Monthly Archives: January 2007

Ping of death comes to Solaris

Sun Microsystems has issued a security update intended for computers running Sun Solaris 10 operating system. The update patches a security vulnerability that could cause kernel panic by sending one false ICMP request.

Software security vulnerabilities to grow

Security research company, Internet Security Systems, anticipates a continued rise in profit-motivated attacks, including an increased focus on the Web browser and image-based spam.

e-Filing for Beginners

Email is the new paper. It is now used for over 80% of written business communication. Given the exponential rise in email-based business communication over recent years, there is a definite need for the e-filing cabinet, in order to store, manage and utilise email based information effectively.

ScriptLogic announces Security Explorer 6.0

ScriptLogic today announced the availability of Security Explorer 6, the latest version of the company’s real-time manager of access controls and security on Windows file servers and workstations.

Stompy session analyzer tool released

Michal Zalewski, an independent security researcher, announced the availability of Stompy, a free tool to perform a black-box assessment of Internet sessions IDs. While some session ID cookies generation algorithms are believed to be cryptographically secure, this is not the case for certain less-common enterprise web platforms.

New zero-day Microsoft Word vulnerability

Hackers are exploiting a new, zero-day vulnerability in Microsoft Word that could allow remote code execution on the victim’s machine, says security vendor Symantec.

Apple improves AirPort Extreme security

Apple has issued AirPort Extreme security update intended for Intel-based Macs running Mac OS X v 10.4.8. The update patches a vulnerability that could cause system crashes on a wireless network, says Apple.

IBM’s privacy tool goes open-source

According to an article on ZDNet, IBM will donate a new privacy tool to the Higgins open source project. The software, called Identity Mixer, was developed by IBM researchers to let people protect personal information when doing business online.