Andrew Berges

Configuration Manager, Security, and other musings from a self-confessed IT geek.

Browse by Tags

All Tags » Security (RSS)
McAfee Agent Information Disclosure Vulnerability
A paper has been published by SySS GmbH illustrating that under certain circumstances this vulnerability can be exploited to escalate the privileges of...
SANS Internet Storm Center; Adobe Reader vulnerability exploited in the wild
Adobe Reader vulnerability exploited in the wild Published: 2008-11-07, Last Updated: 2008-11-07 15:54:09 UTC by Bojan Zdrnja (Version: 1) 0 comment(s...
Adobe PSIRT: Flash Player "Clipboard Attack"
http://blogs.adobe.com/psirt/2008/08/clipboard_attack.html We are aware of recent press reports about a potential “Clipboard attack” issue that involves...
CVE-2008-3648: Remote Code Execution Exploit with Windows XP nslookup.exe
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3648 Overview nslookup.exe in Microsoft Windows XP SP2 allows user-assisted remote attackers to execute arbitrary...
BlackBerry Updates Attachment Service PDF Security Advisory
RIM has released version 4.1 Service Pack 6 (4.1.6) to address the vulnerability, giving an alternative to their prior suggested workaround of blocking...
Cisco Security Advisory: Vulnerability in Cisco WebEx Meeting Manager ActiveX Control
Summary A buffer overflow vulnerability exists in an ActiveX control used by the WebEx Meeting Manager. Exploitation of this vulnerability could allow...
SunbeltBlog: CounterSpy 3.1 ships
Today, we officially released the consumer version of our all-new CounterSpy 3.1 product. (It’s actually version 3, but due to having to align our version...
F-Secure Weblog: F-Secure Rescue CD 3.00
Our colleagues from the Linux team blogged about it last month, but it's worth repeating: The latest version of our Emergency Rescue CD is available...
VIPRE Enterprise Released
The new enterprise managed AV / AntiSpyware solution from Sunbelt Software: http://www.vipreenterprise.com/ Press release available here: http://www.sunbeltsoftware...
Anti-Malware Blog: SAP Internet Graphics Service (IGS) Remote Buffer Overflow
SAP is the largest business application and Enterprise Resource Planning (ERP) solution software provider in terms of revenue. CYBSEC Security Systems...
Secunia: Microsoft Help Workshop Two Buffer Overflow Vulnerabilities
porkythepig has discovered two vulnerabilities in Microsoft Help Workshop, which can be exploited by malicious people to compromise a user's system. Microsoft...
F-Secure Antivirus Research Weblog: Further Information on the Pocket PC MMS Exploit
We have done further study on the MMS exploit discovered by Collin Mulliner. The exploit affects most Pocket PC phone edition and Windows Mobile devices...
Am I the only one that finds this a bit comical?
As reported on Donna's SecurityFlash weblog , Agnitum (maker of Outpost Firewall) is rather critical of the firewall included with Windows Vista. Donna...
Chris Mosby (myITforum): National Vulnerability Database (CVE-2007-0264) - Buffer overflow in Winzip32.exe in WinZip 9.0 SR-1
Vulnerability Summary CVE-2007-0264 Original release date: 1/16/2007 Last revised: 1/17/2007 Source: US-CERT/NIST Overview Buffer overflow in Winzip32...
Chris Mosby (myITforum): Sun Java GIF Image Processing Buffer Overflow Vulnerability
Fellow blogger Harry Waldron posted this info to in an e-mail list, so I hope he won’t mind me using it. Sun Java GIF Image Processing Buffer Overflow...
More Posts Next page »