Microsoft has finally issued a security advisory addressing the IE zero-day that has been recently actively exploited in attacks in the wild, and has followed with a Fix it tool to temporarily mitigate the issue until a patch is released. This zero-day is a remote code execution vulnerability, which may Continue Reading
Microsoft has released 31 security fixes as part of its Patch Tuesday software update. These cover major products including Windows and Internet Explorer, as well as the firm’s .NET Framework and Forefront Protection for Exchange. Four of the updates are marked as critical and three as important. Dustin Childs, group Continue Reading
Apache Tomcat is a widely used Web server for hosting applications developed with the Java Servlet and the JavaServer Pages (JSP) technologies are at risk due to denial-of-service issue. Recently, Security researchers published a proof-of-concept exploit for vulnerability that allows attackers to launch denial-of-service attacks against websites hosted on Apache Continue Reading
Adobe has released a patch for a critical flaw in its Flash Player, which is believed to have been actively exploited by hackers. The patch addresses a flaw prevalent in the Windows and Mac OS versions of Adobe Flash Player 12.0.0.43 and earlier, and Adobe Flash Player 11.2.202.335 and earlier Continue Reading
Mozilla has addressed a total of 13 security vulnerabilities with the release of Firefox 27. The list includes four critical, four high, four moderate and one low-impact flaws. The critical vulnerabilities, which can be exploited to execute arbitrary code without user interaction, are a use-after-free during image processing, an issue Continue Reading
By