[SECURITY] Fedora 16 Update: postgresql-9.1.4-1.fc16

PostgreSQL is an advanced Object-Relational database management system DBM S. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine ...

SuSE 10 Security Update : openssl (ZYPP Patch Number 8143)

This update of openssl fixes the following denial of service vulnerabilities : - Denial of Service via CBC mode handling. CVE-2012-2333 - A deadlock condition introduced by the previous memory leak fix due to entering a lock twice. This would only happen in multithreaded programs. In addition,...

[SECURITY] Fedora 17 Update: gdb-7.4.50.20120120-42.fc17

GDB, the GNU debugger, allows you to debug programs written in C, C++, Java, and other languages, by executing them in a controlled fashion and printing their data...

Five Shocking Statistics From The Latest Internet Threat Report

Anti malware company Symantec released its threat report for 2011 on Monday. Buried in the dry statistics about the number of Web based attacks and malicious programs detected during the year are some surprising facts. Among them: religious-themed Web sites are among the dirtiest on the Internet...

Concept/Laroux

1995/6 The mid ’90s marked the dawn of macro viruses written into software like word processors and spreadsheet programs. WM.Concept, a 1995 virus was shipped with Microsoft Word for Mac CD ROMs. The virus was largely harmless and merely displayed a ‘1’ message box on infected PCs and Macs. Larou...

New HP Report Shows 19 Percent Drop in Reported Vulnerabilities

A new study due for public release Thursday shows vulnerabilities reported in commercial software applications fell significantly last year, but almost a quarter of those found were considered at high risk for exploitation. The “2011 Top Cyber Security Risks Report,” based on data from HP’s DV...

Crystal Office Suite 1.43 Buffer Overflow

Title: ====== Crystal Office Suite v1.43 - Buffer Overflow Vulnerability Date: ===== 2012-04-12 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=489 VL-ID: ===== 489 Introduction: ============= Crystal Office is the essential office suite ideal for home and business user...

Page's CEO Letter Gives Short Shrift To Privacy, Security

Privacy and security are not the top concerns for Google’s Larry Page, at least if the CEO’s most recent message to investors is any indication. The 3,500 word letter makes scant mention of either security or user privacy and gives the public little indication of Google’s plans to address the...

Adobe releases open source malware classification tool

Adobe releases open source malware classification tool Adobe Systems has released a malware classification tool in order to help security incident first responders, malware analysts and security researchers more easily identify malicious binary files. The 'Adobe Malware Classifier' tool uses...

Adobe Releases Malware Classifier Tool

Adobe has published a free tool that can help administrators and security researchers classify suspicious files as malicious or benign, using specific machine-learning algorithms. The tool is a command-line utility that Adobe officials hope will make binary classification a little easier. Adobe...

Fedora Update for mozvoikko FEDORA-2011-12243

Check for the Version of mozvoikko OpenVAS Vulnerability Test Fedora Update for mozvoikko FEDORA-2011-12243 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Fedora Update for nagios FEDORA-2012-1592

Check for the Version of nagios OpenVAS Vulnerability Test Fedora Update for nagios FEDORA-2012-1592 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

Carberp Banking Trojan Scam - 8 Arrested in Russia

Carberp Banking Trojan Scam - 8 Arrested in Russia 8 Men suspected of being involved in the Carberp phishing scam have been arrested in Russia. The men were arrested after a joint investigation by the Russian Ministry of Internal Affairs MVD and Federal Security Service FSB. According to the MVD,...

CVE-2012-1442

The ELF file parser in Quick Heal aka Cat QuickHeal 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway formerly Webwasher 2010.1C, eSafe 7.0.17.0, Kaspersky Anti-Virus 7.0.0.125, F-Secure Anti-Virus 9.0.16160.0, Sophos Anti-Virus 4.61.0, Antiy Labs AVL SDK 2.0.3.7, Rising...

CVE-2012-1424

The TAR file parser in Antiy Labs AVL SDK 2.0.3.7, Quick Heal aka Cat QuickHeal 11.00, Jiangmin Antivirus 13.0.900, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a POSIX TAR file with a \19\04\00\10...

Design/Logic Flaw

The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, Quick Heal aka Cat QuickHeal 11.00, Emsisoft Anti-Malware 5.1.0.1, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, Kaspersky Anti-Virus 7.0.0.125, McAfe...

Design/Logic Flaw

The Microsoft EXE file parser in Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an EXE file with a \57\69\6E\5A\69\70 character sequence at a certain...

Design/Logic Flaw

The ELF file parser in Norman Antivirus 6.06.12, eSafe 7.0.17.0, CA eTrust Vet Antivirus 36.1.8511, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified identsize field. NOTE: this may later be SPLIT into...

CVE-2012-1453

The CAB file parser in Dr.Web 5.0.2.03300, Trend Micro HouseCall 9.120.0.1004, Kaspersky Anti-Virus 7.0.0.125, Sophos Anti-Virus 4.61.0, Trend Micro AntiVirus 9.120.0.1004, McAfee Gateway formerly Webwasher 2010.1C, Emsisoft Anti-Malware 5.1.0.1, CA eTrust Vet Antivirus 36.1.8511, Antiy Labs AVL...

CVE-2012-1448

The CAB file parser in Quick Heal aka Cat QuickHeal 11.00, Trend Micro AntiVirus 9.120.0.1004, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Trend Micro HouseCall 9.120.0.1004, and Emsisoft Anti-Malware 5.1.0.1 allows remote attackers to bypass malware detection via a CAB file with a...