|
 |
|
Secunia Highlights [About]
|
|
|
Debian OpenSSL Predictable Random Number Generator and Update
|
|

- Highly critical - From remote
|
|
Issued 3 days ago. Updated 22 minutes ago.
|
|
Debian has issued an update for OpenSSL. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system, and a security issue, which can lead to weak cryptographic key material.
|
|
 |
|
Microsoft Word Two Code Execution Vulnerabilities
|
|

- Highly critical - From remote
|
|
Issued 3 days ago. Updated 2 days ago.
|
|
Two vulnerabilities have been reported in Microsoft Word, which can be exploited by malicious people to compromise a user's system.
|
|
|
|
 |
|
|
|
Symantec Altiris Deployment Solution Multiple Vulnerabilities
|
|

- Moderately critical - From local network
|
|
Issued 23 hours ago. Updated 22 minutes ago.
|
|
Some vulnerabilities and security issues have been reported in Symantec Altiris Deployment Solution, which can be exploited by malicious, local users to gain escalated privileges or manipulate certain data, and by malicious people to disclose sensitive information, conduct SQL injection attacks, and to compromise a vulnerable system.
|
|
 |
|
Secunia NSI 2.0
Scan your network for vulnerabilities and missing security patches in third party applications.
Download your copy of the Secunia NSI 2.0:
NSISetup.exe / Read more
|
|
|
|
|
|
|
|
|
|
|
Secunia News / Press Releases [About]
|
|
Secunia NSI 2.0 Public Beta Test
11 April, 2008 - Public Beta of the 2nd generation Secunia NSI is now available for free testing. Instant Access.
Secunia PSI available in German
20 February, 2008 - A German version of the Secunia PSI has been released, therefore: Willkommen Deutschland!
A rough 24 hours for Windows users - 81.01% affected
7 February, 2008 - The last 24 hours have been rough for Windows users. Sun, Adobe, Apple, and Skype have issued security updates - all four vendors correcting security holes that could lead to system compromise.
New Adobe Reader Security Update
6 February, 2008 - 61% of all users must apply security update. Scan your network or your private computer today.
New Secunia PSI Version
5 February, 2008 - Secunia PSI version 0.9.0.1 has been released. Among the changes is a Danish version of the Secunia PSI. Therefore: Velkommen Danmark!
|
|
|
|
|
Vulnerability Tests [About]
|
|
|
Try some of the Vulnerability Tests, to quickly see if your systems are affected and what steps you can perform to mitigate or eliminate the impact of these vulnerabilities.
|
|
Internet Explorer 7 Popup Address Bar Spoofing Test
A vulnerability in Internet Explorer, which can be exploited to spoof the address bar of a popup-window. The vulnerability has been confirmed on a fully patched system with Internet Explorer 7.0 running on Microsoft Windows XP SP2. Other versions may also be affected. Unpatched for 569 days.
|
|
Internet Explorer 7 navcancl.htm Cross-Site Scripting Vulnerability
Aviv Raff has discovered a vulnerability in Internet Explorer 7, which can be exploited by malicious people to conduct phishing attacks. The vulnerability is confirmed in Internet Explorer 7 on a fully patched Windows XP SP2 system. Other versions may also be affected. A vendor solution is available.
|
|
Apache "Expect" Header Cross-Site Scripting Vulnerability Test
A vulnerability has been discovered in Apache HTTP Server, which can be exploited by malicious people to conduct cross-site scripting attacks. A vendor solution is available.
|
|
|
|
|
|
|