eWeek Security Watch
Advertisement
Advertisement

Microsoft Windows Archive

May 6, 2008

Tuesday, May 06, 2008 11:18 AM/CST

Big Vendors Still Very Tardy on Fixing Security Flaws

Some of the biggest names in the IT software business still are very lax when it comes to fixing security holes reported by third-party brokers. According to a list maintained by TippingPoint's Zero Day Initiative, Microsoft, Novell, Oracle, Computer Associates...

April 28, 2008

Monday, April 28, 2008 12:39 PM/CST

Curse of the HP Software Updater

Hewlett-Packard's ongoing struggle to keep its software updater free of serious ActiveX control vulnerabilities is showing no signs of letting up. According to a "highly critical" alert issued by Secunia, the HP Software Update package pre-installed on notebooks contains...

April 24, 2008

Thursday, April 24, 2008 1:31 PM/CST

Blue Hat: Token Kidnapping, Browser Security on Front Burner

Software engineers at Microsoft will get a front-row seat to hear about an unpatched Windows security hole that was once pooh-poohed as a "design issue" that shouldn't be seen as a security vulnerability. At the Spring edition of Redmond's...

April 22, 2008

Tuesday, April 22, 2008 2:55 PM/CST

QuickTime Zero-Day Hits Windows XP, Vista

Security researcher Petko D. Petkov (aka pdp) has discovered a gaping hole in fully patched versions of Apple's QuickTime for Windows Media Player. The zero-day vulnerability allows an attacker to use rigged movie (.mov) files to take full control of...

April 21, 2008

Monday, April 21, 2008 4:44 PM/CST

Windows XP SP3: NAP Among Security Goodies

Microsoft's Windows XP SP3 (Service Pack 3) is finally here, offering several subtle security goodies alongside thousands of bug fixes. The biggest security feature in this service pack is the inclusion of NAP (Network Access Protection) to help organizations...

Monday, April 21, 2008 2:10 PM/CST

Microsoft Picks New Song for Hacker Slow Dance

Microsoft has chosen a new song to continue its public slow dance with the white hat hacking community: online properties like *.microsoft.com, *.msn.com and *.live.com. According to Dan Goodin reporting from Toorcon Seattle, Microsoft security strategist Katie Moussouris pledged...

April 18, 2008

Friday, April 18, 2008 12:36 PM/CST

Microsoft (Belatedly) Admits to Windows Server 2008 Token Kidnapping

[[ UPDATE: Here are the slides from Cerrudo's HiTB talk (.pdf) that prompted Microsoft's advisory. At the company's request, Cerrudo has opted not to release exploit code. ]] Last month, when I wrote about hacker Cesar Cerrudo's (left) plans to...

April 17, 2008

Thursday, April 17, 2008 6:47 PM/CST

After Criticism, Apple Software Updater Gets UI Makeover

Apple has made a small but significant tweak to its Automatic Software Update utility to make a clear distinction between security patches and new products being pushed out to Windows users. The UI redesign, which adds a new box labeled...

Thursday, April 17, 2008 5:54 PM/CST

Attack Code Posted for MS Works Zero-Day Flaw

Hackers have posted attack code for what appears to be a zero-day vulnerability in Microsoft Works, the productivity software suite aimed at small businesses and home offices. The basic details, via McAfee analyst Kevin Beets: The flaw lies in...

April 16, 2008

Wednesday, April 16, 2008 6:06 PM/CST

Apple, Mozilla Squash Browser Bugs

It's Patch Day in the land of Web browsers. In separate warnings, Apple and Mozilla confirmed -- and fixed -- critical vulnerabilities affecting users of the Safari and Mozilla browsers. The Apple Safari patch (available for Windows and Mac...



RSS Syndication
Advertisement
Advertisement
Security Watch     Contact Us | Advertise | Site Map
Ziff Davis Enterprise

Ziff Davis Enterprise Home | Contact Us | Advertise | Link to Us | Reprints | Magazine Subscriptions | Newsletters
RSS Feeds | White Papers | ROI Calculators | Tech Podcasts | Tech Video |

Baseline | Careers | Channel Insider | CIO Insight | DesktopLinux | DeviceForge | DevSource | eSeminars |
eWEEK | LinuxDevices | Linux Watch | Microsoft Watch | Mid-market | Networking | PDF Zone |
Publish | eWeek Security | Strategic Partner | Web Buyer's Guide | Windows for Devices

Developer Shed | Dev Shed | ASP Free | Dev Articles | Dev Hardware | SEO Chat | Tutorialized | Scripts |
Code Walkers | Web Hosters | Dev Mechanic | Dev Archives | IT Marketplace | igrep

Use of this site is governed by our Terms of Use and Privacy Policy

Copyright ©1996-2007 Ziff Davis Enterprise, Inc. All Rights Reserved. Security Watch is a trademark of Ziff Davis Enterprise, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise Inc. is prohibited.

Ziff Davis Enterprise