Articles about security vulnerability

Wi-fi symbol as chocolate dusting on cappuccino foam. Photo by Shutterstock

Apple fans, Android world scramble to patch Broadcom's nasty drive-by Wi-Fi security hole

Yesterday, Apple rushed out an emergency patch to plug a severe security hole that can be exploited to wirelessly and silently commandeer iPhones, iPads and iPods. Now we know why: this remote-code execution vulnerability lies in Broadcom's Wi-Fi stack, which Apple uses in its handhelds. Many other handsets and Wi-Fi routers …
Overflowing dishwasher shutterstock

Dishwasher has directory traversal bug

Don't say you weren't warned: Miele went full Internet-of-Things with a network-connected dishwasher, gave it a web server, and now finds itself on the wrong end of a security bug report – and it's accused of ignoring the warning. The utterly predictable vulnerability advisory on the Full Disclosure mailing list details CVE- …

Zero-days? Sexy, sure, but crap passwords and phishing are probably more pressing

A new study from RAND Corporation concluded that zero-day vulnerabilities – security flaws that developers haven't got around to patching or aren't aware of – have an average life expectancy of 6.9 years. The research, based on rare access to a dataset of more than 200 such vulnerabilities, also looked at how frequently the …
John Leyden, 9 Mar 2017
Mambo Unlimited's gold bug. Pic: Steve Caplin

Avaya data leak bug

A group of security researchers have disclosed a now-fixed bug in Avaya data centre hardware that allows shortest-path first (SPB) bridges to be traversed. It's not remotely exploitable, but it's worth remembering that there's plenty of concern among data centre customers and admins that tenant traffic is private, both from …

Guilt by ASN: Compiler's bad memory bug could sting mobes, cell towers

A vulnerability in a widely used ASN.1 compiler isn't a good thing: it means a bunch of downstream systems – potentially mobile phones and cell towers – will inherit the bug. And an ASN.1 bug is what the Sadosky Foundation in Argentina has turned up, in Objective Systems' software. The research group's Lucas Molas says …
open_door_648

Schneider Electric building manager bug allows security bypass

Schneider Electric's Struxureware building management system has received a fix to address its default credentials that could have led to nasty consequences. The product called "Struxureware" – which the company says is used in hospitals, offices, data centres, utilities, the finance industry and a bunch of other verticals – …
Scary Skeleton Samba

PNG pongs: critical bug patched in ubiquitous libpng

This will not be fun: the graphics processing library libpng has a vulnerability and needs to be patched. The problem for that is that libpng is everywhere – in browsers, anything that processes photos to produce thumbnails, file browsers, music players, in applications in every operating system. The bug is a simple denial-of …
GHOST vulnerability

Drum roll, please .... Results are in for the collective noun for security vulns

We've closed the poll, and the results for our attempts to weed out candidates for a collective noun for security vulnerabilities are in. To recap: the recent rash of Android vulnerabilities has made it clear that a new collective noun for such flaws, and possibly a separate one for security bugs in general, was required. We …
John Leyden, 28 Aug 2015
Honeywell Tuxedo Touch

SOHOpeless: Security stains on Honeywell's Tuxedo home automator

Honeywell has issued an urgent firmware update for its three-year-old Tuxedo Touch home automation controller to patch vulnerabilities that could, among other things, let an attacker unlock users' deadlocks. This CERT advisory explains that without the firmware upgrade, all users are vulnerable to authentication bypass and …

Awoogah: Get ready to patch 'severe' bug in OpenSSL this Thursday

Sysadmins and anyone else with systems running OpenSSL code: a new version of the open-source crypto library will be released this week to "fix a single security defect classified as 'high' severity." The bug, we're told, will be addressed in versions 1.0.2d and 1.0.1p of the software. The vulnerability does not affect the 1.0 …
Photo of Kim Jong-un using an archaic computer

SURPRISE: Norks' Linux distro has security vulns

Well, that didn't take long: mere days after North Korea's Red Star OS leaked to the west in the form of an ISO, security researchers have started exposing its vulnerabilities. According to this post at Seclists, the udev rules in version 3.0 of the US and the rc.sysint script in version 2.0 are both world-writable. Both of …
bug on keyboard

FreeBSD developers VANQUISH Demon bug

Developers have quashed a potentially nasty security bug in FreeBSD. Security researchers at Norse discovered that a programming error creating a buffer overflow in the stdio (standard I/O) library's __sflush( ) function. The bug created a possible mechanism to inject hostile code into vulnerable systems running the open …
John Leyden, 11 Dec 2014
Bug bounties

Apple finally patches Bash Shellshock vuln that WAS NOT A WORRY, OK?

Apple and F5 are the latest big-name vendors to post responses to the “Shellshock” vulnerability in Bash. Just days after saying “the vast majority of OS X users are not at risk”, Cupertino has posted Bash fixes for OS X Lion, Mountain Lion, and Mavericks. The fix is now available in OS X users' Software Update. It would, …
balaclava_thief_burglar

Did you swipe your card through one of these UPS Store tills? You may have been pwned

UPS has discovered an outbreak of debit and credit-card-reading malware in 51 of its branches in the US. Exactly which strain of malware was involved is not known; a spokesperson told The Register today: "We're still investigating the infection." It's hoped the identity of the malware will be revealed once that probe is …
Ruhr University's malware architecture

How to marry malware to software downloads in an undetectable way (Hint: Please use HTTPS)

Be thankful it's only a proof-of-concept of a hack: German researchers have shown that internet software distribution mechanisms can be turned into virus vectors, without modifying the original code. The Ruhr University boffins – Felix Gröbert, Ahmad-Reza Sadeghi and Marcel Winandy – have developed an on-the-fly mechanism for …

Staunch your Heartbleed patching: FreeBSD has a nasty credentials leak

Got FreeBSD? Get busy on the patch, because a problem with its TCP ordering has emerged, with both denial-of-service and data leakage as possible effects. The issue exists in how the popular Unix-like operating system handles TCP packets received out-of-order. Packets are held in a reassembly queue until they can be re-ordered …

Running OpenSSL? Patch now to fix CRITICAL bug

Sysadmins using the OpenSSL cryptographic library have an urgent job: patching a memory leak vulnerability that could reveal user IDs and passwords. Dubbed “Heartbleed”, the vulnerability was discovered by Google Security's Neel Mehta and announced by CloudFlare. As the terse OpenSSL advisory states: “A missing bounds check …
bug on keyboard

WordPress two-factor login plugin bug, er, bypasses 2-factor login

The maker of a popular plugin that provides two-factor authentication for WordPress bloggers is preparing an update – after finding a vulnerability in its system. It advises that anyone using two-factor plugins from any vendor need to check their security strength. Duo Security's duo_wordpress plugin is vulnerable in some …

Create a news alert about security vulnerability, or find more stories about security vulnerability.

Biting the hand that feeds IT © 1998–2017