Your search for vulnerability returned 1284 results.

Mozilla is investigating a new, low-risk vulnerability in its recently released Firefox 3 web browser that could permit an attacker to crash a victim's browser. Citect which this week came under fire for a vulnerability in its SCADA software, commonly used in critical infrastructure, has reassured its customers that a breach is extremely unlikely. An advisory was issued today regarding a "highly critical" vulnerability in two software products: Adobe After Effects CS3 and Adobe Photoshop Album Starter Edition 3.x. Watchfire AppScan is a software-based offering, which runs from the Windows platform. You may remember earlier versions of AppScan that required a Linux-based server and were configured and run through a web browser. The Tenable Passive Vulnerability Scanner (PVS) is a most interesting product. It is truly passive in that it does not perform active scans of any kind. It is, simply, a very smart sniffer. The product depends for its usefulness on the way that it collects and reports vulnerability data. Since the PVS is always listening, it constantly collects information from the normal data flows on the network. This is superior to active scanners in two important ways. Researchers have discovered a rare bug in a Windows-based control software package used by as many as one-third of the world's industrial plants.
Three vulnerabilities in Apple's iCal personal calendar application could enable remote attackers to install malicious code on victim's machines. Adobe has updated its Reader and Acrobat products to shore up a major vulnerability that already is being exploited in the wild. For the second time this year, a security researcher has found websites certified as McAfee HackerSafe that contain vulnerabilities. Guard the greatest vulnerability point - gaps in data security - to avoid threats, says Raphael Leiteritz The new scoring system promises to make it easier for security managers and the IT industry to better measure the real-world risks associated with software flaws. There's vulnerability assessment and penetration testing, but what about vulnerability analysis? Before you tell me that I'm just playing with words, stop for a sec and consider: it's one thing to assess what vulnerabilities may be in a system. An Italian researcher has identified a flaw in Apple's QuickTime media application that can allow an attacker to perform a DoS attack or take control of an affected PC. Microsoft this week warned Windows and Mac users that cyberattackers are remotely exploiting a flaw in Excel to take over computers. Microsoft is investigating a zero-day vulnerability in Visual Studio. Researcher Dan Kaminsky said he has discovered a browser vulnerability that potentially puts millions of users of wireless routers and other web-facing devices at risk to a domain name system (DNS) attack. NGS Software Typhon is more of a traditional network vulnerability assessment tool with some application intelligence built in. The utility was able to locate FTP-based vulnerabilities on our test system, but had difficulties with web assessment. Researchers have developed a browser security system that protects against the recently-revealed DNS vulnerability and other Man-in-the-Middle (MitM) attacks. Online criminals have started targeting a vulnerability in Adobe's PDF reader. Hackers compromise a United Nations’ Asia Pacific AIDS information site using an emerging malicious technique which scans for multiple vulnerabilities.