Joomla security Flaw discovered
The Joomla team has announced a security vulnerability in the core.
It concerne all version including 1.5.21 !
A 0-day flaw works on IE6, IE7 and IE8
Microsoft has just issued a bulletin: a 0-day vulnerability is currently being worked on versions 6, 7 and 8 of its popular browser, Internet Explorer.
The beta version of IE9 should't be targeted.
Microsoft is monitoring the situation closely. An emergency patch will be proposed, if the fault is most likely clogged with the next Tuesday patch (November 9).
Android: the Kernel would have “88 high-risk vulnerabilities”
A report signed Coverity says Android, the mobile OS yet most resistant to piracy would contest filled with high-risk vulnerabilities, potentially exploitable.
The study by Coverity Group, publisher of solutions for static analysis of source code, considered the kernel installed on Android phone HTC Droid Incredible.
Mozilla fixed in 48 hours the exploit in Firefox 3.5 and 3.6
It only took 48 hours for the Mozilla Foundation released a security patch following the discovery of a flaw in its browser, which allowed a takeover of the attacked machine.
The flaw was exploited from the site of the Nobel Peace Price site, which itself had been mysteriously hacked.
Firefox was the only browser that is visibly affected by this attack (see above).
Today, the Foundation has released two patches, one for each version of Firefox (3.5 and 3.6) affected by the exploit.
Everything is back to normal.
Hats off to a reaction rate too fast?
A flaw in IOS 4.1 allow access to personal datas
A new security flaw has been discovered in iOS: it bypasses the password that protects iOS an iPhone running 4.1.
So, the hacker can access personal data stored in the mobile.
To achieve this, it must simply enter # # # on the keypad, instead of an emergency number, then just press all the buttons lock and appeal. This causes the release of the phone application that provides access to contacts, messaging and call history.
Apparently, this flaw is exploitable from version 4.2 Beta 3 IOS. Which suggests that Apple got wind of the vulnerability and that it has corrected
Source: Video of a Brazilian hacker who gave a demonstration of the exploit:
Certificates
Categories
- Ansermot.ch (13)
- Community (99)
- Development (258)
- Misc (24)
- Projects (23)
- Bullet Proof Lib (4)
- FireStats Charts (12)
- WordPress Blog Farmer (4)
- WP Page Qr (3)
- Social (27)
- System (114)