1 Resources for

mitre cve

Subscribe to this listing via:
RSS
Email

Sponsored White Papers, Webcasts, and Downloads

TechRepublic Resources

Multiple critical vulnerabilities in Firefox: There are various vulnerabilities in Firefox 1.x and 2.0.x which can lead to cross site scripting, remote system access, and various other attacks.You can see details at the Mitre CVE site.CVE-2006-6077CVE-2007-0008CVE-2007-0775 CVE-2007-0776 CVE-2007-0777 CVE-2007-0778 CVE-2007-0779 CVE-2007-0780 CVE-2007-0800 CVE-2007-0981 CVE-2007-0995A reminder, you can find the original CVEs by inserting the correct...; Tags: Firefox, MITRE CVE, Mozilla Firefox, Security; Blog posts 2007-02-27

Additional Resources

Get the details on Microsoft's security bulletins for April: DetailsMicrosoft has released a slew of critical bulletins for the cruelest month of all (tax day for U.S. readers). This month we have three new critical bulletins one of which was updated over the weekend addressing a number of vulnerabilities, along with two more bulletins addressing minor issues. (Of course...; Tags: bulletin, COM Object Instantiation Memory Corruption Vulnerability, DHTML Method Call Memory Corruption Vulnerability, John McCormick, Microsoft Corp., Microsoft Internet Explorer, security, Vulnerability; Technical articles 2006-04-17
Microsoft unveils a flurry of critical security alerts for Windows: On October 12, 2004, Microsoft released a flurry of criticalsecurity alerts (Microsoft Security Bulletins MS04-032 through MS04-038) alongwith some less important threat bulletins (MS04-029 through MS04-031). Most ofthe security alerts affect Windows systems, but Macintosh computers are also vulnerableto some of the threats. DetailsMS04-032 Â“Security Update for MicrosoftWindowsÂ” addresses the...; Tags: Â, Allow Remote Code ExecutionÂ, execution threat, John McCormick, Microsoft Corp., Microsoft Windows, security, security alert, vulnerability; Technical articles 2004-10-13
Microsoft patches 10 new IIS vulnerabilities: If you have a Web server running IIS on Windows NT 4.0 or Windows 2000 or even Windows XP, you’ve got some new security problems to deal with. In what can only be viewed as a bad week for Microsoft, the company recently disclosed that a full double handful...; Tags: SECURITY, Viruses and worms, John McCormick, Microsoft IIS Server, buffer-overflow, vulnerability, Microsoft Corp., server; Technical articles 2002-04-29
Microsoft's DEC 2004 Security Bulletins affect wide range of software: Microsoft has released five new Security Bulletins forDecember 2004, and all of them are rated Important, not Critical. Several ofthem apply to Windows XP Service Pack 2.DetailsMS04-041 Vulnerability in WordPad Could AllowCode Execution (885836) patches a table conversionvulnerability (CAN-2004-0571)and a font conversion vulnerability (CAN-2004-0901),both due to an unchecked buffer. These...; Tags: buffer, Digital Equipment Corp., John McCormick, Microsoft Corp., Microsoft Windows, Microsoft Windows NT, Microsoft Windows XP, software, Vulnerability, WordPad; Technical articles 2004-12-20

Windows DNS Server Remote Code Execution Threat: A newly released Microsoft Security Advisory warns that the Redmond company is investigating reports of attacks taking place against Windows 2000 Server Service SP4 as well as Windows Server 2003 SP1 and SP2.The Mitre CVE reference for this is CVE-2007-1748. Details are few at this time but Microsofts report confirms...; Tags: Security, Microsoft Update, Microsoft, Internet Service; Blog posts 2007-04-13
Browser injection flaws affect multiple browsers and platforms: A serious new vulnerability that can allow attackers to hacka browser window is a threat to a variety of browsers and platforms. There arepatches available for some browsers but, at the time this was written, there isno known fix for other browsers. This is a new threat and may be...; Tags: John McCormick, Secunia, vulnerability, Web browser; Technical articles 2004-12-13
New flaws in FrontPage Server Extensions, Word, and Excel need patches: Microsoft’s Security Bulletin MS03-051, “Buffer Overrun in Microsoft FrontPage Server Extensions Could Allow Code Execution,” addresses two new vulnerabilities. The more dangerous of the two, a buffer overrun error, could allow a remote attacker to run arbitrary code on the server.The buffer overrun in Front Page Server Extensions has been...; Tags: FrontPage Server Extensions, John McCormick, Microsoft Corp., Microsoft Excel, Microsoft FrontPage, Microsoft Office, Microsoft Windows, Microsoft Word, MS03-050, MS03-051, patch management, vulnerability; Technical articles 2003-12-01
Support Dynamic Network Architecture for Large-Scale Collaborative Virtual Environment: Collaborative Virtual Environments CVEs is a promising technology which provides shared virtual world to the geographically dispersed people to interact with each others. However, the scalability of existing CVE systems is limited due to the constraints in processing power and network speed of each participating host. In this paper, a...; Tags: Network, Agent, Nanyang Technological University, Virtual Environment, Network Architecture, Collaborative Virtual Environment, Real Estate, Networking, Network Administration, Business Operations; White papers 2006-03-13
Firefox harbors multiple critical vulnerabilities: A slew of vulnerabilities has surfaced in the Mozilla Firefox browser, affecting versions 0.x and 1.x. John McCormick has the details in this edition of the IT Locksmith. The Firefox Web browser has apparently come of age, so to speak. The latest security advisory from Secunia lists a...; Tags: Mozilla Firefox, Secunia, John McCormick, Web browsers, SECURITY, vulnerability, Web browser, IT Locksmith Newsletter, Apple Inc., Internet; Technical articles 2006-04-24
IE has another megapatch--albeit a flawed one: Just when you thought it was safe to use Microsoft Internet Explorer, another cumulative patch has been released to fix several new critical flaws. Check out the dangers involved in these vulnerabilities and see why one of the patches may be incomplete.Microsoft has addressed six new vulnerabilities with Security Bulletin...; Tags: Web browsers, Patches, SECURITY, John McCormick, Microsoft Internet Explorer, cumulative patch, vulnerability, patch, GreyMagic Software, Microsoft Corp.; Technical articles 2002-05-28
Serious Kerberos flaws affect Cisco and Mac, but not Windows: MIT's Kerberos authentication utility has been found to havesome serious vulnerabilities. Windows is not affected,but other widely used products from Cisco and Apple are definitely vulnerable,as are many third-party applications that rely on Kerberos 5.DetailsKerberos is a symmetric cryptographic key authenticationsystem that uses a unique "ticket" to identify authorized usersacross...; Tags: vulnerability, Cisco Systems Inc., Massachusetts Institute of Technology, Kerberos, ASN.1, John McCormick, Apple Macintosh, Kerberos 5, MIT Kerberos authentication utility, Microsoft Windows; Technical articles 2004-09-14
Samba flaw opens up root access to remote attackers: The SuSE Security Audit Team has reported that a vulnerability in the Samba suite—which provides SMB-based file and printer sharing on many Linux and UNIX systems—can open up a system to a remote attack resulting in complete compromise of the system by giving the attacker "root" privileges.DetailsA News.com story on...; Tags: flaw, John McCormick, Samba, Samba flaw, vulnerability; Technical articles 2003-04-07
Flaw in the Sun Java Plugin is elusive and very dangerous: A recently-discovered vulnerabilityin the Sun Java Plugin is a threat to many Web browsers such as Mozilla,Firefox, and Internet Explorer, and it also affects multiple operating systems.DetailsOf this serious flaw with the Java Plugin, Sun says, "Avulnerability in the Java Plugin may allow an untrusted applet to escalateprivileges, through JavaScript...; Tags: Java, John McCormick, plug-in, Sun Java, Sun Microsystems Inc.; Technical articles 2004-11-29
Lock IT Down: Critical flaw in RPCSS is similar to the cause of Blaster: Microsoft is urging users to patch their systems after the discovery of three new vulnerabilities in its version of the open source Remote Procedure Call RPC protocol, as detailed in Microsoft Security Bulletin MS03-039. This should be considered a particularly serious threat because it exploits a vulnerability that is similar...; Tags: Blaster worm, information technology, John McCormick, Microsoft Corp., Microsoft Windows, RPC, RPCSS, vulnerability; Technical articles 2003-09-22
Lock IT Down: Critical flaws in Microsoft VM make Windows vulnerable: If you overlook this important security flaw, youre putting your system at riskThree recently discovered flaws in the Microsoft Virtual Machine can open client systems to complete compromise, according to a report by Symantec.One vulnerability allows attackers to remotely execute DLLs by exploiting Microsoft's implementation of a Java Virtual Machine,...; Tags: SECURITY, Microsoft Windows XP, John McCormick, Microsoft VM, Microsoft Corp., vulnerability, Microsoft Windows; Technical articles 2002-10-07
MS07-017: "Vulnerabilities in GDI Could Allow Remote Code Execution": Microsoft today released a patch for the critical-rated vulnerability in animated cursors that has been widely reported by me in this blog and elsewhere.Microsoft Security Bulletin MS07-017 is a patch for a remote execution vulnerability that is already being exploited.But, in addition to that .ani file vulnerability, this security bulletin...; Tags: Windows Vista, Windows, Vista, Security, Microsoft Update, Microsoft, Ie6, IE; Blog posts 2007-04-03
Microsoft remains in spotlight with new patches, delayed SSL fix: It's a busy time for Windows admins. Microsoft has released a group of new Security Bulletins, and a patch for the recently discovered SSL-IE flaw is finally available. This edition of The Locksmith has the details.A flurry of new Microsoft Security Bulletins, updates, and patches is following closely on the...; Tags: Patches, SSL/TLS, Authentication/Encryption, SECURITY, Network security, John McCormick, flaw, SSL, patch, Microsoft Corp., digital certificate, patch management; Technical articles 2002-09-09
New update addresses two serious Apache flaws: The Apache Software Foundation has released a new revision (version 2.0.46) of its popular Web server software, mostly to correct two newly disclosed security holes. One problem, similar to the one that was recently patched in Microsoft IIS, can result in a denial of service event that can be triggered...; Tags: Apache Software Foundation, John McCormick, Red Hat Inc., Secunia, security, vulnerability, WebDAV; Technical articles 2003-06-16
New RPC flaw affects almost all versions of Windows: Microsoft Security Bulletin MS03-026 describes a patch for a Critical vulnerability in nearly all Windows versions. A buffer overrun flaw in the Remote Procedure Call RPC interface could allow an attacker to run arbitrary code on vulnerable systems.The Last Stage of Delirium Research Group LSD held off announcing its discovery...; Tags: John McCormick, Microsoft Corp., Microsoft Security Bulletin MS03-026, Microsoft Windows, RPC, RPC flaw, vulnerability; Technical articles 2003-07-28

<< Previous
page 1 of 1
Next >>

Best Practices for Maximizing Microsoft Access 2003: This pre-packaged presentation contains everything you need to instruct end users about how to get the most out of Microsoft Access--even if you don't ...; Buy Now

TechRepublic's Gaming Policy: Computer games--including those installed from floppy disks, USB "thumb" drives, CDs, DVDs, or accessed online or as part of any massive, multiplayer ...; Buy Now