Microsoft Windows GDI+ Remote Code Execution

Microsoft Windows GDI+ Remote Code Execution
The Microsoft Windows GDI+ API (Gdiplus.dll) is vulnerable to multiple buffer overflows that could result in remote code execution.

Oracle WebLogic Server Apache Connector Remote Code Execution
Oracle WebLogic Server (formerly known as BEA WebLogic Server) is vulnerable to a buffer overflow, which would cause a denial of service and potentially remote code execution.

Marshal Positioned in the Visionaries Quadrant in E-Mail Security ... - MarketWatch

Multiple Vendors Vulnerable to DNS Cache Poisoning
Multiple vendor DNS protocol implementations could allow a remote attacker to poison the DNS cache.  Patches that resolve the vulnerability on the DNS may be rendered ineffective if the DNS is behind a NAT device that does not randomize ports. Public exploit code was made available on July 24, 2008.  At the time of this update, neither X-Force nor IBM MSS has witness any active exploitation nor the integration of this exploit into any exploit toolkits.

Researcher Releases Exploit for SCADA Networks
What is SCADA you ask? That is a very good question to start with in order to understand why you might care if the SCADA networks are exploited. SCADA is...

U.S. Presidential Election Phishing Scams
I get a fair amount of email. I probably get more spam than the average person. Of course, it all goes to my Junkmail folder sight unseen, so I don't...

Microsoft Office OneNote File Uniform Resource Locator Remote Code Execution
Microsoft Office is vulnerable to remote code execution through specially-crafted OneNote URLs.

ENISA examines ways to improve internet security - Telecom Paper (subscription)

For once, a cure better than the infection - Cape Cod Times

Protecting Your Web Mail Account
In the wake of Republican Vice Presidential nominee Sarah Palin's Yahoo email account being compromised by hackers last week, Yahoo's VP of Mail, John Kremer, wrote a brief article highlighting...