Your search for bug returned 270 results.

US-CERT has warned that exploit code is publicly available for a vulnerability that affects the Microsoft Works 6 file converter -- which could permit attackers to take control of an affected system. You have probably heard by now that the root cause of most security vulnerabilities is in the software we run, and that these vulnerabilities are introduced into the software during the development process. That much has been well understood for several years. What hasn't been well understood is the solution to the problem. There are other things more depressing than lacking a date for Valentine's Day. For starters, how about getting stung by a trojan disguised as an e-card celebrating the annual romantic holiday? WordPress, the popular blogging platform used by many businesses, has pushed out an update to remedy a low-risk vulnerability that permits hackers to edit the posts of other users. Critical ActiveX control flaws have been detected in the Yahoo! Music Jukebox, which like vulnerabilities reported last week in MySpace and Facebook image uploaders, may permit attackers to take control of users' PCs. Symantec has warned that a critical flaw in the ActiveX control of image uploaders that have been widely distributed to users of popular social networking sites Facebook and MySpace can be exploited by hackers to install malicious code on user's computers. Mozilla today pushed out a fix for a Firefox vulnerability that could be exploited to steal cookies and session history. Cisco and Sun Microsystems have released patches - the latter's covering more than 370 bugs in its JavaSE Runtime Environment software - fixing a wide range of vulnerabilities. In its quarterly round of Critical Patch Updates, Oracle is expected to release security fixes for 27 vulnerabilities that it said affect "hundreds" of its products. Our instinct is to fix bugs when we come across them, but sometimes that can cause more harm than good. Bug hunters have claimed numerous flaws in Apple's Safari web browser just hours after its release for Windows. Mozilla officials are investigating a new vulnerability in Firefox that could be exploited by attackers to steal files from a victim's machine. One of the most trusted security elements, it can nonetheless be misconfigured and play right into the hands of the hacker. Apple has released a new version of its popular QuickTime application to close three holes, one of which is a particularly dangerous flaw that was being actively exploited to install malicious code on victims' machines. A number of Hewlett-Packard notebook models are vulnerable to an ActiveX attack that could permit a hacker to execute malicious code. Mozilla on Tuesday patched three security holes in its Firefox web browser and SeaMonkey cross-platform suite. Microsoft today pushed out six security updates to address vulnerabilities, one less than the company promised last week. Researchers are warning users of Mozilla's Firefox 2.0 on Windows computers that they are vulnerable to attacks exploiting the animated cursor (.ani) bug. Researchers today warned of publicly available exploit code targeting a vulnerability in Apple's QuickTime media application.

IT administrators may get out of work on time this Patch Tuesday, as Microsoft plans to release just two fixes.