Sponsored White Papers, Webcasts, and Downloads
ZDNet Resources
- sort by:
- Relevance
- Date
- Popularity
- Microsoft confirms IIS zero-day flaw; Exploit code published
- Can I summarize?First you need to not only install IIS, you also need to install the FTP functionality in IIS. Got it.[i]Also, remember that only servers that allow untrusted users to log on and create arbitrary directories are vulnerable.[/i]Then you have to configure your FTP server to allow anyone to...
- Discussion threads 2009-09-01
- Microsoft confirms IIS zero-day flaw; Exploit code published
- Microsoft late Tuesday confirmed the publication of exploit code for a serious code execution vulnerability in the FTP Service in Microsoft Internet Information Services IIS 5.0, 5.1, and 6.0. by Ryan Naraine
- Blog posts 2009-09-01
- Microsoft: Exploits likely for 'critical' Windows vulnerabilities
- Microsoft today dropped a mega patch bundle with fixes for several "critical" vulnerabilities affecting the Windows platform and warned that "consistent, reliable exploit code" was likely to be released within 30 days. The Redmond, Wash. software maker released nine bulletins -- five rated critical -- to provide...
- Blog posts 2009-08-11
- Exploit code sends Mozilla scrambling to fix Firefox
- Exploit code sends Mozilla scrambling to fix FirefoxNot intended to be flame-bait butWhere are the howls of outrage that we'd see if this were IE8? RE: Exploit code sends Mozilla scrambling to fix FirefoxYou don't get howls cause it gets fixed too quick! That my friend is the difference. The...
- Discussion threads 2009-03-26
- Exploit code sends Mozilla scrambling to fix Firefox
- [ UPDATE: Mozilla has shipped a patch for this vulnerability ] Mozilla's security response team is scrambling to ready a patch for what appears to be a serious security flaw affecting its flagship Firefox browser. The vulnerability, released alongside proof-of-concept...
- Blog posts 2009-03-26
- Microsoft: ‘Consistent exploit code likely’ for IE vulnerabilities
- Microsoft: ‘Consistent exploit code likely’ for IE vulnerabilitiesIE8 and Windows 7 aren't mentioned[i]This security update is rated Critical for Internet Explorer 7 running on supported editions of Windows XP and Windows Vista.[/i]I notice there is no mention anywhere of IE8 and Windows 7. Does that mean they aren't affected or...
- Discussion threads 2009-02-10
- Microsoft: 'Consistent exploit code likely' for IE vulnerabilities
- Microsoft today shipped four bulletins with patches for at least 8 documented security vulnerabilities affecting Windows users and warned that "consistent exploit code could be easily crafted" to launch attacks via the Internet Explorer browser. The Patch Tuesday batch includes fixes for a pair of code execution...
- Blog posts 2009-02-10
- Microsoft confirms critical SQL Server vulnerability
- Microsoft late Monday issued a pre-patch advisory confirming a remote code execution vulnerability affecting its SQL Server line. The vulnerability, publicly disclosed with exploit code more than two weeks ago, affects Microsoft SQL Server 2000, Microsoft SQL Server 2005, Microsoft SQL Server 2005 Express Edition, Microsoft SQL...
- Blog posts 2008-12-22
- MS Patch Tuesday heads-up: 11 bulletins, 4 critical
- It will be a very busy Patch Tuesday for administrators managing Microsoft Windows computer systems. According to Microsoft's advance notice mechanism, 11 security bulletins will drop next Tuesday (October 14, 2008), covering a wide range of serious vulnerabilities. Four of the 11 bulletins are...
- Blog posts 2008-10-09
- Who’s Dumber: Bad Guys … Or Good Guys?
- Who’s Dumber: Bad Guys … Or Good Guys?Bad guys don't need applauseJust money. So they'll modestly attempt to avoid receiving their due when they compromise systems. I wouldn't assume that not hearing about a success means the success has not occurred.Also, this statement is confusing:Now, we have the...
- Discussion threads 2008-08-27
- Exploit code published for Apache Tomcat flaw
- Exploit code published for Apache Tomcat flawand just how long will it take to get 98% of these servers patched?When I read the % of un-patched open source machines out there..... All I can say is, where is the FUDGuess what, it's software, it'll FUBARSoftware is NOT a Religion!!!!How many...
- Discussion threads 2008-08-21
- Exploit code published for Apache Tomcat flaw
- The United States Computer Emergency Response Team (US-CERT) has raised an alarm for a serious vulnerability in Apache Tomcat, warning that a proof-of-concept exploit is publicly available. The code, posted to Milw0rm.com, exploits a directory traversal vulnerability vulnerability in the way Apache Tomcat handles malformed requests. ...
- Blog posts 2008-08-21
- Microsoft makes daring vulnerability sharing move
- LAS VEGAS -- Starting in October, Microsoft will start sharing details on software vulnerabilities with security vendors ahead of Patch Tuesday under a daring new program aimed at reducing the window of exposure to hacker attacks. The new Microsoft Active Protections Program MAPP, which will be formally...
- Blog posts 2008-08-05
- Microsoft joins 'patch DNS now' chant; Apple patch missing
- On the heels of the release of weaponized exploit code for the DNS cache poisoning vulnerability, Microsoft has joined the chorus of security pros pleading with DNS server providers to immediately apply patches to protect users from malicious attacks. The Redmond, Wash. security...
- Blog posts 2008-07-25
- Code Diffs for DNS Exploit Code
- Diffs between revisions of the exploit code released by HDM and |)ruid. Generated by Billy Rios. by Nathan McFeters
- Image galleries 2008-07-23
- Exploit code released for unpatched IE 7 vulnerability
- Exploit code released for unpatched IE 7 vulnerabilityYour picture looks like Google hacked MicrosoftGoogle pages enter unannounced.Can this happen if another window isn't open?or a tab?There has to be somebody looking at the doc model, right?So if one uses IE one window, one website at a time, is this safe?I...
- Discussion threads 2008-06-30
- Exploit code released for unpatched IE 7 vulnerability
- Another day, another gaping hole affecting fully patched versions of Microsoft's Internet Explorer browser. According to a warning from US-CERT, proof-of-concept exploit code has been published for a new zero-day bug that can be used for a variety of malicious attacks against Windows users running IE 6,...
- Blog posts 2008-06-30
- Protecting Web Services From Remote Exploit Code: A Static Analysis Approach
- This paper proposes STILL, a real-time, out-of-the-box, signature-free, remote exploit binary code injection attack blocker to protect web servers. STILL is motivated by an important observation that the request messages to web servers are exclusively data and not binary executable code. Since remote exploits are typically binary executable code, this...
- White papers 2008-04-25
- A Data Mining Technique to Detect Remote Exploits
- This paper designed and implemented DExtor, a Data Mining based Exploit code detector, to protect network services. The main assumption of the work is that normal traffic into the network services contain only data, whereas exploit code contains code. Thus, the "Exploit code detection" problem reduces to "Code detection" problem....
- White papers 2007-12-20
- Blue Pill Project extends VM rootkit cat-and-mouse tussle
- LAS VEGAS - The intellectual cat-and-mouse tussle over hiding and finding virtual machine rootkits has hit a new gear with a team of researchers dismissing the notion of "100 percent undetectable" malware and the release of source code for a new "Blue Pill" rootkit.As previously reported, Thomas Ptacek, co-founder of...
- Blog posts 2007-08-02
- << Previous
- page 1 of 13
- Next >>
Content Types
Refining Tags
- Ryan Naraine (231 results)
- Vulnerability research (209 results)
- Hackers (196 results)
- Data theft (193 results)
- Patch Watch (188 results)
- Browsers (185 results)
- Responsible disclosure (181 results)
- Pen testing (174 results)
- Botnets (154 results)
- Zero-day attacks (153 results)
- Viruses And Worms (152 results)
- Microsoft (138 results)
- Spyware and Adware (126 results)
- Metasploit (113 results)
- Spam and Phishing (112 results)
- Open Source (99 results)
- Rootkits (98 results)
- Firefox (82 results)
- Passwords (74 results)
- Windows Vista (66 results)
- Google (65 results)
- Apple (64 results)
- Microsoft Corp. (61 results)
- Security (60 results)
- Mozilla (58 results)
- Vulnerability (54 results)
- Microsoft Windows (42 results)
- Digital rights management (39 results)
- Privacy (37 results)
- Punditocracy (33 results)
- McAfee (32 results)
- Black Hat (29 results)
- Flaw (27 results)
- Symantec (26 results)
- Mozilla Firefox (26 results)
- Attack (20 results)
- Microsoft Internet Explorer (20 results)
- Wi-Fi security (19 results)
- Exploit (18 results)
- Web Browser (17 results)
- Microsoft Windows Vista (16 results)
- Software (15 results)
- Patch Management (15 results)
- malware (14 results)
- Cisco (13 results)
- Attacker (13 results)
- Mozilla Corp. (13 results)
- Apple Inc. (12 results)
- Google Inc. (12 results)
- Apple Macintosh (11 results)
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
- Reduce risk. Reduce complexity. Increase reliability.
-
A simplified IT environment isn't just less complex. It's also more reliable. Standardize on a single Linux platform with SUSE Linux Enterprise from Novell, and get the world's most interoperable Linux
- Learn more >>
- The best support in the Linux business
-
If Linux is going to power your mission-critical applications, you'd better have the best support known to business. Novell was rated the top provider of Linux technical support.
- Learn more >>
- Keep Up With The Latest In Document Management with The DocuMentor.
-
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
- Learn more >>
Meet Doc
-
-
Here to help you with your Document Management Needs
- Check out Doc’s Blog on ZDNet
- Help your company, help the earth I want to share with you the Environmental Defense Fund Paper Calculator, which allows you to gauge your organization's environmental impact.
- Which is Greener: Paper or Digital? The Answer May Surprise You Anything we can do to reduce paper consumption is good. But what about the impact of digital waste?
-
Produced by
ZDNet and -
