disclosure patch
RSS disclosure patchSort by: Relevance | Date
Microsoft's Patch Tuesday unleashes record number of updates
News And Microsoft fixed a moderate vulnerability in Windows Search that could allow information disclosure if a user performs a search that returns a specially crafted file as the first result, or if the user previews a... [10 Jun 2009]
Windows, IE, Word, Office, and Excel all getting patched
News Three important vulnerabilities in Windows could allow an attacker to elevate privileges and one moderate vulnerability in Windows could enable information disclosure. Microsoft will release 10 security updates on... [05 Jun 2009]
Chrome and Firefox get clickjacked
News Sood disclosed the flaw on Tuesday and has since posted a proof of concept on the Bugtraq vulnerability disclosure forum. In the disclosure Sood said: "Attackers can trick users into performing actions... [29 Jan 2009]
Android security hole gets patched up
News Earlier, Google appealed for what it called "responsible disclosure" of security vulnerabilities - in other words, a grace period to fix problems before they're made public to reduce the likelihood an attacker will get a... [03 Nov 2008]
Internet Security, Vulnerability Disclosure, and Software Provision
White Paper They also model two decisions of the consumer: whether to purchase the software and whether to apply a patch. This paper examines how software vulnerabilities affect firms that sell software and consumers that purchase... [14 Oct 2008]
'Huge' Apple update plugs 40 Leopard security holes
News The update, released this week, plugs flaws that render OS X Leopard users vulnerable to systems compromises including denial-of-service attacks, information disclosure and remote code execution. Included in the update... [30 May 2008]
Data breach laws 'make companies serious about security'
Comment The introduction of the data breach legislation in California has been followed by similar moves from other US states and in the UK momentum is building for the introduction of a similar law.silicon.com's Full Disclosure... [03 Sep 2007]
More flaws: Bugs hit Firefox, IE
News Regarding the cookie problem, Zalewski wrote in a posting to the Full Disclosure mailing list: "The impact is quite severe. Last week, two other information-disclosure bugs in Firefox were publicised. [19 Feb 2007]
OpenOffice patches trio of holes
News Driga denied the disclosure of the vulnerabilities would damage OpenOffice's reputation. OpenOffice.org has released a patch for three security vulnerabilities in its popular open source office suite. [05 Jul 2006]
Oracle patch is holey, says security researcher
News However, the update for Oracle 10g Release 2 does not plug a hole that allows published attack code to run, according to a message sent to the Full Disclosure security list on Wednesday by David Litchfield, a researcher... [27 Apr 2006]
Oracle issues hefty security fix
News These include Alexander Kornbrust of Red Database Security, Esteban Martinez Fayo of Application Security and David Litchfield of Next Generation Security Software, who claimed discovery of Oracle Database flaws in a posting to the Full... [19 Apr 2006]
Crack-a-Mac contest ends abruptly
News These hacker challenges came after weeks of scrutiny of the safety of OS X, prompted by the discovery of two worms, and the disclosure of a serious vulnerability. Security experts are also questioning the effectiveness... [09 Mar 2006]
Apple plugs 20 OS X holes
News The patch arrives after two weeks of intense scrutiny for Apple Mac OS X safety, prompted by the discovery of two worms and the disclosure of two security flaws in that period. Aside from the previously... [02 Mar 2006]
Windows exploit code raises threat alert
News We continue to encourage responsible disclosure of vulnerabilities. Microsoft has yet to develop a security patch for this exploit but it recommended that users enable their firewalls and download... [18 Nov 2005]
Windows worm holes plugged
News Both the MSDTC and COM+ flaws were privately reported to Microsoft by researchers following the company's "responsible disclosure" practices. One patch, delivered in MS05-050, fixes a problem in software... [12 Oct 2005]
