Lucene search
K

46 matches found

ThreatPost
ThreatPost
added 2011/03/24 3:58 p.m.14 views

The Challenge of Starting an Application Security Program

Since organizations started opening their internal applications to the Web, a little more than a decade ago, it became clear that the security of those connected applications would be more complex – and critical to get right – than before. Unfortunately, through complacency, perhaps a feeling tha...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2011/02/17 6:46 p.m.9 views

In Application Security, Good Enough Isn't

SAN FRANCISCO–There’s the old joke about two hunters running from a lion, and the one runner says to the other: we can’t outrun the lion. And his buddy replied, “I don’t have to outrun the lion, I only have to outrun you.” Many, over the years, have applied the same logic to application security:...

0.7AI score
Exploits0References1
The Hacker News
The Hacker News
added 2010/12/04 1:59 a.m.7 views

U.S. Adopts Military Tactics for Rising Cyberwar Threats

The increasing threats of cyberwar are keeping U.S. officials busy alongside ongoing wars on terror and drugs. Recent incidents highlight the rising cyberwarfare concerns: Google reported espionage attacks originating from China, mysterious Internet traffic activities related to China, the Stuxne...

6.7AI score
Exploits0
ThreatPost
ThreatPost
added 2009/04/30 8:12 p.m.6 views

Major software makers fail security transparency test

From SDTimes David Worthington A majority of the industry’s leading software makers surveyed by SD Times lack transparency about the internal principles that they use for writing secure software. Analysts believe that those companies are either practicing security by obscurity, do not adequately...

2.1AI score
Exploits0References2
securityvulns
securityvulns
added 2008/12/15 12:0 a.m.131 views

Multiple XSS Vulnerabilities in World Recipe 2.11

Armorize Technologies Security Advisory Armorize-ADV-2008-0001 Title: Multiple XSS Vulnerabilities in World Recipe 2.11 Date: 2008/12/15 Status: Full Class: Input Validation Error Bugtraq ID: N/A Category: Cross Site Scripting Language: ASP.NET C Description Armorize-ADV-2008-0001 discloses...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2004/12/09 12:0 a.m.28 views

F-Secure Policy Manager 5.11 - 'FSMSH.dll' CGI Application Installation Full Path Disclosure

source: https://www.securityfocus.com/bid/11869/info F-Secure Policy Manager includes a CGI application named 'fsmsh.dll'. By supplying unexpected input as an argument to the 'fsmsh.dll' application the vulnerable software will return an error message that includes the installation path of the...

7.4AI score
Exploits0
Rows per page
Query Builder