#TeamOpenSourceMalaysia
Apple QuickTime Player is reported prone to remote heap overflow vulnerability (exploitable via remotely originated content). Only Windows users are currently affected. Please update to latest at http://www.apple.com/quicktime/win.html Full advisory can be found at: http://www.piotrbania.com/all/adv/quicktime-heap-adv-7.1.txt
Read MoreProblem processing packed files led to infinite loop. Details of a flaw in UPX processing in the Kaspersky anti-virus engine have been made available, a month after the release of a patch to fix the problem. The vulnerability, which was reported by iDefense, could be … “Kaspersky UPX vulnerability revealed”
Read MoreI guess, in time, you would need to run your Antivirus on hardware too to check for malicious code. I guess it would be an expensive exploit, nonetheless it could be exploiting hardware and storing itself in your hardware’s firmware. A good practice from now … “PC Hardware Can Be A Malicious Rootkit”
Read MoreI really like those some proclaimed security auditors who come to you and say they can “detect” security flaws in your products and charge you a butt load of money for it. I must say, they did some good work in convincing you. But seriously … “Nessus: Be an instant security auditor”
Read MoreI’ve summarized some tests performed by Av-comparatives.org, an independent AV research company. The ratings are Advanced+, Advanced, Standard and failed (as of Feb 2007) Results thanks to: http://www.av-comparatives.org/ Advanced+========1. Avira2. eScan3. F-Secure (yeah!)4. Gdata5. Kaspersky (I use this, proud to have blown 300++ on this … “Best Antivirus & Ratings for 2007”
Read MoreMicrosoft product found not up to scratch in AV-Comparatives review. Respected testing organisation AV-Comparatives has released the results of its latest in-depth test of anti-virus products, with a large batch of products tried out over a wide range of malware. Only one product, Microsoft‘s Windows … “Another reason to not use Microsoft OneCare *YET* (OneCare may fail to “qualify” further evaluations)”
Read MoreSource: http://www.virusbtn.com/news/virus_news/2007/03_01.xml?rssSkype messages, blogs, forum entries and webmails lead to more malware variants. Two major gangs of malware distributors have turned to new vectors for spreading their wares this week. While the makers of W32/Stration (aka Warezov) have been spamming Skype messages leading to copies … “Skype Users Take Note! (Stration & Storm’s gonna get ya..)”
Read MoreResearches have found multiple bugs (which are already discovered) and lots more unknown bugs on the famous scripting language, PHP which stands for Personal Home Page. This famous scripting language is used widely in systems from security companies to large corporations, to embedded devices (for … “Month of PHP bugs (PHP language security issues)”
Read MoreStar Trek fans, check this out, paramount Pictures today officially announced a new motion picture tentatively entitled Star Trek XI on Christmas Day 2008. Alas, their website didn’t have much info about the new releases. Anyway, those into ST (not me!, am a starwars fan), … “Star Trek Returns in 2008?”
Read MoreWhilst browsing for stuff on news.com, i bumped into one of the many links there that poses as an ad (and now appeared in a news) called SecondLife. I haven’t really signed on or registered but in essence it looks pretty darn cool, great idea … “One life ain’t enough? Try secondlife.com”
Read More