Sponsored White Papers, Webcasts, and Downloads
ZDNet Resources
- Adobe plugs critical ColdFusion, JRun vulnerabilities
- Adobe's never-ending run on the security treadmill hit a new gear this week with the release of patches to cover serious vulnerabilities in the ColdFusion and JRun web design and development platforms. The patches, rated critical, cover a total of 7 vulnerabilities, some of which "could lead...
- Tags: Adobe Systems Inc., Macromedia JRun, Allaire ColdFusion, Vulnerability, XSS, Cross-site Scripting Vulnerability, Development Tools, Software Development, Software/Web Development, Ryan Naraine
- Blog posts 2009-08-18
- Apple patches cross-site scripting vulnerabilities
- Apple patches cross-site scripting vulnerabilitiesCoincidence?I think not. But then again who knows. It is kind of ironic that Apple had their patches on a Tuesday when that is a day that MS typically does its patches. To be fair I am going to wonder if these patches...
- Tags: Patches, Apple patches cross-site scripting vulnerability, patch management, cross-site scripting vulnerability, Cisco Systems Inc., CISCO HAS, Apple Inc.
- Discussion threads 2008-03-18
- Apple patches cross-site scripting vulnerabilities
- Apple on Tuesday patched code execution and cross-site scripting vulnerabilities on Tiger, Leopard, Vista and XP in a Safari update that included 13 patches. Apple historically has delivered patches along with new feature or software updates. It's easy to miss the security angle among the new Safari...
- Tags: Apple Macintosh, JavaScript, Update, Microsoft Windows Vista, Cross-site Scripting Vulnerability, Apple Inc., Apple Mac OS X, Apple Mac OS, Microsoft Windows Vista (Longhorn), Microsoft Windows XP, Scripting Languages, Operating Systems, Software, Microsoft Windows, Software/Web Development, Web Development, Larry Dignan
- Blog posts 2008-03-18
- TechNet Webcast: How Microsoft Online Services Defends Against Cross-Site Scripting Vulnerabilities (Level 200)
- Cross-Site Scripting XSS vulnerabilities are a serious threat to providing Microsoft Online Services customers with a trustworthy computing experience. This webcast explains how inconsistently or poorly integrated validated output can cause XSS vulnerabilities. The attendee will learn how the Microsoft Anti-Cross Site Library provides product teams with a reliable, standard...
- Tags: Webcast, XSS, Cross-site Scripting Vulnerability, Microsoft Corp., Microsoft TechNet
- Webcasts 2007-04-24
- TechNet Webcast: How Microsoft Online Services Defends Against Cross-Site Scripting Vulnerabilities (Level 300)
- Cross-Site Scripting XSS vulnerabilities are a serious threat to providing Microsoft Online Services customers with a trustworthy computing experience. This webcast explains how inconsistently or poorly integrated validated output can cause XSS vulnerabilities. The attendee will learn how the Microsoft Anti-Cross Site Library provides product teams with a reliable, standard...
- Tags: Webcast, XSS, Cross-site Scripting Vulnerability, Microsoft Corp., Microsoft TechNet
- Webcasts 2007-04-24
Additional Resources
- Microsoft patches gaping Windows worm holes
- So basically all of them......affecting Vista or 7 require user intervention just like all other modern operating systems these days?OK.RE: Microsoft patches gaping Windows worm holesAll of the bulletins specifically say that Win7 is not affected.Two require no user interaction whatsoever.The first two listed require user interaction only in that...
- Tags: Microsoft Windows 7, Microsoft Windows Vista (Longhorn), INTERNET, Patches, UAC, user interaction, OS X., Microsoft Corp., Microsoft Windows Vista, Microsoft Windows, patch management
- Discussion threads 2009-09-08
- Firefox tops list of 12 most vulnerable apps
- Mozilla's flagship Firefox browser has earned the dubious title of the most vulnerable software program running on the Windows platform. According to application whitelisting vendor Bit9, Firefox topped the list of 12 widely deployed desktop applications that suffered through critical security vulnerabilities in 2008. These flaws exposed...
- Tags: Mozilla Firefox, Attacker, Vulnerability, JRE, Arbitrary Code Execution, Buffer-overflow, Security, Viruses And Worms, Ryan Naraine
- Blog posts 2008-12-15
- Memory exhaustion DoS vulnerability hits Google's Chrome
- Memory exhaustion DoS vulnerability hits Google's ChromeWhat to do?I can find loads of information on what it is this vulnerability can do. But as a user what can I do to minimize the risk of this happening to my machine?www.GetFirefox.comReally, why even bother with Chrome, especially when there are solid...
- Tags: Web browsers, SECURITY, DoS vulnerability, vulnerability, DOS, exhaustion, Google Chrome, Google Inc.
- Discussion threads 2008-09-26
- Unpatched QuickTime-to-Firefox flaw dings IE too
- Security researcher Aviv Raff has found a way to use the one-year-old and still unpatched QuickTime vulnerability to automate XAS cross application scripting attacks against users of Microsoft's Internet Explorer. To demonstrate the attack scenario, Raff embedded a rigged QuickTime file on Google's BlogSpot to force a...
- Tags: Apple QuickTime, Microsoft Internet Explorer, Attack, Ryan Naraine
- Blog posts 2007-09-14
- Mozilla patches Firefox; tells users to avoid IE
- Mozilla has rolled out Firefox 2.0.0.5 with patches for a total of 9 nine vulnerabilities, including cover for the controversial IE-to-Firefox code execution attack vector.Even after plugging the hole, Mozilla inserted a blunt message into its alert:This patch does not fix the vulnerability in Internet Explorer.The open-source group is also...
- Tags: Zero-day attacks, Windows Vista, Vulnerability research, Viruses and Worms, Spyware and Adware, Spam and Phishing, Rootkits, Responsible disclosure, Pen testing, Patch Watch, Open source, Mozilla, Microsoft, Hackers, Google, Firefox, Exploit code, Data theft, Browsers, Botnets, Apple
- Blog posts 2007-07-18
- The risk in demanding credit
- A few weeks ago I wrote about SugarCRM demanding that companies using it identify the product on user screens. The company was demanding credit from its installers, I wrote, and threatening to turn sites using open source into the equivalent of NASCAR cars.But it turns out there is a flip...
- Tags: Security, support, Database Management, General, Applications, Sugar
- Blog posts 2006-12-21
- << Previous
- page 1 of 1
- Next >>
White Papers and Webcasts
When you transition from your existing Red Hat environment to SUSE Linux Enterprise from Novell, you can recognize dramatic cost savings, perhaps as much 50%
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
If Linux is going to power your mission-critical applications, you'd better have the best support known to business. Novell was rated the top provider of Linux technical support.
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
