Browser Flaws

Google patches Chrome

Dan Kaplan June 23, 2009

Google has plugged a hole in is Chrome browser to fix an issue that could have enabled an attacker to cause a browser crash and execute arbitrary code, according to a company blog post. Version 2.0.172.33, released Monday, is patched for the buffer overflow vulnerability, rated "critical" by Google and discovered internally. Chrome automatically updates itself and requires no user action. It has about a six percent share in the browser market. — DK
 

Mozilla releases security fixes for Firefox

Chuck Miller June 12, 2009

The Firefox web browser has been patched for security flaws, four of which were identified as "critical" by Mozilla.
 

Google updates Chrome security; withdraws crashing development browser

Chuck Miller June 11, 2009

Google Chrome was updated Wednesday to fix security issues in the WebKit web browser engine. Meanwhile, Google withdrew updates for a development Chrome version soon after release.
 

New Safari 4.0 fixes more than 50 vulnerabilities

Angela Moscaritolo June 09, 2009

Apple on Monday released web browser Safari 4.0, which contains fixes for more than 50 vulnerabilities.
 

"Gumblar" website compromises increase 188 percent this week

Angela Moscaritolo May 14, 2009

Thousands of legitimate websites have been infected since late March with code that is silently infecting visitors with malware. And as of this week, the number of compromised websites has skyrocketed.
 

Chrome most updated browser

Dan Kaplan May 07, 2009

Users who surf the web with Google Chrome are more likely to be running the latest browser version compared to Mozilla Firefox, Apple Safari and Opera users, according to a new study from researchers at Google Switzerland and the Swiss Federal Institute of Technology. Ninety-seven percent of Chrome users ran the latest version three weeks after its release, found the study, which attributed the high marks to Chrome's silent-update mechanism, which does not allow users to disable automatic updates. Firefox was second best at 85 percent, followed by Safari (53 percent) and Opera (24 percent). Internet Explorer was not analyzed. — DK
 

Another Firefox update

Chuck Miller April 27, 2009

Less than a week after Mozilla updated its Firefox browser, a new version has been released. Firefox 3.0.10 was prompted because one of the security fixes in Firefox 3.0.9 introduced a problem that caused some users to experience frequent crashes, according to the new version's release notes. The crashes were due to memory corruption that appeared to be exploitable. — CAM
 

Mac attack: Bot herders going after Apple computers

Greg Masters April 17, 2009

Bot herders have found a way to infest Mac computers: via pirated software.
 

Internet Explorer's market share shrinking

Angela Moscaritolo April 02, 2009

Internet Explorer's hold as the market share leader has grown more tenuous in recent months, according to new data.
 

"High-priority" Firefox patch being readied

Greg Masters March 26, 2009

A new patch for Firefox is being readied for shipment early next week to fix a vulnerability detected on Wednesday.
 

Firefox update addresses multiple security issues

Angela Moscaritolo March 05, 2009

Mozilla on Wednesday issued Firefox 3.0.7, which fixes multiple security issues that could potentially enable an attacker to run arbitrary code on a victim's computer, cause a denial-of-service condition, obtain sensitive information, or spoof the location bar, according to an advisory from US-CERT Thursday.
 

Opera closes multiple security vulnerabilites with update

Chuck Miller March 03, 2009

A new version of the Opera browser closes several security holes that could have enabled an attacker to execute arbitrary code or launch cross-domain scripting attacks.
 

New Internet Explorer exploit discovered in the wild

Dan Kaplan February 17, 2009

A recently patched Internet Explorer flaw is being leveraged to launch an in-the-wild exploit, a potential precursor of more widespread targeted attacks.
 

Patch Tuesday: Microsoft fixes "critical" flaws in Exchange, IE

Dan Kaplan February 10, 2009

Microsoft on Tuesday pushed out four patches for eight vulnerabilities.
 

Four Microsoft fixes planned for Patch Tuesday

Dan Kaplan February 05, 2009

Microsoft is planning four patches -- two rated "critical -- in Tuesday's monthly security update.
 

Mozilla patches Firefox

February 04, 2009

Mozilla has released Firefox 3.0.6 to fix six security holes, including one rated "critical." According to US-CERT, exploitation of the vulnerabilities could let an attacker run malicious code on infected machines, grab sensitive information, or conduct cross-site scripting attacks. One of the bugs fixed was a JavaScript issue in the browser engine shared with Mozilla's Thunderbird email client and its SeaMonkey internet suite. -- CAM
 

Microsoft's IE8 released for final testing

Chuck Miller January 27, 2009

The Monday announcement of Internet Explorer (IE) Release Candidate 1 (RC1) will be the last public update of IE8 before the final product is released. RC1 is available for public download in 25 languages, and is billed as Microsoft's most secure browser ever.
 

Apple Safari feed reader flaw could expose private information

Dan Kaplan January 13, 2009

A researcher has discovered a potentially dangerous, password-stealing vulnerability in Apple's Safari browser.
 

New phishing ploy exploits secure sessions to hijack data

Dan Kaplan January 13, 2009

The next-generation of phishing attacks will drop emails and malicious websites in favor of live, legitimate-seeming attacks.
 

Microsoft says Vista, IE7 defenses can overcome poor code

Dan Kaplan December 19, 2008

The newest Microsoft operating system and web browser, when used in conjunction, can stem the latest Internet Explorer exploit.
 

Firefox joins in security update whirlwind

Chuck Miller December 17, 2008

Along with the updates to Microsoft's Internet Explorer, Apple's Safari fixes, and the latest Opera patches, Mozilla has released its own security updates for Firefox.
 

"Extremely severe" issues addressed with Opera 9.63 update

Angela Moscaritolo December 17, 2008

The security issues could lead to system access, disclosure of potentially sensitive information, cross-site scripting exploits, or a denial of service condition.
 

Microsoft readies emergency fix for Internet Explorer bug

Dan Kaplan December 16, 2008

Microsoft announced on Tuesday that it will issue an emergency fix on Wednesday for a dangerous zero-day vulnerability in Internet Explorer.
 

Security issues present in browser password management

Angela Moscaritolo December 15, 2008

The password management features of most popular web browsers are riddled with bugs, new research concludes.
 

Internet Explorer zero-day infection rates grow

Dan Kaplan December 15, 2008

Attacks exploiting an unpatched vulnerability in Internet Explorer spread quickly over the weekend, according to Microsoft.
 

Microsoft's holiday present: Eight patches, 28 vulnerabilities

Dan Kaplan December 09, 2008

Microsoft has closed out the year with a mammoth security update -- fixing 28 vulnerabilities, many of them Office and web flaws.
 

Eight Microsoft fixes planned for Patch Tuesday

Dan Kaplan December 04, 2008

Microsoft expects to push out eight patches next week, six to plug "critical" vulnerabilities.
 

Report: Nearly all computer users running insecure programs

Angela Moscaritolo December 03, 2008

New data indicates that 98 out of 100 computer users are running at least one unpatched program.
 

iPhone and iPod touch 2.2 update addresses flaws

Angela Moscaritolo November 24, 2008

The vulnerabilities can be maliciously exploited to bypass certain security restrictions.
 

New security updates for Firefox 2 and 3

Dan Kaplan November 13, 2008

Mozilla has released updates to its Firefox 2 and 3 browsers to offset a number of security holes.
 

Latest News

« Previous
Next »
Popular Topics
Analyst Reports & Industry Surveys Anti Spam Anti Spyware Anti Virus Apple Threats Application Security Breaches & Exposures Browser Flaws Browsers And Security CAN-SPAM Act Data Loss Prevention Endpoint Protection Facebook Government Industry Surveys Lawbreakers & Cybercrime Malware Mobile Endpoint Security Privacy Privacy Regulation Social Networks Spam Spam Techniques Trojans Vulnerabilities & Flaws