Microsoft Worldwide Partner Conference

This week Microsoft, and every company that is a partner of Microsoft, have descended upon Houston. Thankfully, I live here so I didn't have to travel far. I get to... Read More

Microsoft Windows DirectX could allow a remote attacker to execute arbitrary code on the system. Read More

Oracle WebLogic Server (formerly known as BEA WebLogic Server) is vulnerable to a buffer overflow, which would cause a denial of service and potentially remote code execution. Read More

Read More

How fast can you download all of the latest patches? Well, if you were to install Windows from scratch on a PC, then connect to the Internet to download all... Read More

Microsoft ActiveX Snapshot Viewer for Microsoft Access could allow a remote attacker to execute arbitrary code on the system.  Targeted exploitation was reported on July 7, but X-Force has been monitoring toolkit-related mass exploitation since July 10.  As of July 24, exploitation has continued to escalate.  See technical description for more details. Read More

According to the results of an RSA survey, 54% of respondents have addressed a security incident but only 11% reported it. Based on what we see reported in the news,... Read More

At some point, the United States Customs and Border Patrol decided that the current administration's blatant disregard for the Constitution of the United States trickles down to them as well... Read More

The Microsoft Dynamics GP is vulnerable to four heap and stack-based buffer overflows. A remote attacker could overflow the buffer and execute arbitrary code or gain control of the affected system by sending malicious queries to the Distributed Process Server or Distributed Process Manager. Read More

The Microsoft MJPEG codec is vulnerable to multiple stack-based buffer overflows when parsing specially crafted files. A remote attacker could overflow the buffer and execute arbitary code within the context of the user viewing the malicious file. Read More