300 matches found
Automatic Updates
From the Advanced category, choose the Update tab and make sure all the automatic update boxes are checked. This will make sure the browser, all add-ons and search engines are fully updated. You should check the “automatically download and install the update” option to make sure this is seamless...
Mozilla Plugs Firefox Pwn2Own Security Hole
Mozilla is the first browser vendor to fix a vulnerability exploited at this year’s CanSecWest Pwn2Own contest. Just one week after a U.K.-based hacker known as “Nils” broke into a 64-bit Windows 7 machine with a Firefox vulnerability, the open-source group shipped Firefox 3.6.3 to plug the...
Adobe Plugs Critical PDF Code Execution Flaw
Adobe today released an out-of-band security update to patch a pair of gaping holes that expose hundreds of millions of computer users to remote code execution attacks. The vulnerabilities are rated “critical” and affect Adobe Reader and Adobe Acrobat on all platforms — Windows, Mac and Linux. Th...
Microsoft Security Advisory (954157) Security Enhancements for the Indeo Codec
Microsoft Security Advisory 954157 Security Enhancements for the Indeo Codec Published: December 08, 2009 Version: 1.0 General Information Executive Summary Microsoft is announcing the availability of an update that provides security mitigations to the Indeo codec on supported editions of Microso...
Mozilla Plugs Drive-By Download Holes in Firefox
Mozilla has released a new version of its flagship Firefox browser to fix 10 vulnerabilities that put Web surfers at risk of code execution attacks. The Firefox 3.5.3 update — available for Windows, Mac and Linux users — patches security holes that could allow drive-by download attacks if a user...
[Backports-security-announce] Security update for openoffice.org
Rene Engelhard uploaded new packages for openoffice.org which fixed the following security updates: CVE-2009-0200 Dyon Balding of Secunia Research has discovered a vulnerability, which can be exploited by opening a specially crafted Microsoft Word document. When reading a Microsoft Word document,...
Google Fixes Critical Flaw in Chrome Browser
Google has released a new version of its Chrome browser, which includes a fix for a serious buffer overflow vulnerability. The vulnerability in Chrome lies in the way that the browser handles certain responses from HTTP servers. Version 2.0.172.33 of Chrome is available now, although Google is no...
It's time to revamp the automatic update
The automatic update is one of the more useful tools ever invented by software developers. Click a couple of buttons and you never have to worry about checking for new security updates again–it happens automagically! But it’s also one of the more frustrating and intrusive mechanisms we’ve seen in...
DSA-1779-1 apt - several vulnerabilities
Bulletin has no description...
Yahoo Music Jukebox MediaGrid ActiveX buffer overflow
Added: 02/11/2008 CVE: CVE-2008-0625 BID: 27578 OSVDB: 41051 Background Yahoo! Music Jukebox is a music player capable of playing, ripping, and burning MP3s and CDs, creating and sharing playlists, streaming radio stations, and purchasing music. Problem A buffer overflow vulnerability in the...
Upgraded Thunderbird 1.5.0.13 missing fix for MFSA 2007-23 — Mozilla
Mozilla tester Stephen Donner reported that only users who installed Thunderbird 1.5.0.13 using the install package received the fix for MFSA 2007-23. Users who upgraded to Thunderbird 1.5.0.13 from an earlier version using the automatic update mechanism were not protected. If those users browsed...
Don't worry about activation and updates create your own OEM system-vulnerability warning-the black bar safety net
Microsoft is now on pirated Windows speed up ban pace, but through the BIOS character to activate the OEM system for sure is absolutely safe, so today teach you to make one for your own computer of the OEM system install disc, no longer have to worry about activation and automatic update of the...
TSRT-06-05: Computer Associates eTrust AntiVirus WebScan Automatic Update Code Execution Vulnerability
TSRT-06-05: Computer Associates eTrust AntiVirus WebScan Automatic Update Code Execution Vulnerability http://www.tippingpoint.com/security/advisories/TSRT-06-05.html August 7, 2006 -- CVE ID: CVE-2006-3976 CVE-2006-3977 -- Affected Vendor: Computer Associates -- Affected Products: eTrust AntiVir...
Ubuntu 4.10 / 5.04 : postgresql vulnerabilities (USN-118-1)
It was discovered that unprivileged users were allowed to call internal character conversion functions. However, since these functions were not designed to be safe against malicious choices of argument values, this could potentially be exploited to execute arbitrary code with the privileges of th...
CVE-2005-3899
The automatic update feature in Google Talk allows remote attackers to cause a denial of service CPU and memory consumption by poisoning a target's DNS cache and causing a large update file to be sent, which consumes large amounts of CPU and memory during the signature verification, aka BenjiBug...
CVE-2005-3899
The automatic update feature in Google Talk allows remote attackers to cause a denial of service CPU and memory consumption by poisoning a target's DNS cache and causing a large update file to be sent, which consumes large amounts of CPU and memory during the signature verification, aka BenjiBug...
ZipTorrent1.3.7.3.txt
/================================================================ ZipTorrent 1.3.7.3 Local Proxy Password Disclosure Exploit by Kozan Discovered & Coded by Kozan Credits to ATmaCA Web: www.spyinstructors.com Mail: [email protected] Application: -------------------- ZipTorrent 1.3.7.3 and...
Nullsoft Winamp 2.80 - Automatic Update Check Buffer Overflow
Nullsoft Winamp 2.80 - Automatic Update Check Buffer Overflow // source: https://www.securityfocus.com/bid/5170/info Nullsoft Winamp is a media player for Microsoft Windows supporting MP3 and other filetypes. Winamp is vulnerable to a buffer overflow condition when checking for updated versions. ...
Nullsoft Winamp 2.80 - Automatic Update Check Buffer Overflow
// source: https://www.securityfocus.com/bid/5170/info Nullsoft Winamp is a media player for Microsoft Windows supporting MP3 and other filetypes. Winamp is vulnerable to a buffer overflow condition when checking for updated versions. A malicious server located at www.winamp.com may return a...
Windows Live
Contains updates and upgrades for all Windows Live programs, some of which may be distributed via Automatic Update. It is strongly recommended that you approve all categories and updates in the Windows Live product family as a group, because files may contain elements needed to successfully insta...