Monthly Archives: January 2007

Sun Microsystems has issued a security update intended for computers running Sun Solaris 10 operating system. The update patches a security vulnerability that could cause kernel panic by sending one false ICMP request.

Security research company, Internet Security Systems, anticipates a continued rise in profit-motivated attacks, including an increased focus on the Web browser and image-based spam.

Webroot software announced the availability of Vista-compatible Spy Sweeper, the newest version of the company’s popular Internet security solution.

Rixler Software today announced the availability of Office Multi-document Password Cracker, the company’s new solution to remove passwords from multiple Office documents.

ScriptLogic today announced the availability of Security Explorer 6, the latest version of the company’s real-time manager of access controls and security on Windows file servers and workstations.

Michal Zalewski, an independent security researcher, announced the availability of Stompy, a free tool to perform a black-box assessment of Internet sessions IDs. While some session ID cookies generation algorithms are believed to be cryptographically secure, this is not the case for certain less-common enterprise web platforms.

Hackers are exploiting a new, zero-day vulnerability in Microsoft Word that could allow remote code execution on the victim’s machine, says security vendor Symantec.

Apple has issued AirPort Extreme security update intended for Intel-based Macs running Mac OS X v 10.4.8. The update patches a vulnerability that could cause system crashes on a wireless network, says Apple.

According to an article on ZDNet, IBM will donate a new privacy tool to the Higgins open source project. The software, called Identity Mixer, was developed by IBM researchers to let people protect personal information when doing business online.