A patch for a critical 2013 Java vulnerability is incomplete, and exposes Java servers and clients to a sandbox bypass, researchers at Security Explorations of Poland said.
Browsing Category: Web Security
Adobe today released a new version of Flash Player that patches 18 vulnerabilities, all of which can result in remote code execution attacks.
Two cloud security vendors publish reports that say hundreds of hosted apps and services remain vulnerable to the DROWN TLS flaw.
Experts urge caution over a vulnerability patched by Microsoft in the Windows USB Master Storage Class Driver that could be exploited remotely.
Mozilla released a new version of Firefox on Tuesday, fixing 40 vulnerabilities across the browser.
Google updated Chrome on Tuesday, fixing three high severity bugs in the process.
Microsoft released 13 security bulletins, five of which it rated critical, including separate advisories patching two dozen flaws in IE and Microsoft Edge browsers.
Adobe patched its Acrobat, Reader and Digital Editions products today, and said a Flash Player update is due in the “coming days.”
Researcher earns $15,000 bounty from Facebook for discovering massive password security hole exposing 1.1 billion accounts to a possible account takeover.
The Internet Systems Consortium (ISC) announced it is planning to patch versions of its DHCP to mitigate a denial of service vulnerability.