Apple Safari 4.0.4 patches critical vulnerabilities on Nov 17, 2009 in News ColorSyncAn integer overflow exists in the handling of images with an embedded color profile, which may lead to a heap buffer overflow. Opening a maliciously crafted image with an embedded color profile may lead to an unexpected application terminati...
WordPress 2.8.6 security release on Nov 17, 2009 in News WordPress 2.8.6 fixes two security problems that can be exploited by registered, logged in users who have posting privileges. If you have untrusted authors on your blog, upgrading to 2.8.6 is recommended.The first problem is an XSS vulnerability in P...
(IN)SECURE Magazine issue 23 released on Nov 17, 2009 in News (IN)SECURE Magazine is a free digital security publication discussing some of the hottest information security topics. Issue 23 has been released today.Read More: Here...
DNS problem linked to DDoS attacks gets worse on Nov 17, 2009 in News Internet security experts say that misconfigured DSL and cable modems are worsening a well-known problem with the Internet's DNS (domain name system), making it easier for hackers to launch distributed denial-of-service (DDoS) attacks against their v...
Grsync: GUI for rsync 0.9.2 released on Oct 15, 2009 in News Grsync is an open source rsync GUI. It can be effectively used to synchronize local directories and it supports remote targets as well (even though it doesn't support browsing the remote folder).Features:Most commonly used rsync options available, ad...
Anonymizing network I2P 0.7.7 released on Oct 15, 2009 in News I2P is an anonymizing network, offering a simple layer that identity-sensitive applications can use to securely communicate. All data is wrapped with several layers of encryption, and the network is both distributed and dynamic, with no trusted parti...
Vulnerability scanner SAINT 7.1.3 released on Oct 15, 2009 in News SAINT offers an integration of vulnerability assessment and penetration testing tools.New features in version 7.1.3:Added support for ntlmv2 authentication.SAINTwriter: Added option to have no header in reports. Added $support_noframes option to allo...
Web Application Security Scanner Evaluation Criteria 1.0 released on Oct 15, 2009 in News Web Application Security Scanners are automated tools to test web applications for common security problems such as cross-site scripting, SQL injection, directory traversal, insecure configurations, and remote command execution vulnerabilities. These...
Web-based firewall log reporting and analysis tool Webfwlog 0.94 released on Oct 15, 2009 in News Webfwlog is a flexible web-based firewall log analyzer and reporting tool. It supports standard system logs for linux, FreeBSD, OpenBSD, NetBSD, Solaris, Irix, OS X, etc. as well as Windows XP. Supported log file formats are netfilter, ipfilter, ipfw...
Cisco IOS Software NTP packet vulnerability on Sep 24, 2009 in News The Network Time Protocol (NTP) is a protocol designed to time-synchronize a network of machines. NTP runs over UDP, which in turn runs over IP.When a Cisco IOS Software device supporting NTPv4 receives a specific NTP packet it will crash while creat...
© BlogTopsites.com 2004-2009. Contact Us.
