SEARCH RESULTS
 
Showing 1-10 of 222 records
 
Expand article

Apple Finally Patches DNS Bug

2008-07-31 23:12:34 by Editor in Cheap Hack
 
...bug, Apple has finally issued a patch. The update it comes in also patches 16 other vulnerabilities Open Scripting ArchitecturePrivilege elevation bug when loading plugins CarbonCoreA stack overflow in handling long file names. Potential code execution CoreGraphics2 bugs, both code execution, one for malicious graphics the other for malicious...
 
Tags: code execution, remote code execution, bug, potential code execution, lead, data detectors engineengine, bugs, microsoft office file, elevation bug
 
 
 
 
Expand article

Apple Finally Patches DNS Bug

2008-07-31 23:12:34 by Editor in Cheap Hack
 
...bug, Apple has finally issued a patch. The update it comes in also patches 16 other vulnerabilities Open Scripting ArchitecturePrivilege elevation bug when loading plug-ins CarbonCoreA stack overflow in handling long file names. Potential code execution CoreGraphicsTwo bugs, both code execution, one for malicious graphics, the other for...
 
Tags: code execution, remote code execution, bug, potential code execution, quicklooka maliciously, lead, data detectors engineengine, coregraphicstwo bugs, bugs
 
 
 
 
Expand article

Skype Clarifies: The Bug Has Been Fixed

2007-08-22 12:54:28 by Editor in Cheap Hack
 
...bug had in fact been fixed. I took that as implying that it hadn't. Now it says that it has. In a second blog on the subject , Skype is explicit: Yes, the bug has been squashed. The parameters of the P2P network have been tuned to be smarter about how similar situations should be handled. Once we found the algorithmic fix to ensure continued...
 
Tags: skype, tuned skype, p2p core, core, bug, similar situations, similar, fix, tuned
 
 
 
 
Expand article

Skype Clarifies: The Bug Has Been Fixed

2007-08-22 12:54:28 by Editor in Cheap Hack
 
...bug had in fact been fixed. I took that as implying that it hadn't. Now it says that it has. In a second blog on the subject , Skype is explicit: Yes, the bug has been squashed. The parameters of the P2P network have been tuned to be smarter about how similar situations should be handled. Once we found the algorithmic fix to ensure continued...
 
Tags: skype, tuned skype, p2p core, core, bug, similar situations, similar, fix, tuned
 
 
 
 
Expand article

Random Number Bug in Debian Linux

2008-05-19 06:07:59 by schneier in Schneier on Security
 
...bug in question was caused by the removal of the following line of code from md rand.c MD Update(&m,buf,j); [ .. ] MD Update(&m,buf,j); /* purify complains These lines were removed because they caused the Valgrind and Purify tools to produce warnings about the use of uninitialized data in any code that was linked to OpenSSL. You can see one...
 
Tags: random, openssl, openssl team, random data, process, debian, current process, openssl package, bug
 
 
 
 
Expand article

New Skype bug opens users to easy hijack, says researcher

2008-01-31 00:00:00 by HASH0x8b1a1a0 in Network World on Security
 
Skype plugged yet another critical vulnerability Thursday, but the researcher who reported the bug said that's not enough
 
Tags: critical vulnerability thursday, researcher, skype, bug
 
 
 
 
Expand article

Apple fixes critical QuickTime bug

2008-02-06 00:00:00 by Robert McMillan in Network World on Security
 
Apple has released a security fix for its QuickTime media player software, fixing a critical bug that had been worrying security experts for nearly a month
 
Tags: critical bug, security fix, apple, security experts, month
 
 
 
 
Expand article

With racy name, bug-finder gets no credit from Microsoft

2008-02-15 00:00:00 by Robert McMillan in Network World on Security
 
When a hacker going by the name Chujwamwdupe published attack code that exploited a recently patched bug in Microsoft Office 2003 earlier this week, it looked almost as if he were publishing the software out of spite
 
Tags: microsoft office, attack code, bug, recently, week, chujwamwdupe, hacker, software, spite
 
 
 
 
Expand article

Microsoft fixes mass-delete bug in Mac Office e-mailer

2008-02-14 14:00:00 by Editor in Computerworld Security News
 
The Office 2004 for Mac update released by Microsoft on Tuesday patched a long-standing bug that erases messages, contacts and other information from Entourage 2004 accounts on Exchange mail servers
 
Tags: exchange mail servers, erases messages, bug, microsoft, office, mac, contacts, information, tuesday