flaw
RSS flawMicrosoft in a fix over cursor patch
News Microsoft consciously released the cursor flaw patch despite the compatibility problem, Mike Reavey, a Microsoft Security Response Center staffer, wrote on a corporate blog. Installing Microsoft's Tuesday patch for a... [05 Apr 2007]
Microsoft to rush out cursor flaw fix
News Microsoft said it is planning to make available this week a patch for a Windows flaw that has already been used in an attack. Microsoft issued an advisory on the animated cursor flaw on Thursday and by... [02 Apr 2007]
Windows at risk from fancy cursors
News The exposure to attacks that exploit the flaw is mitigated on Vista machines with Internet Explorer 7, Microsoft noted. A new security vulnerability puts Windows users at risk of serious cyber attacks, Microsoft has warned. [30 Mar 2007]
Peter Cochrane's Blog: VoIP reality check
Comment The good news is that moves are afoot to fix this flaw in the internet and it is relatively easy to fix in intranets and ultimately telephone networks that move to IP. The entertainment industry has been chasing reality... [26 Mar 2007]
Apple plugs yet more QuickTimes holes
News In January, the Mac maker put out a fix for a zero-day flaw that was released as part of the "Month of the Apple Bugs" project. Apple has released updates to its QuickTime media player software to repair eight serious... [06 Mar 2007]
Security warning over tech support tools
News The problem is "high" risk but is mitigated somewhat, because triggering the flaw would require some action on the part of the user, Symantec noted. Multiple flaws in commonly used technical support tools can open... [27 Feb 2007]
Microsoft probing holes in Vista, IE 7
News The IE flaw could only be exploited if an attacker were to lure a victim to a malicious website and then persuade the user to enter the address of a trusted site into the address bar. Microsoft is investigating two... [27 Feb 2007]
Firefox update plugs cookie flaw
News The location.hostname vulnerability Schroepfer referred to was the Firefox cookie flaw discovered by Michal Zalewski, an "ethical hacker" from Poland. His note said a flaw in Firefox could allow hackers... [26 Feb 2007]
Holes found in Google Desktop
News One of the problems is a cross-site scripting flaw that could let an outsider look through files on a compromised machine. Watchfire notified Google on 4 January of three vulnerabilities and one architectural... [22 Feb 2007]
More flaws: Bugs hit Firefox, IE
News In addition, another Firefox flaw could let attackers change cookie files on the user's PC, he said. Microsoft confirmed the flaw could open up files stored on a PC's hard drive to an attacker but only... [19 Feb 2007]
Zero-day attack strikes Office
News Word of the new flaw came a day after Microsoft released updates for nine other Office-related vulnerabilities. A new, yet-to-be-patched security hole in Word is being used in targeted cyber attacks, Microsoft has warned. [16 Feb 2007]
Apple fixes four flaws
News There's a buffer overflow flaw in Finder which could allow an attacker to take control of a system by "enticing a user into mounting a malicious disk image", or tricking someone into enabling local access of a file... [16 Feb 2007]
Microsoft has security dozen in the oven
News There are 10 disclosed but yet-to-be-patched security holes in various Microsoft products, according to eEye Security's zero-day flaw tracker. Microsoft plans to release a dozen security bulletins on Tuesday, including a... [09 Feb 2007]
Pair of flaws pop up in Firefox
News The first flaw lies in Firefox's pop-up blocker feature, according to a SecuriTeam statement. As a result, an attacker could use this flaw to steal locally stored files and personal information that... [08 Feb 2007]
Phone-crashing bugs found in Windows Mobile
News Symantec and the French Security Incident Response Team, or FrSirt, say they have spotted a fifth zero-day flaw in the word-processing application. A security company has found a pair of bugs in Microsoft's Windows... [01 Feb 2007]
