtime analysis methods to find bugs in sample code
Browsing for Browsers
News  |  7/13/2007  | 
Security can be an important factor when choosing a browser
Breaking Out of the Box
News  |  7/13/2007  | 
Security innovators emerge - on both sides of the firewall
Online Gaming's Seamy Underside
News  |  7/12/2007  | 
New book reveals the black market for hacks and cheats, popular methods for cracking online games, and a warning for IT and security pros
Old Flaw Threatens Web 2.0
News  |  7/12/2007  | 
DNS pinning flaw gives attackers inroads to the corporate intranet - via the browser
Startup Launches Free Malware Blocker
News  |  7/11/2007  | 
Haute Secure comes out of stealth mode with freeware that can recognize and filter malware at the client
Microsoft Adds Threat Portal
News  |  7/11/2007  | 
New site ranks top threats, offers signature downloads, and lets users submit suspicious files for analysis
Harry Potter Gathers Fans and Worms
News  |  7/11/2007  | 
Sophos is cautioning Internet users of the computer worm that exploits Potter-mania, which first appeared in late June
AppSec to Support Oracle 11g
News  |  7/11/2007  | 
Application Security announced that its database security suite, DbProtect, will support Oracle Database 11g
Frost & Sullivan Awards BreakingPoint
News  |  7/11/2007  | 
Frost & Sullivan has recognized BreakingPoint Systems with its 2007 Frost & Sullivan Award for Emerging Technology of the Year
Hackers Clean Up With Ajax
News  |  7/10/2007  | 
New Black Hat research shows how Ajax exposes data, users
SonicWall to Use Mu Analyzer
News  |  7/10/2007  | 
Mu Security announced that SonicWALL uses the Mu-4000 Security Analyzer
'Critical' Java Flaw Bugs Researchers
News  |  7/10/2007  | 
Sun patches some versions of Java - another patch, for consumers, is due this week
Japanese Bank Loses 1M Records
News  |  7/10/2007  | 
ATM transaction data for about 980,000 customers can't be found, Resona Bank says
Ounce Labs Reports Record Q2 Sales
News  |  7/10/2007  | 
Ounce Labs announced that it closed the second quarter of 2007 with record sales and revenue for the sixth quarter in a row
Sourcefire Goes Gigabit
News  |  7/9/2007  | 
Snort vendor today to unveil multifunction platform aimed at large enterprises, service providers
Financial Management Firm Chooses FireEye
News  |  7/9/2007  | 
Canaras Capital Management has implemented a solution from FireEye to secure its network from targeted malware, including botnets
nCircle Automates Quarterly PCI Scan
News  |  7/9/2007  | 
nCircle announced the nCircle Certified PCI Scan Service version 2.0
FaceTime Finds Finds More IM, P2P Attacks
News  |  7/9/2007  | 
FaceTime reported that security incidents targeting public IM and P2P channels have increased by 5 percent in the second quarter of 2007
Aqua Finance Choses St. Bernard to Fight Adware
News  |  7/9/2007  | 
St. Bernard Software announced that Aqua Finance has deployed iPrism, St. Bernard's Internet-filtering appliance
Major US Law Firm Selects Sophos
News  |  7/9/2007  | 
Sophos announced that Kilpatrick Stockton has selected Sophos Endpoint Security & Control to protect its desktops
'Hacking Capitalism'
News  |  7/6/2007  | 
Popular financial transaction protocol leaves trading open to hackers
Spyware Spreaders Settle Suit
News  |  7/6/2007  | 
FTC levies restrictions, $1.5 million fine on adware distributor
They Told You So
News  |  7/6/2007  | 
Sometimes, predictions of security threats come true
An Auction Site for Vulnerabilities
News  |  7/5/2007  | 
WabiSabiLabi takes buying and selling of security vulnerabilities mainstream with first above-board, eBay-like auction site
Getting & Securing Your iPhone
News  |  7/5/2007  | 
How you can justify the company buying your iPhone - and how to keep it safe from attack
To Crypt or Not to Crypt
News  |  7/5/2007  | 
If you're not careful, you can be sniffed almost anywhere
Meet the Next-Gen Web Worm
News  |  7/5/2007  | 
New mutating Web worm evades scanners and even uses bug reports to propagate
DLP in Flux
News  |  7/3/2007  | 
Enterprises should think before they leap into data leakage prevention technology, new report says
Admin Accused of Stealing 2.3M Names
News  |  7/3/2007  | 
Fidelity National Information Services says a subsidiary's employee stole records containing personal info
FlexiSPY: Product or Trojan?
News  |  7/3/2007  | 
Security vendors warn of new mobile spyware, but developer says its product is legit
Comodo Intros Protection Against Phishing
News  |  7/3/2007  | 
Comodo's EV SSL delivers new protection against the growing number of phishing sites
Bucking Law Enforcement's Borders
News  |  7/2/2007  | 
New agreement could make it easier for cops to pursue privacy violators across geographic lines
i Caramba! iPhone Hacked Already
News  |  7/2/2007  | 
Researchers find bugs in iPhone browser, Bluetooth, and WiFi connections
Barracuda Intros Real-Time Protection
News  |  7/2/2007  | 
Barracuda Networks announced Barracuda Real-Time Protection, which enables the Barracuda Spam Firewall to immediately block attacks
<<   <   Page 2 / 2


For Cybersecurity to Be Proactive, Terrains Must Be Mapped
Craig Harber, Chief Technology Officer at Fidelis Cybersecurity,  10/8/2019
A Realistic Threat Model for the Masses
Lysa Myers, Security Researcher, ESET,  10/9/2019
USB Drive Security Still Lags
Dark Reading Staff 10/9/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
7 Threats & Disruptive Forces Changing the Face of Cybersecurity
This Dark Reading Tech Digest gives an in-depth look at the biggest emerging threats and disruptive forces that are changing the face of cybersecurity today.
Flash Poll
2019 Online Malware and Threats
2019 Online Malware and Threats
As cyberattacks become more frequent and more sophisticated, enterprise security teams are under unprecedented pressure to respond. Is your organization ready?
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-17537
PUBLISHED: 2019-10-13
Jiangnan Online Judge (aka jnoj) 0.8.0 has Directory Traversal for file deletion via the web/polygon/problem/deletefile?id=1&amp;name=../ substring.
CVE-2019-17538
PUBLISHED: 2019-10-13
Jiangnan Online Judge (aka jnoj) 0.8.0 has Directory Traversal for file reading via the web/polygon/problem/viewfile?id=1&amp;name=../ substring.
CVE-2019-17535
PUBLISHED: 2019-10-13
Gila CMS through 1.11.4 allows blog-list.php XSS, in both the gila-blog and gila-mag themes, via the search parameter, a related issue to CVE-2019-9647.
CVE-2019-17536
PUBLISHED: 2019-10-13
Gila CMS through 1.11.4 allows Unrestricted Upload of a File with a Dangerous Type via the moveAction function in core/controllers/fm.php. The attacker needs to use admin/media_upload and fm/move.
CVE-2019-17533
PUBLISHED: 2019-10-13
Mat_VarReadNextInfo4 in mat4.c in MATIO 1.5.17 omits a certain '\0' character, leading to a heap-based buffer over-read in strdup_vprintf when uninitialized memory is accessed.