OpenSSL Multiple vulnerabilities

Four security issues have been discovered in Openssl. Below are the relevant snippets from the advisory below. "1. Certain ASN.1 encodings that are rejected as invalid by the parser can trigger a bug in the deallocation of the corresponding data structure, corrupting the stack. This can be used as a denial of...

"What is IIS Security?"

Joe Lima from Port80 Software Inc. has released an article on IIS Security fundamentals. What IIS Security?

Two new Blind SQL Injection papers released

This week two new papers on blind sql injection have been released. The first paper was released by Webcohort goes into detail on how to detect blind sql injection, and how to carry out an attack. The paper released by Spidynamic's "SPI Labs" covers similar information, but also contains example 'fixes' for...
Looking for something else or having a hard time finding a story? We recently moved things around so please use the search bar on the right!