Mac OS X hit with another serious security issue

Grok Headline matches for Mac OS X hit with another serious security issue

What does it take to Patch a security
issue

What does it take to Patch a security
issue 06/22/2004 07:49 AM

Ever wonder what happens to a security issue when it is reported to Microsoft and what it takes to patch products. A reporter at Ziff Davis was given a inside look. [ZDNet]

Overzealous security: CLEARly an issue

Overzealous security: CLEARly an issue 06/17/2004 04:29 PM
ZDNet Jun 17 2004 8:11PM GMT

Other News: DNS Security Issue

Other News: DNS Security Issue 08/02/2004 10:11 AM
The ubiquitous and essential domain name system offers potential misuse as a covert communications channel.

Mac OS X 10.3.4 Fixes Security Issue?

Mac OS X 10.3.4 Fixes Security Issue? 05/20/2004 05:23 PM

E:M | Blogrolling's big security issue

E:M | Blogrolling's big security issue 05/13/2004 03:45 AM
…©„ §…†ŒͺŒ ¨„§€Œˆ„Š† ¨ .. E:M Blogrolling's big security issue .. serious security vulnerability .. Blogrolling

hoder.com/weblog/archives/010694.shtml
track this site | 6 links

Mac OS X Security Issue: Local Scripts

Mac OS X Security Issue: Local Scripts 05/17/2004 04:31 PM
Infoworld reports on a new security vulnerability that affects Mac OS X/Safari. The vulnerability involves the ability for Safari to run arbitrary ...

Other News: Apple Security Issue

Other News: Apple Security Issue 06/03/2004 10:53 AM
Phil Schiller admits Apple has only addressed "one part of what is a complex problem" with Mac OS X security, despite his recent press release spin on the problem.

Notes and Tips: AIM/AOL Security Issue

Notes and Tips: AIM/AOL Security Issue 03/17/2005 02:51 AM
Josh Rafofsky writes that an old AOL password kept working after he changed it to a new one.

Microsoft issue security warning

Microsoft issue security warning 02/11/2004 02:43 AM
Herald Sun Feb 11 2004 6:44AM GMT

Cisco warns of VPN security issue

Cisco warns of VPN security issue 04/19/2004 05:50 AM
ZDNet UK Apr 19 2004 9:27AM GMT

(IN)SECURE Digital Security Magazine
issue 2 is out

(IN)SECURE Digital Security Magazine
issue 2 is out 06/22/2005 02:05 AM

Microsoft Responds to SP2 Security
Center Issue

Microsoft Responds to SP2 Security
Center Issue 08/27/2004 03:42 PM
Microsoft has responded to Neowin with regard to the XP SP 2 problem story we ran yesterday, as reported by PC Magazine & e-Week. The open letter is an unedited version of what we received early this morning.

Dear Neowin,

We wanted to alert you to some misguided press reports that may cause Microsoft customers undue concern. Some articles have posted that claim there is a highly critical vulnerability that would allow a malicious user to spoof the Windows Security Center in Windows XP SP2 however this claim is not accurate. we don’t know how closely you have been following this issue, but we wanted to make sure you had the facts from Microsoft.

As you know Windows Security Center, found in the Windows XP Control panel, provides customers the ability to easily check the status of essential security functionalities such as firewalls, automatic updates and antivirus. Windows Security Center will inform users whether key security capabilities are turned on and up to date and will notify users if it appears that updates need to be made or if additional action steps may need to be taken to help them get more secure.

To clarify, there is not a vulnerability in the Windows Security Center. In order for an attacker to spoof the Windows Security Center, he or she would have to have local administrator rights on the computer (ed. XP Homes default user is 'Admin', and many XP Pro users set their account to admin status for a hassle free life). If an attacker were granted access to a user’s system, either by being granted them or attaining them by enticing a user to open a malicious attachment, the criminal actions the attacker could pursue include many that are far more serious than just spoofing the Windows Security Center. In Windows XP SP2, we have added functionality to reduce the likelihood of unknown applications from running on the user’s system including turning Windows Firewall on by default, Data Execution Prevention and Attachment Manager in Outlook Express, to name a few.

All the best,
Windows Community Team

View: Neowin: Win XP Sp2 Problem?

Read full story...

Serious Security Issue in Windows XP
SP2's Firewall

Serious Security Issue in Windows XP
SP2's Firewall 09/20/2004 07:05 PM
Andreas Marx (Sep 19 2004)

AP Poll: Kerry Narrows Security Issue
Gap (AP)

AP Poll: Kerry Narrows Security Issue
Gap (AP) 08/06/2004 04:57 PM
AP - Democrat John Kerry, whose nominating convention highlighted his war service and focused on national security, has narrowed the gap on President Bush's strong suit of protecting the country, according to an Associated Press poll that shows the race remains tight.

Cheney criticizes Kerry on security
issue

Cheney criticizes Kerry on security
issue 04/26/2004 01:13 PM

Mozilla issue patch for security hole

Mozilla issue patch for security hole 07/09/2004 08:40 AM
Just as everyone was about ready to ditch Internet Explorer in favour of the less popular but theoretically less bug prone alternatives from Mozilla, a patch was issued to fix a recently discovered security hole in Mozilla, Firefox and Thunderbird. The bug, which only affects users running one of the above products on a Microsoft Windows platform, may allow an attacker to cause a machine to freeze. Although not necessarily hugely damaging to the client machine, this is still a blow to the Mozilla Foundation, as it will cause confidence in their products to drop.

Computing: Assaults made security top
issue

Computing: Assaults made security top
issue 01/04/2005 04:21 AM
Houston Chronicle Jan 4 2005 7:06AM GMT

Smart Guest Book Security Issue

Smart Guest Book Security Issue 08/30/2004 12:00 PM

Direct and Related Links for 'Smart Guest Book Security Issue'

“Critical: Moderately critical Impact: Exposure of sensitive information Where: From remote Solution Status: Unpatched Software: Smart Guest Book 2.x A security issue has been reported in Smart Guest Book, which may allow malicious people to gain knowledge of sensitive information. The problem is that the database file “SmartGuestBook.mdb” by default is accessible by anyone. This may disclose various information including the administrative username and password by downloading the file from an affected web site. Solution:…

Microsoft: security now key issue in
browser market

Microsoft: security now key issue in
browser market 09/17/2004 02:32 AM
DMeurope.com Sep 17 2004 6:44AM GMT

Security Issue for Mozilla / Firefox
fixed

Security Issue for Mozilla / Firefox
fixed 07/09/2004 03:25 AM

Apparently a bug that has been on the been known about for 2 years has been fixed. There is a huge discussion going on over at Slashdot about it and I tend to agree with several points. The main thing is the Mozilla / Firefox folks are as guilty as the Microsoft gang fro not plugging this hole earlier. I am quite positive as more people migrate away from IE that other browser platforms are going to suffer some of the same issues. [Slashdot] [NewsForge] [eWeek] [Firefox & Mozilla Update Available]

Notes and Tips: .DS_Store Security Issue

Notes and Tips: .DS_Store Security Issue 09/17/2004 10:17 AM
Maybe Apple's default configuration *doesn't* block the .DS_Store problem, after all.

Microsoft conference declares security
an issue of trust

Microsoft conference declares security
an issue of trust 07/29/2004 02:51 AM
Silicon Republic Jul 29 2004 6:45AM GMT

Security catalog updated for MS04-011
detection issue on NT4.0

Security catalog updated for MS04-011
detection issue on NT4.0 05/10/2004 04:11 PM

Apple offers workaround for DHCP
security issue

Apple offers workaround for DHCP
security issue 12/03/2003 12:12 PM
Apple has posted a Knowledge Base document that offers details on how to avoid problems pertaining to the DHCP security vulnerability that was published last week...

Security breach laws become state's
rights issue

Security breach laws become state's
rights issue 04/13/2005 07:30 PM
Federalism questions pepper a Senate hearing into data mishaps. Should states regulate security breaches too?

Corsaire Security Advisory: BEA WebLogic
example InteractiveQuery.jsp XSS issue

Corsaire Security Advisory: BEA WebLogic
example InteractiveQuery.jsp XSS issue 10/31/2003 12:49 PM
advisories (Oct 31 2003)

[RHSA-2004:154-01] Updated CVS packages
fix security issue

[RHSA-2004:154-01] Updated CVS packages
fix security issue 04/14/2004 03:47 PM
bugzilla_at_redhat.com (Apr 14 2004)

Security issue with Trend OfficeScan
Corporate Edition

Security issue with Trend OfficeScan
Corporate Edition 05/07/2004 03:01 PM
Matt (May 06 2004)

What Mozilla users should know about the
shell: protocol security issue

What Mozilla users should know about the
shell: protocol security issue 07/09/2004 08:02 AM
install this upgrade .. Hier de patch .. been released

mozilla.org/security/shell.html
track this site | 6 links

Panther security update addresses
Terminal issue

Panther security update addresses
Terminal issue 11/04/2003 05:58 PM
Apple has released a security update for Mac OS X 10.3 ("Panther") that's available through the Mac OS X Software Update preference pane. The update addresses a potential vulnerability with the Terminal application in OS X 10.3 and OS X 10.3 Server that could allow unauthorized access to a system. The app gives you command-line access to the UNIX core beneath Mac OS X. Terminal works much like other UNIX command-line environments.

Corsaire Security Advisory: PeopleSoft
IScript XSS issue

Corsaire Security Advisory: PeopleSoft
IScript XSS issue 11/13/2003 12:26 PM
advisories (Nov 13 2003)

Linksys Routers Administrative Web
Interface Access Security Issue

Linksys Routers Administrative Web
Interface Access Security Issue 06/21/2004 09:27 AM
“The issue has been reported in the following products: Linksys WRT54G (firmware release 2.02.7), Linksys BEFSR41 ver.3…Other products and firmware releases may also be affected. The vendor has released a beta fix for the WRT54G product.

Google Lockergnome

Information security fast becoming core
issue in corporate governance

Information security fast becoming core
issue in corporate governance 09/27/2004 08:51 AM

Corsaire Security Advisory - Sygate
Enforcer discovery packet DoS issue

Corsaire Security Advisory - Sygate
Enforcer discovery packet DoS issue 08/10/2004 02:04 PM
advisories (Aug 10 2004)

Corsaire Security Advisory - Sygate
Enforcer unauthenticated broadcast issue

Corsaire Security Advisory - Sygate
Enforcer unauthenticated broadcast issue 08/10/2004 02:04 PM
advisories (Aug 10 2004)

[RHSA-2004:182-01] Updated httpd
packages fix mod_ssl security issue

[RHSA-2004:182-01] Updated httpd
packages fix mod_ssl security issue 04/30/2004 03:07 PM
bugzilla_at_redhat.com (Apr 30 2004)

Corsaire Security Advisory - Sygate
Secure Enterprise replay issue

Corsaire Security Advisory - Sygate
Secure Enterprise replay issue 08/10/2004 02:04 PM
advisories (Aug 10 2004)

Corsaire Security Advisory - Multiple
vendor MIME separator issue

Corsaire Security Advisory - Multiple
vendor MIME separator issue 09/14/2004 12:49 PM
advisories (Sep 14 2004)

Corsaire Security Advisory - Verity
Ultraseek path disclosure issue

Corsaire Security Advisory - Verity
Ultraseek path disclosure issue 05/05/2004 12:29 PM
advisories (May 05 2004)
Grok Description matches for Mac OS X hit with another serious security issue
GrokA matches for Mac OS X hit with another serious security issue

Mac OS X hit with another serious security issue

The following phrases have been identified by the grok system as matching this entry: