vulnerable system

TechRepublic Resources

• sort by:
• Relevance
• Date
• Popularity

Lock IT Down: Microsoft releases seven new security bulletins

In a single day, Microsoft recently released seven Security Bulletins: MS03-041, MS03-042, MS03-043, MS03-044, MS03-045, MS03-046, and MS03-047). With the exception of MS03-045 and MS03-047, all of these are rated Critical by Microsoft. We're going to take a closer look at each of the five critical vulnerabilities.DetailsMS03-041, Vulnerability in Authenticode...

Tags: arbitrary code, attacker, Authenticode, buffer, information technology, John McCormick, Microsoft Corp., Microsoft Windows, MS03-041, MS03-043, remote attacker, security, service pack, vulnerability, vulnerable system

Technical articles 2003-10-27

Lock IT Down: Critical flaw in VBA could be next target for hackers

Microsoft has released five new Security Bulletins, MS03-034, MS03-035, MS03-036, MS03-037, and MS03-038, ranging in severity from Low to Critical. The most significant of these bulletins is MS03-037, "Flaw in Visual Basic for Applications Could Allow Arbitrary Code Execution," which describes a buffer overrun that can lead to the complete...

Tags: information technology, John McCormick, Microsoft Corp., Microsoft Word, MS03-037, VBA, vulnerable system

Technical articles 2003-09-15

Additional Resources

End users more vulnerable to spear phishing scams

It may surprise you to find out how vulnerable end users are to phishing attacks. Now a new application may let you constructively realign end user behavior to protect your company's assets. by Toni Bowers

Tags: Phishing, Cyberthreats, Spam, Viruses And Worms, Security, Spam And Phishing, Toni Bowers

Blog posts 2008-07-23

AusCERT NSS SSL 3.11.4 Library threat warning (Includes Sun ONE and Java System Web Server)

Those nice people down under who are suffering a prolonged draught probably due to global warming are at the forefront of English language Internet and software vulnerability warnings.They recently released a warning that both server and client software that uses NSS SSL libraries 3.11.4 and earlier are vulnerable to remote...

Tags: AusCERT, Java, Security, server, Sun Microsystems Inc., Sun ONE

Blog posts 2007-02-27

IDC Executive Brief: The Rising Concerns Over Endpoint Security

Today's IT environment is increasingly vulnerable to threats and attacks, both from within and without. The most vulnerable node in the enterprise network is the endpoint. This IDC executive brief examines how an integrated EPS solution with multiple security layers, has been proven to deliver the highest level of protection...

Tags: Novell Inc., Endpoint, International Data Corp., Roi/Tco, Security, Finance, Managerial Accounting

White papers 2008-04-23

Inside the Windows Meta File Format

The Windows Meta File WMF format has received a lot of attention over recent weeks. A metafile is a collection of records. Most commonly although not always, these are used to describe a picture. What are the consequences of the WMF bug and who really is vulnerable? It all comes...

Tags: Microsoft Windows Metafile, Metafile

White papers 2006-02-01

Consultants Corner: A BCP Survival Guide to Mergers and Acquisitions

For survivors of the 1990s, the words "mergers and acquisitions" still bring about a feeling of dread. They may not be as prevalent today, but they still cause a fair amount of uncertainty. The result is often less staff, which means more work will be required of fewer people to...

Tags: Acquisition, Merger, Mergers & Acquisitions, Corporate Law, Investment, Finance, Business Operations

White papers

Linux is a Mystery!

"The majority of the world's population is lazy, Microsoft is easy, Linux is a mystery!"Vivek, LondonIsn’t this the truth? Microsoft is easier than Linux and Linux is truly still a mystery to the average user. The Longhorn Server and Client Windows Longhorn Server and Windows Vista will be the most...

Tags: Linux, Linux IS, Microsoft Corp., Microsoft Windows

Blog posts 2005-11-15

Zero-day Word flaw used in attack

Simple-- Don't...........!.Don't use MS Word as a Standard means to move Documents. Who ever started that should be back to the Taliban. And any Goverment that uses such vulnerable software is not doing anyone any favors. and not doing a service to their people I think even more agencies...

Tags: SECURITY, Goverment

Discussion threads 2006-05-22

Windows System Programs Vulnerability

I saw on TR a few months ago a list of system programs I think that run automatically in Windows XP/2000(?) that make your PC vulnerable to attacks thru the web and that some of them you can turn off. Does anyone know what I'm talking about?

Tags: carolyn_miller@..., Microsoft Windows, windows, windows system files

Discussion threads 2006-10-30

An Information-Theoretical View of Network-Aware Malware Attacks

This paper investigates three aspects: a network vulnerability as the non-uniform vulnerable-host distribution, threats, i.e., intelligent malwares that exploit such a vulnerability, and defense, i.e., challenges for fighting the threats. They first study five large data sets and observe consistent clustered vulnerable-host distributions. They then present a new metric, referred...

Tags: Florida International University, Aware, Distribution, Network, Malware, Attack, Spyware, Adware & Malware, Cyberthreats, Viruses And Worms, Security

White papers 2008-09-08

Strengthening AIX Security: A System-Hardening Approach

AIX is an open UNIX operating environment that achieves increased levels of integration, flexibility and reliability-which means many of its services are immediately available when users finish installing the operating system. Without correct configuration, the system is vulnerable to several security exposures. This paper outlines the process of System Hardening,...

Tags: IBM AIX, IBM Corp., UNIX, Operating Systems, Security, Software

White papers 2002-03-26

Unpatched Hole in IE 6/7 for fully patched XP SP2 .ani file related EXPLOIT CODE PUBLISHED

Originally reported by McAfee, the vulnerability is related to animation files played in Internet Explorer versions 6 and 7 even in fully patched systems.There is a description of the exploit at http://vil.nai.com/vil/content/v_141860.htm This is probably a low-level threat but the exploit has already been seen, so it is probably worth...

Tags: Security, Microsoft, Internet, Ie6, IE

Blog posts 2007-03-29

Word hole exploited in zero-day attacks

What is a Word file?It would be helpful to know if a file in RTF format was safe. Or what if we save Word documents in HTML? Or is any file at risk, including plain text - if opened in Word? LeighExcellent questions...Adding to your thoughts,...

Tags: Microsoft Word, word, security, leigh.littleton@...

Discussion threads 2006-12-06

How to defend against VML zero-day IE exploit

ThanksThanks for the legwork George.No problemI'm still testing if Hardware enforced DEP will mitigate this issue as well.IE7 ???Is this vulnerability in IE7 also?If so does the patching apply to IE7 also?Kind of tiring isn't it?It gets to a point when you just get tired of listening over and over...

Tags: eggibba, Microsoft Internet Explorer 7, off-topic, patch management, Protected Mode, vml exploit

Discussion threads 2006-09-20

Survey finds DNS servers security features good, but for the configuration

Network appliance firm, Infoblox, finds in its latest annual Domain Name System survey that more that 50% of name servers on the internet are vulnerable to pharming attacks. An excerpt from InternetNews The Infoblox study revealed that more than half of all DNS servers allow for...

Tags: Security, DNS, DNS Server, Server, Survey, Domain Names, Networking, Internet, Arun Radhakrishnan

Blog posts 2007-11-21

Webcast: Voice over IP Security

It's important to understand that VoIP is vulnerable to specific types of attacks. For example, the media channel is subject to a variety of attacks, including wiretapping and media manipulation. The signaling is also vulnerable to attack, which can include misdirected or counterfeit signaling messages that may be difficult to...

Tags: Global Knowledge Network Inc., Webcast, Attack, Telephony, VOIP, Security, Telecommunications, Networking

Webcasts 2008-02-01

Security news roundup: October 12, 2007

Here is a collection of recent news stories posted on TechRepublic's IT Security blog, which cover a highly critical flaw involving the popular FCKEditor text editing component, security updates for Adobe's GoLive 9 and Illustrator CS3, a new post 1.1.1 image processing vulnerability, and a vulnerability in TikiWiki. ...

Tags: Adobe Systems Inc., Adobe GoLive, Vulnerability, Image Processing, Security, Paul Mah

Blog posts 2007-10-12

Internet kiosk at airport vulnerable to hacking

Internet access terminals at the Heathrow airport were found to be vulnerable to hack attacks. An excerpt from Register: An Italian hacker stumbled on flaws that create a possible means for miscreants to load key logging software or other malware on a PC that allowed members...

Tags: Terminal, PC, Keylogging, Hacking, Internet, Security, Desktops, Viruses And Worms, Hardware, Arun Radhakrishnan

Blog posts 2008-01-26

regedit not run and the system restart

when i try to run regedit the windows xp restart .I saw that if i want to run cmd , msconfig the system restart.System infected and vulnerable to threatcheck this thread:http://techrepublic.com.com/5208-6230-0.html?forumID=101&threadID=208691&messageID=2153326Also, check all my comments on how to remove this.

Tags: ashim_krdas@...

Discussion threads 2007-01-22