What If Bill Gates Never Wrote the Trustworthy Computing Memo?

The security industry has undergone massive changes in the last 15 years, and in some cases it’s hard to imagine what things would be like had these events not taken place. Think of a world in which Google focuses on security and privacy and Microsoft never started Trustworthy Computing, and you...

Can Howard Schmidt Make a Difference?

At first glance, the selection of Howard A. Schmidt as the White House Cybersecurity Coordinator looks like little more than a safe and easy choice designed to quiet the critics who for seven months have been howling for action from the Obama administration. But a closer look shows that Schmidt’s...

Short list emerges for cybersecurity czar job

The first reports of the short list for the job of federal cybersecurity coordinator are beginning to trickle out, and while some of the names are all too familiar, many others are quite new to the national scene. The most well-known name on the list, as reported by Reuters, is that of Scott...

New cybersecurity czar faces a tough road

While much of the reaction to President Obama’s speech on Internet security last week has centered on who Obama will name to the newly created cybersecurity coordinator position, that may be a moot point unless there is a dramatic change in the way that security is handled at the highest levels i...

Obama cybersecurity plan has a familiar ring

President Obama on Friday presented his long-awaited cybersecurity plan, which included the establishment of a new White House office headed by a cybersecurity “coordinator” who would oversee and advise Obama on this issue. He also proposed hiring a separate official dedicated to privacy and civi...

The Berkeley breach: Is SaaS the answer?

One recent Friday afternoon I took time off to visit two new health providers: a new dentist nearer my home and an orthopedic to look at my lateral epicondylitis. In both cases, as a new patient, I filled in page after page of medical history and personal information, including my Social Security...

Battle brewing over cybersecurity in Washington

There is a good old-fashioned backroom brawl shaping up in Washington over the cybersecurity issue, and the forces are aligning in some interesting ways on a variety of different sides of the debate. The latest installment in this long-running drama involves not just the fight over which, if any,...

Researcher wants hacker groups hounded mercilessly

From ComputerWorld Gregg Keizer Criminal cybergangs must be harried, hounded and hunted computerworld.com until they’re driven out of business, a noted botnet researcher said today as he prepared to pitch a new anti-malware strategy later this week at the RSA Conference in San Francisco. “We need...

Web site security needs a strategy

Someone begins watching a basketball game and asks who is winning. You might helpfully answer, “Lakers up 76 to 64.” Imagine if instead you said, “The Lakers are 60% from the field, have 12 rebounds, are 8 of 10 from the line, and the average height of the starting lineup is 6’7.” Sure, these are...

Fedora Update for wesnoth FEDORA-2007-3989

Check for the Version of wesnoth OpenVAS Vulnerability Test Fedora Update for wesnoth FEDORA-2007-3989 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

U.S. needs to investigate cyberweapons

Despite what you may have seen on 24 or read in Tom Clancy’s novels, the United States is well behind much of the rest of the world in developing both defensive and offensive cybersecurity capabilities, and that’s a deficit that may end up costing us dearly in the long run, according to a longtim...

Password Door 8.4 - Local Buffer Overflow

source: https://www.securityfocus.com/bid/33634/info Password Door is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed...

Gentoo Security Advisory GLSA 200603-11 (freeciv)

The remote host is missing updates announced in advisory GLSA 200603-11. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security policy new angle: a closer look at local permissions of the contention-vulnerability warning-the black bar safety net

We know that the Administrators in order to ensure that the terminal computer security, will be the bulk of the terminal to be limiting, and some even only open 8 0 port, simple web browsing, which need for some special operation or installation of the software needs friends, because you do not...

[SECURITY] Fedora 8 Update: wesnoth-1.2.8-2.fc8

The Battle for Wesnoth is a turn-based strategy game with a fantasy theme. Build up a great army, gradually turning raw recruits into hardened veterans. In later games, recall your toughest warriors and form a deadly host against whom none can stand. Choose units from a large pool of specialists,...

[SECURITY] Fedora 7 Update: wesnoth-1.2.8-2.fc7

The Battle for Wesnoth is a turn-based strategy game with a fantasy theme. Build up a great army, gradually turning raw recruits into hardened veterans. In later games, recall your toughest warriors and form a deadly host against whom none can stand. Choose units from a large pool of specialists,...

[SECURITY] Fedora 7 Update: wesnoth-1.2.7-1.fc7

The Battle for Wesnoth is a turn-based strategy game with a fantasy theme. Build up a great army, gradually turning raw recruits into hardened veterans. In later games, recall your toughest warriors and form a deadly host against whom none can stand. Choose units from a large pool of specialists,...

Netrek 2.12.0 - 'pmessage2()' Remote Limited Format String

Luigi Auriemma Application: Netrek http://www.netrek.org Versions: = 2.12.0 Vanilla server Platforms: nix and Windows Bug: format string Exploitation: remote in-game Date: 02 Mar 2007 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug 3 The Code 4 Fix...

Simpliciti Locked Browser Jail Breakout Vulnerability

Simpliciti Locked Browser Jail Breakout Vulnerability ESRL Discovery Date: March 20, 2006 Discovery By: Adam Baldwin [email protected] Versions Effected: All versions Background: Simpliciti Locked Browser is a product that provides "no-programming required PC lockdown..." functionality f...

netPanzer-0.8.txt

Luigi Auriemma Application: netPanzer http://www.netpanzer.org http://netpanzer.berlios.de Versions: = 0.0; assertframeNum frameCount; mem = frame0 + pix.y stride intframeNum; The result is the immediate interruption of the server: netpanzer: src/Lib/2D/Surface.hpp:370: void Surface::setFramecons...