execution flaw
RSS execution flawMicrosoft's 'Patch Tuesday' targets six critical flaws
News Versions of Office are affected by this flaw, including Office XP Service Pack 3 (SP3), and Office 2003 SP2 and SP3. Security Bulletin MS08-044 gives details of five critical vulnerabilities in Office filters that could... [13 Aug 2008]
Apple releases patch for critical flaw
News Apple released a security update yesterday to users of its Tiger and Leopard operating systems to address a critical Domain Name System flaw, along with a dozen other updates. The DNS flaw, which was... [01 Aug 2008]
RIM warns on BlackBerry PDF flaw
News RIM is warning businesses to disable the function that allows a BlackBerry to read PDF files until an update can be issued, after a security flaw was found in the company's software. A 'high' severity... [17 Jul 2008]
Apple fixes 'hack-a-Mac hole'
News Apple has released a QuickTime update to fix a security flaw that was used to breach a MacBook Pro at a recent security conference. Security monitoring company Secunia deems the flaw "highly critical",... [02 May 2007]
Office at risk from bug trio
News Karthik Raman, a McAfee researcher wrote on the blog: "There is one heap-overflow flaw that might be exploited for code execution. Microsoft did not deliver any patches for Office on Tuesday, despite two... [11 Apr 2007]
Security warning over tech support tools
News The problem is "high" risk but is mitigated somewhat, because triggering the flaw would require some action on the part of the user, Symantec noted. It said: "If successfully exploited, this vulnerability could... [27 Feb 2007]
Apple fixes four flaws
News There's a buffer overflow flaw in Finder which could allow an attacker to take control of a system by "enticing a user into mounting a malicious disk image", or tricking someone into enabling local access of a file... [16 Feb 2007]
Apple patches QuickTime flaw at last
News The patch comes 23 days after details of the flaw, along with detailed attack code, were publicly released. An attacker could exploit the flaw and commandeer a vulnerable system by placing a special RTSP... [24 Jan 2007]
Warning over "critical" QuickTime hole
News Security-monitoring companies Secunia and the French Security Incidence Response Team, or FrSirt, rate the QuickTime flaw as "highly critical" and "critical", respectively. In response to the publication of the QuickTime... [03 Jan 2007]
Mac OS X flaw: US gov adds warning
News According to US-Cert, the vulnerability in OS X may allow an attacker using malformed '.dmg' files to corrupt system memory in a way that could allow arbitrary code execution, or cause a denial of service. [27 Nov 2006]
"Highly critical" Mac OS X kernel hole unearthed
News A security researcher has published attack code for an unpatched flaw in Mac OS X. The proof-of-concept code exploits a security hole in the way Apple's operating system handles disk image files, the researcher wrote on... [22 Nov 2006]
Windows worm holes plugged
News The most urgent issue is a flaw in Microsoft's "Workstation Service" in Windows 2000 and Windows XP, said Amol Sarwate, a research manager at vulnerability management company Qualys. A hacker could exploit the... [15 Nov 2006]
Apple wi-fi hole exposed
News The vulnerability lies in the Apple AirPort driver, according to details on the flaw published by HD Moore, the developer of the Metasploit security tool. The attack entails trying to trigger a memory corruption... [02 Nov 2006]
Firefox 'zero-day flaw' fizzles out
News Based on the information Spiegelmock provided to Mozilla, the issue presented at ToorCon could still be a serious flaw but so far it looks like an innocuous crash, Snyder said. We have not been able to demonstrate code... [04 Oct 2006]
Microsoft slaps quick fix on IE flaw
News The company is breaking with its monthly patch cycle to fix a flaw that cyber crooks have been using to attack Windows PCs via Internet Explorer. Sunbelt had been monitoring attacks that exploit the... [27 Sep 2006]
