Blog

Vulnerability

Mozilla announced today the official release of Firefox 8, a new version of the popular open source web browser. The modest update introduces a few new features and brings a number of minor improvements to the browser’s underlying HTML renderer. The built-in search box in Firefox’s navigation toolbar has been...
Microsoft has posted a security advisory 2639658 to address the recently disclosed Windows kernel vulnerability (CVE-2011-3402) exploited by the Duqu malware. Microsoft has determined the flaw is in the processing of embedded True Type Fonts (TTFs). According to Microsoft: “The attacker could then install programs; view, change, or delete data;...
Microsoft has released 8 security bulletins covering a total of 23 vulnerabilities for software such as Microsoft .NET Framework, Microsoft Silverlight, Internet Explorer, Microsoft Forefront United Access Gateway and Microsoft Host Integration Server. 6 out of the 8 bulletins are rated ‘Important’, while 2 are rated ‘Critical’. Some of the...
Mozilla, a global non-profit organization dedicated to making the web better, released an update to Firefox for Windows, Mac and Linux. Mozilla Firefox provides a speedy web browsing experience for users and has released new tools to help developers create faster websites and web apps. Firefox manages memory more efficiently...
Adobe has released a security patch for Adobe Flash Player that fixes several critical security vulnerabilities. Affected are all versions of Adobe Flash Player 10.3.183.7 and earlier, for all supported operating systems (Windows, Macintosh, Linux, Solaris) as well as Adobe Flash Player 10.3.186.6 and earlier for the Android operating system....
Microsoft has released 5 security bulletins covering a total of 15 vulnerabilities. All of these vulnerabilities are rated ‘Important’ by Microsoft, even though three of them could lead to remote code execution. The patches address elevation of privileged and remote code execution vulnerabilities and may require a restart of Windows....
A new malware affecting the latest version of Android operating system (2.3 – Gingerbread) is now out in the wild and masquerading as an app featuring some “Beauty of the Day” photos. The package I downloaded uses the following permissions: android.permission.READ_PHONE_STATE android.permission.READ_LOGS android.permission.DELETE_CACHE_FILES android.permission.ACCESS_CACHE_FILESYSTEM android.permission.WRITE_SECURE_SETTINGS android.permission.ACCESS_NETWORK_STATE android.permission.INTERNET android.permission.WRITE_EXTERNAL_STORAGE android.permission.MOUNT_UNMOUNT_FILESYSTEMS android.permission.READ_OWNER_DATA...
Microsoft has released two Critical updates: MS11-057 (Internet Explorer): This security update resolves 5 privately reported vulnerabilities and 2 publicly disclosed vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. Microsoft is not...