patch vulnerability
Microsoft's 'Patch Tuesday' targets six critical flaws
News Microsoft has released six critical patches for August's 'Patch Tuesday', including a fix for six vulnerabilities in Internet Explorer. Karthik Raman, a research scientist at McAfee, said in a statement: "This is a mammoth Patch Tuesday, and we... [13 Aug 2008]
Apple patch fails to address DNS flaw, say experts
Apple's Domain Name System patch for Mac OS X systems is not completely effective, according to security experts. The patch was brought out by Apple on Friday for its Tiger and Leopard operating systems, to address a critical Domain Name System... [04 Aug 2008]
RIM warns on BlackBerry PDF flaw
News RIM quietly disclosed the flaw last week, but is yet to issue a patch. Until the company can issue a patch, RIM has warned customers to disable the BlackBerry Attachment Service, which allows BES to process PDF attachments for users to view on... [17 Jul 2008]
Google Talk finds a home on iPhone
News Apple patched Miller's Safari vulnerability for the desktop in April but so far has not issued a similar patch for the iPhone. Google is making its Google Talk instant-messaging application available for Apple's iPhone and iPod Touch, however these... [04 Jul 2008]
Microsoft Security Bulletin MS00-075: Patch Available for 'Microsoft VM ActiveX Component' Vulnerability
White Paper Microsoft has released a patch that eliminates a security vulnerability in Microsoft® virtual machine (Microsoft VM). This older alert is of new relevance because a new strain of the Seeker Trojan, JS/Seeker-E, reported January 3, 2002, takes... [03 Jul 2008]
A Practical Guide to Building an Effective Patch Management Process
White Paper For an organization to succeed at effectively managing its system patching, executive management, working with security managers operating the program, must initiate and support an organization-wide Security Vulnerability and Patch Management... [03 Jul 2008]
Procedures for Handling Security Patches
White Paper One of several possible techniques is through the creation of a patch and vulnerability group (PVG). This document provides principles and methodologies for accomplishing the following points. Timely patching is critical to maintain the operational... [03 Jul 2008]
Important Information for IIS 4.0 Server Administrators Regarding the "Code Red" Worm
White Paper The patch completely eliminates the vulnerability discussed in the security bulletin, and fully protects IIS 4.0 and IIS 5.0 systems from being infected by the Code Red worm. Some reports claim that the situation occurs because of a flaw in the... [03 Jul 2008]
Microsoft Security Bulletin (MS00-017) Patch Available for "DOS Device in Path Name" Vulnerability
White Paper Microsoft has released a patch that eliminates a security vulnerability in Microsoft® Windows® 95, Windows 98, and Windows 98 Second Edition. The vulnerability could cause a user’s system to crash, if they attempted to access a file or folder whose... [03 Jul 2008]
Microsoft Security Bulletin MS01-027: Flaws in Web Server Certificate Validation Could Enable Spoofing
White Paper Customers should consider applying the patch. Impact of vulnerability: Who should read this bulletin: Customers using Microsoft® Internet Explorer. Spoofing of trusted web site. Recommendation: Affected Software: [03 Jul 2008]
Dynamic Best Practices of Vulnerability Management
White Paper Vulnerabilities, usually expressed by a product vendor as a defect requiring a patch, upgrade or configuration change, are the weaknesses in a security profile that attackers target. Once vulnerability is discovered, it is only a matter of time... [03 Jul 2008]
Microsoft Security Bulletin MS01-058: 13 December 2001 Cumulative Patch for IE
White Paper Customers using IE should install the patch immediately. Impact of vulnerability: Who should read this bulletin: Customers using Microsoft® Internet Explorer. Run code of attacker’s choice. Maximum Severity Rating: [03 Jul 2008]
Microsoft Security Bulletin MS01-060: SQL Server Text Formatting Functions Contain Unchecked Buffers
White Paper Apply the SQL Server patch immediately to affected systems Apply the C runtime patch only to systems judged to be at high risk. Impact of vulnerability: Who should read this bulletin: Database administrators using Microsoft® SQL Server. [03 Jul 2008]
The Ten Immutable Laws of Security
White Paper In some cases, we find that a report describes a bona fide security vulnerability resulting from a flaw in one of our products; when this happens, we develop a patch as quickly as possible to correct the error. [03 Jul 2008]
Vulnerabilities in MS Internet Explorer
White Paper Microsoft issued a patch to correct this problem on December 13, 2001. To underscore the seriousness of this vulnerability, Microsoft has labeled the severity of this as "critical". Two new vulnerabilities in Microsoft Internet Explorer versions... [03 Jul 2008]
Keep updated for stories matching patch vulnerability via RSS
