Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content tagged with Vulnerabilities / Threats posted in September 2007
<<   <   Page 3 / 3
Sabre Releases BinDiff v2.0
News  |  9/5/2007  | 
Sabre Security announced the official release of graphical executable comparison tool
SurfControl Launches E-mail Filter 6.0
News  |  9/5/2007  | 
SurfControl launches E-mail Filter 6.0, delivering unified protection to stop threats and prevent data loss
Secure64 Adds Anycast Capabilities
News  |  9/5/2007  | 
New Secure64 product enhancement dramatically simplifies deployments of 'Anycast' DNS Servers, increasing security and availability
55K New Malicious Sites Blocked Last Month
News  |  9/5/2007  | 
MessageLabs: Latest StormWorm developments through worldwide botnet of 1.8M computers
How a Simple Web Search Uncovered a Top Military Secret
Quick Hits  |  9/5/2007  | 
Real estate hunter exposes closely-guarded nuclear sub design
Acunetix Offers Free Web Vulnerability Scanner
News  |  9/5/2007  | 
Acunetix launches free cross site scripting security scanner
Pfizer: Strike Three
News  |  9/4/2007  | 
Pharmaceutical giant reports third security breach in as many months, leaves employees crying foul
China Makes 'Most Successful Cyber Attack Ever' on the Pentagon
Quick Hits  |  9/4/2007  | 
Chinese military proves its ability to disable US defense systems
<<   <   Page 3 / 3


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Enterprise Cybersecurity Plans in a Post-Pandemic World
Download the Enterprise Cybersecurity Plans in a Post-Pandemic World report to understand how security leaders are maintaining pace with pandemic-related challenges, and where there is room for improvement.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-41617
PUBLISHED: 2021-09-26
sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with gro...
CVE-2021-3830
PUBLISHED: 2021-09-26
btcpayserver is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-21742
PUBLISHED: 2021-09-25
There is an information leak vulnerability in the message service app of a ZTE mobile phone. Due to improper parameter settings, attackers could use this vulnerability to obtain some sensitive information of users by accessing specific pages.
CVE-2020-20508
PUBLISHED: 2021-09-24
Shopkit v2.7 contains a reflective cross-site scripting (XSS) vulnerability in the /account/register component, which allows attackers to hijack user credentials via a crafted payload in the E-Mail text field.
CVE-2020-20514
PUBLISHED: 2021-09-24
A Cross-Site Request Forgery (CSRF) in Maccms v10 via admin.php/admin/admin/del/ids/&lt;id&gt;.html allows authenticated attackers to delete all users.