Your search for flaw returned 641 results.

Numerous vulnerabilities have been identified in Adobe's popular Flash Player that allow attackers to gain control over a user's PC and use it as a launching pad to obtain sensitive data, inject arbitrary code, launch cross-site scripting attacks and mount privilege escalation attacks on servers hosting cross-domain policy files. Attacks are actively exploiting a zero-day ActiveX vulnerability in RealPlayer, researchers warned today. Remote system access possible unless update is applied. Mozilla today pushed out a fix for a Firefox vulnerability that could be exploited to steal cookies and session history. Researchers last week revealed an unpatched buffer overflow bug in Windows that could allow an attacker to take control of an affected machine.
A group of Israeli researchers claims to have discovered a serious vulnerability in Microsoft's Windows 2000 operating system.. Microsoft is warning users to avoid suspicious websites and emails after attacks were reported on an unpatched flaw in Internet Explorer 7. Security firm Kaspersky was aware of the flaw in its online scanner and had issued a patch on 9 October, despite comments made to vnunet.com by its staff. Fedora has fixed a 'highly critical' flaw in the OpenOffice suite of products more than two weeks after it was first discovered. A 'highly critical' flaw has been discovered in the OpenOffice suite of products that could allow hackers to access a user's system.
Symantec has warned that a critical flaw in the ActiveX control of image uploaders that have been widely distributed to users of popular social networking sites Facebook and MySpace can be exploited by hackers to install malicious code on user's computers. Microsoft today warned PC users of a Windows flaw that occurs when the operating system, or Internet Explorer, (IE) tries to find a Web Proxy Automatic Discovery (WAPD) server. Researchers have reported a vulnerability in Apple's Leopard operating system that the company had already patched. Google has patched a cross-site request forgery vulnerability in Gmail that could allow the forwarding of messages to a malicious user. Vulnerabilities in MFC42 and MFC71 could allow remote code execution. Researcher blows up Apple's security claims. Adobe disclosed a vulnerability in its Reader and Acrobat products that can be exploited by remote attackers using malicious PDF documents. Mozilla on Thursday acknowledged that a year-old vulnerability in the QuickTime media player plug-in for Firefox could let a hacker break into the open-source browser. A new threat that poisons DNS caches has been identified. Microsoft plans to issue four security patches next week, all for "critical" flaws.