CroatianEnglish

Sigurnosno upozorenje

Latest security advisory!

NASA Common Data Format remote buffer overflow(s)

2009-07-09

CDF is the Common Data Format. It is a conceptual data abstraction for storing, manipulating, and accessing multidimensional data sets.  The basic component of CDF is a software programming interface that is a device-independent view of the CDF data model.

The CDF software package is used by hundreds of government agencies, universities, and private and commercial organizations as well as independent researchers on both national and international levels. CDF has been adopted by the International Solar-Terrestrial Physics (ISTP) project as well as the Central Data Handling Facilities (CDHF) as their format of choice for storing and distributing key parameter data. A list of some applications that use the CDF library can be found at http://cdf.gsfc.nasa.gov/html/examples.html.

Posljednja novost News

Security vulnerability in shortcut files on Windows operating systems

2010-07-19

On Friday, the 16th of July, Microsoft has released a security advisory (2286198) that addresses a new vulnerability (CVE-2010-2568). This vulnerability enables attackers to automatically run arbitrary files on Windows operating systems. The vulnerability is located in the Windows Shell component that is responsible for parsing shortcut files which attackers can exploit by crafting a special shortcut file. Shortcut files are handled automatically and do not require any user interaction, it will suffice that a user is located in the same directory as a malicious shortcut. This vulnerability is significant because disabling AutoPlay will not affect successful exploitation.

Posljednji dokument Whitepapers

Advanced PostgreSQL SQL Injection and Filter Bypass Techniques

2009-06-17

According to the WhiteHat Website Security Statistics Report from 2009, SQL injection vulnerabilities make up to 17% of all web application vulnerabilities. Besides being very common, SQL injection vulnerabilities typically allow an attacker to read or even modify arbitrary data in the database used by the web application. This increases the risk resulting from such vulnerabilities.

In order to increase the overall security of web applications, companies today often implement web application firewalls or filters. While web application firewalls can indeed stop certain attacks, they are not a complete solution to web application vulnerabilities.
INfigo.hr © 2006 | design & development: Vega Intro