News.com »Flaws

Microsoft COO downplays Vista update problems

The software giant's chief operating officer says he is pleased with SP1's progress, despite it breaking some third-party programs.

March 5, 2008 1:14 AM PST

Symantec warns of router compromise

Security company says it has seen an attack using a cross-site scripting flaw in 2Wire DNS routers.

January 24, 2008 5:22 PM PST

Secunia: CA backup product 'inherently insecure'

In annual report on security flaws, vulnerability-testing company strongly criticizes CA's ARCserve Backup product, as well as Symantec Mail Security.

January 16, 2008 6:49 PM PST

Wikia Search finds few fans in early going

Alpha version of community-driven Wikia search engine has received mostly negative online commentary since its launch this week.

January 8, 2008 3:23 PM PST

Microsoft admits Office 2003 'mistake'

The software maker has acknowledged it was wrong when it told users certain file formats were insecure.

January 7, 2008 6:41 PM PST

Intuit bug resurfaces at public Wi-Fi hot spots

A bug in a flawed QuickBooks update that deleted users' files could strike again if the software is used at public Wi-Fi hot spots.

January 3, 2008 9:45 PM PST

Critics rap Microsoft safety study of IE, Firefox

Redmond executive says IE is the safer bet after comparing vulnerabilities in the two browsers, but some say the study is flawed.

December 4, 2007 6:20 PM PST

Apple QuickTime exploit in the wild

An active exploit has been seen by Symantec for a vulnerability that affects the latest versions of Apple QuickTime.

December 3, 2007 4:19 PM PST

Study: 'Huge jump' in Microsoft flaws since last year

The number of security holes found in Microsoft software between 2006 and 2007 has risen threefold, says vulnerability-scanning company Qualys.

November 29, 2007 9:41 PM PST

Oracle to push out 51 patches

Update includes fixes for 27 vulnerabilities in Oracle Database, five of which may be exploited remotely without authentication.

October 15, 2007 2:25 PM PDT

OpenOffice bug hits multiple operating systems

A vulnerability in OpenOffice could allow attackers to remotely execute code on computers running Windows, Linux or Mac OS.

September 25, 2007 4:55 PM PDT

Bug hunting start-up: Pay up, or feel the pain

VDA Labs, which finds flaws in software, has a unique business model that's at the center of a debate over bug disclosure.

August 3, 2007 2:25 PM PDT

Sun says Java flaw has been patched

A Java security threat, the subject of an earlier Australian report, has been addressed and fixed, Sun Microsystems says.

July 13, 2007 10:40 PM PDT

Auction site sells security exploits

Founder says WabiSabiLabi will improve security by ensuring researchers get fairly compensated, but security companies are split over its value.

July 6, 2007 4:37 PM PDT

Locking down laptops before it's too late

Seagate CEO Bill Watkins says the flaw with current legislation is that it does not specify how to encrypt data.

June 20, 2007 11:00 AM PDT

Trillian critical security update released

"Highly critical" flaw patched in Cerulean Studios' multi-protocol chat software, which supports several popular IM services.

June 19, 2007 3:31 PM PDT

Yahoo releases critical security patch for IM

Patch for Messenger addresses zero-day exploits that take advantage of vulnerabilities in its Webcam ActiveX controls.

June 8, 2007 4:19 PM PDT

Microsoft to release four critical patches

Software giant plans to issues fixes next week for vulnerabilities in its Windows Mail, Internet Explorer and Windows XP.

June 8, 2007 12:02 AM PDT

Exposing software flaws--no easy job

Security researcher Christopher Soghoian reflects on the hard work that comes after finding a vulnerability.

June 7, 2007 10:35 PM PDT

IBM: Public vulnerabilities are tip of the iceberg

But security experts point out that nondisclosure of flaws doesn't necessarily increase security risk.

June 1, 2007 3:26 PM PDT