Security
ZDNet, 8/19/04: Cisco flaw opens networks to attacks
By Ingrid Marson
Cisco has warned in a security advisory that some networks with its routers could be vulnerable to denial-of-service attacks.
The problem is in the processing of packets sent to a Cisco router that has been configured for the Open Shortest Path First (OSPF) protocol, the company said in a security advisory released Wednesday. If the router receives a malformed packet, it will take a while to reset. Attackers could flood networks with packets that cause routers to constantly reboot. The flaw is limited to versions 12.0S, 12.2 and 12.3 of Cisco's Internetwork Operating System routing software.
[more]
Internetnews.com, 8/19/04: IE Drag-and-Drop Flaw Warning
By Ryan Naraine
A security bug in Microsoft Internet Explorer's drag-and-drop feature could put millions of Web surfers at risk of malicious hacker attacks, researchers warned on Thursday.
According to a Secunia alert, the flaws, detected and reported by http-equiv, affect IE versions 5.01, 5.5 and 6.0 on fully patched systems running Microsoft Windows XP SP1 or SP2.
[more]
eWeek, 8/19/04: Attack Pierces Fully Patched XP Machines
By Dennis Fisher
Security researchers have identified a new version of the Download.Ject attack that is now being used on the Internet and can compromise fully patched Windows XP machines.
The new version of the attack just appeared Thursday afternoon, and while details are still sketchy, experts say its main purpose is to install a back door on compromised PCs. Users victimized by the attack receive an e-mail or an instant message containing a link directing them to a malicious Web page.
[more]
Computerworld, 8/19/04: HP to deliver vulnerability scanning service by year's end
The service will be based on an HP technology called Active Counter Measures
News Story by Jaikumar Vijayan and Patrick Thibodeau
Hewlett-Packard Co. plans to deliver a new security vulnerability scanning and remediation service by the end of the year that is designed to help companies identify and fix weak spots on their corporate networks, a senior company executive said this week.
The service will be based on an HP technology called Active Counter Measures, which the company has been internally testing for more than two years, according to Tony Redmond, vice president and chief technology officer at HP Services.
[more]
9:36:44 AM 
|
