Sponsored White Papers, Webcasts, and Downloads
ZDNet Resources
- Oracle patches DB, apps
- Oracle patches DB, appsOracle Critical Patch Update Risk Matrix & CVSSHi Larry! This is Eric Maurice of Oracle. An important document for Oracle customers, the Critical Patch Update CPU Advisory lists vulnerabilities addressed in the CPU as well as provides other information related to the patches (affected platforms,...
- Tags: SECURITY, Common Vulnerability Scoring System, vulnerability, Oracle Corp., Critical Patch Update, matrice, CVSS 2.0, severity
- Discussion threads 2008-04-16
- Mozilla ups unpatched Firefox flaw to 'high severity'; Preps fix
- Mozilla has given a proof of concept Firefox vulnerability a "high severity" rating because an attacker can collect session information such as cookies and history, according to Mozilla security chief Window Snyder. Snyder said the vulnerability will be patched with Firefox 2.0.0.12, which will be pushed out...
- Tags: Mozilla Firefox, Vulnerability, Severity, Mozilla Corp., Add-on, Flaw, Window Snyder, Web Browsers, Security, Internet, Larry Dignan
- Blog posts 2008-01-30
- IE vs Firefox: Microsoft crunches security numbers
- Jeff Jones, security strategy director in Microsoft's Trustworthy Computing group, is at it again, comparing three years of vulnerability data for the two main Web browsers -- Internet Explorer and Firefox -- to reach a conclusion that IE is arguably much safer than the open-source rival. Jones,...
- Tags: Mozilla Firefox, Vulnerability, Jeff Jones, Microsoft Internet Explorer, Severity, Microsoft Corp., Web Browser, Web Browsers, Security, Internet, Ryan Naraine
- Blog posts 2007-11-30
- On deck: Critical Windows, Office, IE patches
- Microsoft plans to ship nine security bulletins next Tuesday with patches for a wide range of "critical" vulnerabilities affecting the Windows operating system, the Microsoft Office productivity suite and the widely deployed Internet Explorer browser.In an advance notice alert issued today, the software maker said six of the nine...
- Tags: Microsoft Office, Patch Management, Microsoft Windows, Microsoft Internet Explorer, Severity, Microsoft Corp., Bulletin, Ryan Naraine
- Blog posts 2007-08-09
- DB2Viewer (msi)
- If you are looking for a tool to view all db2diag messages in a user friendly interface, With all the messages catagorized by severity, With easy naviation and preview pane, With good sorting capability on time, severity, with ability to converge to a particular time frame. You will be interested...
- Tags: Message, Severity, DB2Viewer, Linux, Productivity, UNIX, Operating Systems, Open Source, Software
- Software downloads 2007-05-25
Additional Resources
- Vulnerability disclosure gone awry: Understanding the DNS debacle
- On July 7, the day before the release of the patch for the now infamous DNS design flaw, hacker Dan Kaminsky with the help of Black Hat conference organizers invited reporters to a press conference to "discuss the massive multivendor patch being released this Tuesday." "A synchronized...
- Tags: Black Hat, DNS, Conference, Dan Kaminsky, Thomas Ptacek, Domain Names, Patches, Security, Networking, Internet, Ryan Naraine
- Blog posts 2008-07-22
- Has Halvar figured out super-secret DNS vulnerability?
- [ UPDATE: Kaminsky has all but confirmed that, yes, the cat is out of the bag ] It looks very much like the nitty gritty of Dan Kaminsky's super-secret -- and heavily hyped -- DNS cache poisoning vulnerability has been figured out by reverse engineering guru Halvar...
- Tags: DNS, Vulnerability, Server, Referral, Mallory, Domain Names, Networking, Security, Internet, Ryan Naraine
- Blog posts 2008-07-21
- The Techie Hall of Shame
- The Techie Hall of ShameThe Florida architectural firm rampagehttp://www.theregister.co.uk/2008/01/24/disgruntled_employee_silent_rampage/RE: The Techie Hall of ShameAs far as this system in S.F. - If you have physical access to the machine, you should be able to get admin/root access. I'd be curious to know what OS they are talking about.RE: The Techie...
- Tags: Social Security, Operational accounting, Most IT folk, Techie Hall, VSB
- Discussion threads 2008-07-16
- David Litchfield on details of one of the critical vulnerabilities from the latest Oracle patch
- More details coming out on the Oracle patches that were released last week, see Ryan Naraine's write up here. David Litchfield, noted security researcher from NGSSoftware, released details of one of the vulnerabilities on the Full-Disclosure email list today, and the details are staggering. The flaw allows potential unauthenticated remote...
- Tags: Oracle Application Server, Oracle Corp., Database Server, Critical Vulnerability, Application Servers, Middleware, Databases, Enterprise Software, Security, Software, Data Management, Nathan McFeters
- Blog posts 2008-07-15
- Microsoft addresses 9 security vulnerabilities with 4 "Important" bulletins
- Microsoft announced 4 "Important" security bulletins today that cover 9 separate vulnerabilities. Of note were vulnerabilities reported in Windows DNS server and client, and within SQL Server. Briefly, the vulnerabilities involve: Cache poisoning and insufficient socket entropy flaws in Microsoft DNS Server A remote...
- Tags: Attacker, Microsoft SQL Server, Vulnerability, Server, Microsoft Windows, Microsoft Corp., Microsoft Outlook Web Access, Microsoft Outlook, Security, Microsoft Office, Office Suites, Software, Nathan McFeters
- Blog posts 2008-07-08
- Approximately 800 vulnerabilities discovered in antivirus products
- In what appears to be either a common scenario of "when the security solution ends up the security problem itself", or a product launch basing its strategy on outlining the increasing number of critical vulnerabilities found in competing antivirus products, the IT/Security consulting firm n.runs AG claims to have discovered...
- Tags: Antivirus Product, Antivirus, Vulnerability, Malware, Security, Viruses And Worms, Dancho Danchev
- Blog posts 2008-07-07
- Security breach hits DivShare, unauthorized access to its database
- The popular document and media sharing service DivShare, suffered a security breach according to a security announcement posted by DivShare's support team earlier this week : Late last night we were alerted of a security breach that allowed a malicious user to access our database, which included user e-mail...
- Tags: Database, Security Breach, DivShare, Security, Dancho Danchev
- Blog posts 2008-06-19
- Code execution vulnerability found in Firefox 3.0
- It's not all about world records for Firefox 3.0. Just hours after the official release of the latest refresh of Mozilla's flagship browser, an unnamed researcher has sold a critical code execution vulnerability that puts millions of Firefox3.0 users at risk of PC takeover attacks. ...
- Tags: Mozilla Firefox 3.0, Mozilla Firefox, Attacker, Vulnerability, Web Browsers, Security, Internet, Ryan Naraine
- Blog posts 2008-06-18
- Proof of Concept "carpet bombing" exploit released in the wild
- In what appears to be an attempt to provoke Apple to reconsider its currently passive position on the severity of the dubbed as "carpet bomb" flaw, a working Proof of Concept exploit code has been released at Liu Die Yu's security blog : Nitesh Dhanjani discovered that Safari for...
- Tags: Desktop, Apple Safari, Vulnerability, Microsoft Internet Explorer, Liu, Microsoft Windows, Web Browsers, Operating Systems, Security, Software, Internet, Dancho Danchev
- Blog posts 2008-06-11
- Suspected Allergy Tracking Software (zip)
- Record your suspected allergy triggers for analysis, possible causes, symptoms, severity, healing process, your thoughts, and urgent contacts. Print all records and analyze a pattern. Email any data record to a doctor easily. Remember incidents from the past in one easy to use interface. This version is the first release...
- Tags: Software, Allergy, IdeaTalent, E-mail, Tools & Techniques, Online Communications, Management
- Software downloads 2008-06-02
- ActiveX control bug bites Creative Labs AutoUpdate engine
- A high-severity security flaw in the Creative Software automatic update engine could put Windows computers at risk of remote code execution attacks, according to a warning from the US-CERT Computer Emergency Readiness Team. The vulnerability affects the software used to provide updates to Creative Labs' audio/video entertainment product line,...
- Tags: Webcam, Zen, Automatic Update, Blaster Worm, ActiveX Control, Creative Labs Inc., ActiveX Control Bug, Create Software AutoUpdate Engine ActiveX Control, ActiveX/COM/COM+/DCOM, Patches, Viruses And Worms, Security, Software Development, Software/Web Development, Ryan Naraine
- Blog posts 2008-05-30
- Will Ingenix go open source?
- Some of medicine's top tools for analyzing outcomes and the cost-effectiveness of care may be about to go open source. Ingenix CEO Andy Slavitt quietly dropped this bombshell into his keynote address at the company's annual conference a few weeks ago, but it was only noticed recently...
- Tags: Ingenix, Open Source, Dana Blankenhorn
- Blog posts 2008-05-29
- Firefox 3 RC2 on tap, final ship in mid June
- Updated: The Mozilla Firefox 3 team decided Tuesday to make available a Release Candidate 2 that resolves some of the remaining showstopper bugs but they say it won't impact the ship date by much. During the team's weekly conference call today, Mozilla lead developer and phenomenologist Mike...
- Tags: Developer, Team, Mozilla Firefox 3.0, Mozilla Firefox, Bug, Mozilla Corp., June, Team Management, Web Browsers, Management, Internet, Paula Rooney
- Blog posts 2008-05-27
- Twitter: An IT failures management perspective
- Twitter, the well-known social messaging service, has finally acknowledged the depth and severity of technical problems causing downtime and disruption to users. While such candor is refreshing, it also offers a glimpse into the kinds of management issues that underlie virtually all IT failures. ...
- Tags: Information Technology, Twitter, Groupware, Enterprise Software, Software, Michael Krigsman
- Blog posts 2008-05-26
- What is the U.S. doing about security?
- I've been terrible busy lately. Hopefully you all here haven't noticed, as I've been working hard to still keep my posts flowing, but I've just got time to catch up with several blogs that I read often. One of those blogs is the Emergent Chaos blog...
- Tags: Card, Database, President, Blog, Passport Card, RFID, Government, Security, Wireless, Biometrics, Nathan McFeters
- Blog posts 2008-05-20
- << Previous
- page 1 of 1
- Next >>
White Papers and Webcasts
In this Super Techies interview, larger-than-life techie Marc Canter talks with ZDNet's Editor in Chief Dan Farber about his career as a multimedia pioneer.
The Cisco Mobility Resource Center offers FREE videos, downloads, podcasts and more, all designed to help small and medium businesses get mobile connectivity solutions, improve productivity and drive sales and revenue.
Latest Topics: Running virtual machines and DHCP can cause Intel® AMT to be inaccessible; Wildcard certificates are currently not supported for remote; Dell 755 returns a duplicate UUID during activation configuration.
