Sponsored White Papers, Webcasts, and Downloads
ZDNet Resources
- A look at the recent Firefox 3 vulnerability
- True to form, Billy Rios promised a more in depth look at the MSFA2008-35 vulnerability which is another protocol handler flaw in Firefox 3. As previously reported here, this was another protocol handler flaw that led to arbitrary remote command execution, and is especially dangerous since it can be deployed...
- Tags: Mozilla Firefox 3.0, Mozilla Firefox, Apple Safari, Vulnerability, Protocol Handler, Firefox3, Security Decision, Web Browsers, Security, Internet, Nathan McFeters
- Blog posts 2008-07-22
- Protocol handlers cause Mozilla Firefox 3 remote command execution vulnerabilities
- Protocol handlers cause Mozilla Firefox 3 remote command execution vulnerabilitiesThe point is moot......[b]if[/b] you put your FF session in an AppArmor 'sandbox'--the below comes FREE as in beer in openSUSE /etc/apparmor/profiles/extras. Just go into YaST control center->AppArmor->Manually Add Profile and select both usr.lib.firefox.firefox-bin and *.firefox.sh and you are golden--a five-minute...
- Tags: Web browsers, Novell AppArmor, Protocol Handler, execution vulnerability, Mozilla Firefox 3.0, Mozilla Corp., Mozilla Firefox
- Discussion threads 2008-07-16
- 10 days from report to patch for new Firefox exploit
- Looks like the protocol handler problems just won't die. On July 20th, Jesper Johansson reported that Firefox 2.0.0.5 didn't quite get all the bugs out of passing strings to external programs registered as protocol handlers. 10 days later, Mozilla has released a patch in version 2.0.0.6. The first version of...
- Tags: Web Browsers, Scripting, General
- Blog posts 2007-07-31
- IE-to-Firefox flaw debate rages: Ex-Microsoft security strategist weighs in
- While Microsoft has declined to comment on the IE-to-Firefox flaw drama (beyond an "it's not our fault" statement), a former security strategist is coming to the company's defense, arguing that there's no real way for Internet Explorer to validate the code being passed to Firefox.Jesper Johansson left, a Windows internals...
- Tags: Apple, Botnets, Browsers, Data theft, Exploit code, Firefox, Google, Hackers, Metasploit, Microsoft, Mozilla, Patch Watch, Pen testing, Responsible disclosure, Viruses and Worms, Vulnerability research, Windows Vista, Zero-day attacks
- Blog posts 2007-07-12
Additional Resources
- iPhone vs. Android development: Day 5
- Today is the last day of a 5-day course on iPhone programming class led by Joe Conway from Big Nerd Ranch. During the course I've been taking notes on how development for the iPhone compares to development for Android. By the way, BNR also offers Android courses if you're interested....
- Tags: Program, Apple iPhone, Web Service, Android, iPhone API, Settings App, Android Preference, Cloud Computing, Web Services, XML, Channel Management, Enterprise Software, Software, Software/Web Development, Web Development, Marketing, Ed Burnette
- Blog posts 2008-11-21
- iPhone vs. Android development: Day 2
- Welcome to day 2 of a 5-day course on iPhone programming presented by Joe Conway from Big Nerd Ranch. During the course I'll be blogging about the differences between Android and iPhone development. [Read: Day 1, Day 2, Day 3, Day 4, Day 5] ...
- Tags: Apple iPhone, User Interface, Localizable.strings, Android Eclipse Plug-in, UINavigationController, UITabBarController, Ed Burnette
- Blog posts 2008-11-18
- Mobile industry calls for RFID payment push
- The GSM Association has called on manufacturers to build technology for contactless payments into their handsets by the middle of next year The GSM Association has called on phone manufacturers to build RFID technology into handsets from mid-2009, in a bid to kick start the mobile-payment industry. ...
- Tags: Payment, Contactless Payment, Mobile, Industry, Handset, Manufacturer, U.K., RFID, GSMA, Operational Accounting, Cellular Phones, Strategy, Finance, Consumer Electronics, Personal Technology, Management, David Meyer ZDNet.co.uk, mobile payments, GSM Association
- News items 2008-11-18
- iPhone vs. Android development: Day 1
- As I mentioned last week I've started learning more about developing for the Apple iPhone. This week I'll be sharing my experiences during a 5-day course on iPhone programming presented by Joe Conway from Big Nerd Ranch. In particular, I'll be pointing out differences between Android and iPhone development. ...
- Tags: Apple iPhone, Android, Interface Builder Program, Programming Languages, C/C++, Development Tools, Telecom & Utilities, Java, Software Development, Software/Web Development, Ed Burnette
- Blog posts 2008-11-17
- VoIP vulnerabilities in Microsoft Communicator
- Researchers at VoIPshield Labs have pinpointed a wide range of denial-of-service vulnerabilities in Microsoft Communicator, the unified communications that features business-grade instant messaging , voice, and video tools. The flaws, rated "high severity," could cripple VoIP-powered communications on Office Communications Server 2007, Office Communicator and Windows Live Messenger....
- Tags: Denial Of Service, VoIP, Vulnerability, Microsoft Corp., Security, Ryan Naraine
- Blog posts 2008-11-17
- New carbon monitoring resources available via the Web
- If one of your near-year-end resolutions is to build out the carbon and greenhouse gas emissions reporting for your company, there are a couple of new resources that have been released in the past week. First off, Sun Microsystems has updated the tools that are available on...
- Tags: Web, Monitoring, Greenhouse Gas, Greenhouse Gas Emission, Heather Clancy
- Blog posts 2008-11-17
- Why did Microsoft wait 7 years to fix SMBRelay attack flaw?
- One of the code execution vulnerabilities fixed in this month's Microsoft Patch Tuesday release dates back to 2001 when it was first disclosed by Cult of the Dead Cow hacker Sir Dystic pictured left. If that wasn't cause for worry, get this: An exploit for the bug...
- Tags: Flaw, Issue, Microsoft Corp., Security Administration, Patches, Security, Ryan Naraine
- Blog posts 2008-11-12
- MS Patch Tuesday: Critical Windows, Office flaws fixed
- Microsoft's scheduled batch of patches for November crossed the wires today with fixes for at least four documented vulnerabilities affecting millions of Windows and Office users. As previously reported, the company released two security bulletins -- one rated critical, one rated important -- with fixes for flaws...
- Tags: Web, Attacker, Microsoft Office, Flaw, Vulnerability, Microsoft Windows, Microsoft Corp., Security, Ryan Naraine
- Blog posts 2008-11-11
- Researchers find spam profits not so great, after all
- Researchers find spam profits not so great, after allBiggest problem is the protocol.The biggest problem is the protocol, SMTP. Never designed with security in mind, yet people still insist that it be patched up with a gazillion bandages rather than create a protocol with authentication and encryption built into it....
- Tags: Cyberthreats, Spam, SECURITY, not-so, BIGGEST PROBLEM
- Discussion threads 2008-11-10
- Virtual Image Printer Driver Pro (zip)
- Virtual ImagePrinter driver is based on the Microsoft universal printer core, which is included with Windows. ImagePrinter also adopts the universal printer driver user interface that is supported by the Windows platform. This ensures that ImagePrinter will work with any Windows application that provides a print function. ImagePrinter can print...
- Tags: Printer Driver, Code-Industry, Printers, Microsoft Windows, Hardware, Peripherals, Operating Systems, Software
- Software downloads 2008-11-07
- My favorite Windows Vista gadgets
- When I first began using Windows Vista, I dismissed the Sidebar as a gimmick. It didn't help that the default gadgets Microsoft offered were of limited utility and that some early gadgets caused performance problems. Over time, though, I've become a Sidebar convert. I haven't encountered a...
- Tags: Microsoft Windows Vista, Gadget, Sidebar, ShareMaster Gadget, Microsoft Windows, Microsoft Windows Vista (Longhorn), Operating Systems, Servers, Software, Hardware, Ed Bott
- Blog posts 2008-11-06
- WPA Wi-Fi encryption (partially) cracked
- Rob McMillan at IDG has the scoop on new research that shows it's possible to partially crack the WPA (Wi-Fi Protected Access) encryption standard. Full details of the theoretical attack is not yet known but McMillan reports that two security researchers -- Erik Tews and Martin Beck...
- Tags: WPA, Router, Encryption, Attack, Tews, Network Security, Wi-Fi, Wireless, Networking, Ryan Naraine
- Blog posts 2008-11-06
- No longer safe: WPA encryption cracked in 12 to 15 minutes
- No longer safe: WPA encryption cracked in 12 to 15 minutesI've said it before, I'll say it again...Wireless and Retail do not mix!http://talkback.zdnet.com/5208-12691-0.html?forumID=1&threadID=45392&messageID=838312&start=-9957WPA is not cracked - only TKIP is, no access to data..Here is why :- Attack does not give you access to the data transmited- Why? Only the...
- Tags: Wi-Fi, Network security, WIRELESS, TKIP, WPA
- Discussion threads 2008-11-06
- Adobe updates Flash Player 9 to fix six security holes
- Adobe has slapped another band-aid on its ever-present Flash Player to cover at least six documented security vulnerabilities that could expose users to a wide range of hacker attacks. The patch, rated "critical" by Adobe, affects Flash Player 9.0.124.0 on all platforms. Adobe is recommending that users...
- Tags: Adobe Systems Inc., Allaire ColdFusion, Macromedia Flash Player, Development Tools, Security, Software Development, Software/Web Development, Ryan Naraine
- Blog posts 2008-11-06
- Ftp Friend (zip)
- FTP Friend is a utility for transferring files between your computer and a remote File Transfer protocol FTP server on the Internet. Ftp Friend offers Simultaneous Files Uploads on several hosts at once, by simply push of the button and it excellent choice for photographers, who are selling their art...
- Tags: FTP, Anatoli Dubkov, FTP Friend
- Software downloads 2008-11-04
- CIERS2 - CCIE 360 R&S Prep Boot Camp 2
- View Available Dates and LocationsThis Boot Camp-style class is the sequel to CIERS1 and is designed to provide practice in a timed setting for completing multiple issue spotting and analysis with assessed labs that are equivalent in difficulty to the actual CCIE practical lab....
- Tags: Lab, Frame Relay, Portals, Networking, Web Technology, Network Administration, Network Technology, Internet
- Training 2008-11-01
- << Previous
- page 1 of 1
- Next >>
White Papers and Webcasts
"Intel® Xeon® processor-based servers are optimized for virtualization and allow IT to load more virtual machines without sacrificing speed. They can also help you save time and money while delivering great performance, flexibility, and headroom for growth.
