Your search for flaw returned 640 results.

Developers have released an updated version of WordPress after hackers compromised the popular blog-publishing tool, opening the door for remote code execution. A newly reported vulnerability in Word is limited to DoS attacks and does not allow remote code execution, according to Microsoft. Vulnerability could be exploited to compromise a user's system. The latest version of Internet Explorer is susceptible to a zero-day vulnerability that can permit a malicious website to spoof the address bar, a security researcher reported this weekend. A hacker posted exploit code for a then-unknown vulnerability in the Winamp media player to the Milw0rm site on Monday. Security researcher Dan Kaminsky has delivered his much-anticipated report on the DNS flaw he discovered earlier this year. VBAAC flaw in the standard web authorisation technology could affect hundreds of thousands of sites, security experts have warned. A 'highly critical' vulnerability has been found in the Opera web browser which could be exploited to remotely compromise a user's system.

Researchers from eEye Digital Security have reported a vulnerability in numerous Microsoft Windows operating systems. Vulnerability lets hackers run malware remotely. RTF buffer overflow vulnerability could run code remotely. A worm spotted by Symantec early this week and a proof-of-concept exploit for a fully patched Vista operating system are among the malware attacking the dangerous vulnerability in Microsoft Windows animated cursor handling (ANI). Attacks exploiting a critical unpatched Windows vulnerability were today linked to Chinese hackers and the February cross-site scripting attack on the website of Dolphins Stadium, the site of Super Bowl XLI. Apple has released a security patch which fixes a much-publicised flaw in Domain Name Server (DNS) security, which could have allowed cache-poisoning attacks. The hacker who last week disclosed a vulnerability in Adobe Photoshop posted exploit code for a fresh vulnerability in the product today. Secunia released an advisory today for a QuickTime vulnerability exposed when researcher Shane Macaulay hacked into an MacBook Pro at CanSecWest last week. Researchers have reported a new Microsoft vulnerability in Windows Help (HLP) files, coinciding with this week's Patch Tuesday release. The QuickTime security hole that enabled a phishing worm to attack users of social networking site MySpace is leaving more users and websites vulnerable than was first thought.
Notebook computers from vendors including Dell, Gateway and HP are subject to a wireless card vulnerability that could allow remote installation and execution of malware. Security experts at Symantec issued a warning yesterday about an exploit spotted in the wild for an as yet unpatched vulnerability in Microsoft's XML core services.