Apple, Google and Others Agree to Provide Privacy Policy Option for Mobile Developers

This has turned out to be an interesting week for privacy. Just a few days after the White House laid out is privacy agenda, the California attorney general has announced an agreement with several major mobile platform providers, including Apple and Google, that will have the companies provide...

CVE-2012-0190

Unspecified vulnerability in the Render method in the ExportHTML.ocx ActiveX control in ExportHTML.dll in IBM SPSS Dimensions 5.5 and SPSS Data Collection 5.6, 6.0, and 6.0.1 allows remote attackers to execute arbitrary code via a crafted HTML document...

CVE-2012-0188

Unspecified vulnerability in the SetLicenseInfoEx method in an ActiveX control in mraboutb.dll in IBM SPSS Dimensions 5.5 and SPSS Data Collection 5.6, 6.0, and 6.0.1 allows remote attackers to execute arbitrary code via a crafted HTML document...

Design/Logic Flaw

Unspecified vulnerability in the SetLicenseInfoEx method in an ActiveX control in mraboutb.dll in IBM SPSS Dimensions 5.5 and SPSS Data Collection 5.6, 6.0, and 6.0.1 allows remote attackers to execute arbitrary code via a crafted HTML document...

Design/Logic Flaw

Unspecified vulnerability in the Render method in the ExportHTML.ocx ActiveX control in ExportHTML.dll in IBM SPSS Dimensions 5.5 and SPSS Data Collection 5.6, 6.0, and 6.0.1 allows remote attackers to execute arbitrary code via a crafted HTML document...

CVE-2012-0188

IBM SPSS products (Dimensions 5.5 and SPSS Data Collection 5.6, 6.0, 6.0.1) are affected by CVE-2012-0188 due to a buffer overflow in the SetLicenseInfoEx() method of the mraboutb.dll ActiveX control. The vulnerability arises from copying the first parameter (strInstallDir) into a 256-byte global...

CVE-2012-0190

CVE-2012-0190 concerns an RCE in the IBM SPSS ExportHTML.dll ActiveX control (Render method) used by IBM SPSS Dimensions 5.5 and SPSS Data Collection 5.6, 6.0, 6.0.1. The flaw exists in the Render() method of the ExportHTML.ocx/ExportHTML.dll; a crafted HTML document can cause arbitrary file crea...

CVE-2012-0188

Unspecified vulnerability in the SetLicenseInfoEx method in an ActiveX control in mraboutb.dll in IBM SPSS Dimensions 5.5 and SPSS Data Collection 5.6, 6.0, and 6.0.1 allows remote attackers to execute arbitrary code via a crafted HTML document...

CVE-2012-0190

Unspecified vulnerability in the Render method in the ExportHTML.ocx ActiveX control in ExportHTML.dll in IBM SPSS Dimensions 5.5 and SPSS Data Collection 5.6, 6.0, and 6.0.1 allows remote attackers to execute arbitrary code via a crafted HTML document...

Veeam ONE: No Collection Data within Monitor, or Collection Stops Updating.

Challenge Data collection stops within Veeam ONE Monitor, or there is no longer any new data from a certain point. Cause This is due to the following database error involving a lack of space in the primary file group for the database .mdf file. Here is a snippet from the Monitor Logs that you wil...

How To Refine nWorks Data Collection in SCOM

How To Refine nWorks Data Collection in SCOM...

Smart Hacking For Privacy : What TV shows you watch ?

Smart Hacking For Privacy : What TV shows you watch ? White-hat hackers have exposed the privacy shortcomings of smart meter technology. At the Chaos Communication Congress in Germany, 28C3, researchers presented "Smart Hacking For Privacy" After analyzing data collected by a smart meter, these...

Sprint Disables Carrier IQ Software On Its Devices

Sprint has decided to stop using Carrier IQ’s diagnostic software in light of the ongoing controversy about user privacy, according to reports. A Sprint spokesperson told the Website MobileBurn that the carrier has “weighed customer concerns and…disabled use of the tool so that diagnostic...

Carrier IQ Says Bug Can Cause Some SMS to Be Recorded in Coded Form

Carrier IQ, the embattled software company at the center of the controversy over alleged data collection on mobile devices, has released a new document that details the ways in which carriers deploy the software, how it works on devices and what data it is capable of collecting. The company also...

With Mobile Devices, Users Are the Product, Not the Buyer

A lot has been said about the Carrier IQ software, the way that it’s used by carriers and whether it’s capable of intercepting calls, texts and data on users’ handsets. It’s still not clear exactly what’s going on, but one lesson that has emerged from all of this is this: The mobile devices peopl...

Researchers Say Carrier IQ Not Logging Texts or Emails, But Has Some Worrisome Capabilities

Security researchers who have investigated the inner workings of the Carrier IQ software and its capabilities say that the application has some powerful, and potentially worrisome capabilities, but that as it’s currently deployed by carriers it doesn’t have the ability to record SMS messages, pho...

Sen. Franken Demands Answers From Carrier IQ on Mobile Tracking

The fallout from the controversy surrounding the presence of Carrier IQ’s software on millions of mobile devices on several different platforms has now reached Washington. Sen. Al Franken on Thursday sent a letter to the company, demanding answers to a series of questions about the software and i...

W3C Publishes Do Not Track Proposal

The W3C has proposed a standard for implementing the Do Not Track mechanism for both users and site owners, wading into what has become a contentious and fractious debate. The proposed standard, known as the Tracking Preference Expression, is designed to give users the ability to tell sites what...

Google to Allow Users to Opt Out of WiFi Location Mapping System

Google, which has faced a pile of criticism over its privacy policies and practices, especially as they relate to wireless and mobile devices, says it is changing the way that it maps people’s wireless access points in its efforts to provide accurate location information. The company said it is n...

Return argument has an invalid type

Challenge Veeam Backup Enterprise Manager fails to collect data from a Veeam Backup server with the following error: Return argument has an invalid type. The following error can be seen in VeeamBES.log: timestamp Info Reporting data were successfully collected from the server server.local timesta...