Cybercriminals are exploiting a bug in software used by Microsoft’s Access database programme in a new online attack, Microsoft warned Monday. The flaw lies in the Snapshot Viewer ActiveX control, which ships with “all supported versions of Microsoft Office Access except Microsoft Access 2007,” Microsoft said in a security advisory, published Monday.Microsoft released few details [...]

For the upcoming version of Internet Explorer 8.0 (IE8), Microsoft has hinted at a number of security improvements.

More: continued here

Microsoft is planning to add a series of new security features to the next version of its Internet Explorer browser, including protection against cross-site scripting attacks.A beta version of IE 8 is due out in August, and along with the XSS filter, it will include a filter designed to provide better protection against phishing attacks, [...]

Updated your Web browser lately? Ever? If not, you and 637 million other Net surfers with outdated, insecure browsers are inviting criminal hackers into your computer, researchers warn.Using Internet Explorer? You’re likely to be one of the biggest offenders.The researchers wanted to know why so many recent attacks have been targeted at the browser and [...]

A Chinese research team has discovered a zero-day vulnerability in Internet Explorer 6 that is being actively exploited to possibly steal credentials and hijack browser sessions.

More: continued here

An unpatched cross-site scripting flaw in Microsoft’s Internet Explorer 6 could be used by hackers to capture keystrokes and steal other information, according to security researchers.

More: continued here

Firefox 3 will be released today. Many of us in the lab were not aware that Mozilla is pushing for a Guiness World Record. Mozilla is aiming for a record number of downloads within the first 24 hours.
Kudos to Jay, from our Vulnerability Team, for pointing it out to us.

There’s already a large number of [...]

With Apple aggressively pushing Safari to Windows users who are running iTunes, and Mozilla and Opera releasing new versions of their popular browsers, it seems that the browser wars are hotting up once again.Is a second browser war going to be a good thing or a bad thing for web users?The current state of play [...]

There are reports of a critical vulnerability affecting current versions of Adobe Flash and evidence of it being exploited in the wild. Versions including and previous to 9.0.124.0 are reported to be at risk. However — chatter on the security lists we frequent suggest version 9.0.124.0 is not vulnerable and that the attacks [...]

Microsoft Internet Explorer ’setRequestHeader()’ Multiple Vulnerabilities
More: continued here

Microsoft today released seven security updates to patch 10 vulnerabilities — four of them “critical” — in Windows and Internet Explorer. It also disabled a third-party ActiveX control bundled with Logitech hardware, including keyboards and mice.

More: continued here

Microsoft on Tuesday plans to release seven security updates, three of them “critical,” for several Windows components, including Bluetooth, DirectX and Internet Explorer.

More: continued here Powered by SmartRSS