Filed in archive
Security
by jeff goldman on January 2, 2010
Shadowserver has recommended that users disable JavaScript in Adobe's Reader and Acrobat until mid-January, when Adobe is likely to release a key update.
"To disable JavaScript in Adobe Read...
Filed in archive
Security
by jeff goldman on December 4, 2009
Apple has released two key Java updates, Java for Mac OS X 10.6 Update 1 and Java for Mac OS X 10.5 Update 6.
"The update addresses multiple security vulnerabilities that could enable an untru...
Filed in archive
Security
by jeff goldman on November 6, 2009
© AMagill
Sun Microsystems this week released Java 6 Update 17.
"Among the issues fixed by Sun is a command execution vulnerability in the Java Runtime Environment Deployment Toolkit,"...
Filed in archive
Security
by jeff goldman on August 7, 2009
Sun has released Java SE 6 Update 15, with revisions to both the Java SE development kit (JDK) and the Java runtime environment (JRE).
"With these versions, the developers fixed numerous bugs a...
Filed in archive
Security
by jeff goldman on July 20, 2009
Mozilla has fixed a severe JavaScript vulnerability in Firefox.
"Firefox version 3.5.1 fixes the critical flaw, revealed... by vulnerability tracking firm Secunia and which arises when the browse...
Filed in archive
Security
by jeff goldman on June 21, 2009
Apple this week finally released a patch for a serious Java security flaw that's been around since December of last year.
"The flaw is fixed in Mac OS X 10.5.7 and Mac OS X 10.4.11, available...
Filed in archive
Security
by jeff goldman on May 22, 2009
Apple has been slow to fix a key Java vulnerability which has remained unpatched for months, according to a security memo released this week by Intego.
"While Apple's safety record is pretty ...
Filed in archive
Security
by gautam on August 21, 2008
A couple of days back I had told you how a Polish security expert and hacker Adam Gowdiak had created ripples by reporting vulnerability in Nokia S 40 phones and had in turn asked for $29,500 for rele...
Filed in archive
Security
by gautam on August 15, 2008
I am still not sure how much of this is true. A self proclaimed security expert and hacker from Poland by the name of Adam Gowdiak states that he has come across vulnerability in the mobile Java techn...
Filed in archive
Security
by gautam on July 22, 2008
Did anybody notice recently that when Java is getting automatically updated on their system one is also getting the option of downloading Google Toolbar? This implies Sun is bundling Google Toolbar wi...
Filed in archive
Security
by gautam on May 27, 2008
There are chances of cross site scripting attacks as vulnerability has been reported in Sun Java System web server. The vulnerability has been found out in case of Sun Java System Web Server 6.1 and 7...
Filed in archive
Security
by gautam on December 17, 2007
Mac OS X 10.4 or much easier to pronounce Tiger has seen an updation on Java front by Apple to patch not one but Eighteen different vulnerabilities and some of them had been fixed by Sun way back in M...
Filed in archive
Security
by gautam on September 25, 2007
On previous occasions Sun had received flak from security experts and the blogger community with respect to their dilly dallying attitude on security patches and it very much looks that Sun has taken ...
Filed in archive
Security
by gautam on August 3, 2007
Here is another security threat as vulnerability has been figured out in Sun Java System Web Server which can be exploited for carrying out HTTP header injection and HTTP response splitting attacks an...
Filed in archive
Security
by gautam on July 26, 2007
Certain sensitive information might be misused by hackers as vulnerability has been reported in Sun Java System Application Server. It is the result of an unspecified error which can be exploited for ...
Filed in archive
Security
by gautam on July 24, 2007
Do you remember that after much dilly dallying Sun had offered a patch for the Java flaw for which it had received a lot of criticism from various security firms? The Java Network Launching Protocol f...
Filed in archive
Security
by gautam on July 16, 2007
Remember I had told you about Java security experts being lambasted for their dilly dallying attitude. It seems they have heard the criticism and now the company has gone ahead and issued a critical u...
Filed in archive
Security
by gautam on July 11, 2007
Another security threat has been identified and this time it has been detected in Sun JDK, JRE and SDK which attackers could exploit for causing DoS attack. It is caused as a result of error in Java S...
Filed in archive
Security
by gautam on July 10, 2007
Sun is receiving stick from security researchers all because of their tortoise attitude. In the next few days Sun plans to issue update for plugging serious security hole in the latest version of Java...
Filed in archive
Security
by gautam on July 2, 2007
A security update has been issued by Sun which is expected to patch vulnerabilities in its Java Web Start application. It is a highly critical security flaw which was detected in Java Web Start JDK an...
Filed in archive
Security
by gautam on June 13, 2007
Just wanted to update you on two vulnerabilities which have been detected in Sun Java System products and which could be exploited by remote attackers for execution of arbitrary code. It is caused as ...
Filed in archive
Security
by gautam on June 3, 2007
Here is another security threat - multiple vulnerabilities have been reported in Sun JDK and JRE. Fujitsu security team has reported an unspecified vulnerability which involves an incorrect use of sys...
Filed in archive
Security
by gautam on May 28, 2007
Vulnerability has been reported in Java System Web Proxy. Remote exploitation of multiple stack based buffer overflows allows unauthenticated attackers to execute arbitrary code with super user privil...
Filed in archive
Security
by gautam on May 16, 2007
Not one but two vulnerabilities have been reported in Sun Java Development Kit which remote attackers could exploit for taking control of the system or causing a DoS attack. The first of the vulnerabi...
Filed in archive
Security
by gautam on May 4, 2007
Remote attackers can exploit the vulnerability identified in Java Web Start and as a result take control over the system. Caused as a result of unspecified error while using system classes unknown app...
Filed in archive
Security
by gautam on May 1, 2007
Vulnerability has been reported in Sun Java System Directory Server which can be exploited by hackers for carrying out DoS attack. Caused due to memory leak within the Network Security Services it c...
Filed in archive
Security
by gautam on April 18, 2007
Sun Solaris and Sun Java Web Console are under security threat as vulnerability has been identified which could be exploited by remote attackers for causing a DoS or execution of arbitrary code. What ...
Filed in archive
Security
by gautam on April 3, 2007
Vulnerability has been reported in Sun's Java System Directory Server by iDefense which can cause crash in a DoS attack. Due to this loophole hackers can even inject and execute malicious code. Th...
Filed in archive
Security
by gautam on April 2, 2007
JavaScript vulnerability has been reported by Fortify which enables to hack IE or Mozilla web browser session. Dubbed as JavaScript hijacking the vulnerability can be exploited in Web 2.0 applications...
Filed in archive
Security
by gautam on March 26, 2007
I came across another security issue. There is security vulnerability in the Sun Java system Access Manager which may enable administrator access to users logged in as root. Logged in as root on a sys...
