October 2006
Welcome to October's edition of Internet Security News, the monthly risks bulletin detailing the latest Internet software and system vulnerabilities from NTA Monitor, a leading IT security testing company. It provides a convenient way to keep up to date with the fast changing world of IT security; this month's edition includes a total of 11 risk issues: 2 High, 2 Medium, 2 Low and 5 Informational .
Highly critical flaws found in Ipswitch IMail Server
(High risk) A vulnerability recently found in multiple versions of IMail Server can be exploited to cause a buffer overflow 2nd October 2006 Read MoreMicrosoft's latest updates
(High risk) Microsoft's September bulletin issued 3 security updates addressing Windows and Office vulnerabilities 2nd October 2006 Read MoreDenial of Service vulnerabilities found in BIND
(Medium risk) Some Denial of Service vulnerabilities have been found in ISC BIND versions 9.2.x and 9.3.x 2nd October 2006 Read MoreSendmail vulnerability
(Medium risk) A vulnerability has been reported in Sendmail that can be exploited by malicious people to cause a Denial of Service 2nd October 2006 Read MoreApple wireless vulnerability?
(Low risk) An apparent flaw in Apple's wireless functionality has been found and widely criticised - one security expert has even offered to give the flaw finders a new MacBook if they successfully hijack it 2nd October 2006 Read MoreSecond Life residents' data compromised
(Low risk) At the beginning of September, a hacker broke into a database containing information about 650,000 users of the online game Second Life 2nd October 2006 Read More19,000 AT&T customers' data compromised
(Informational) 19,000 AT&T customers have had their credit card details compromised by hackers 2nd October 2006 Read MoreHP in hot water
(Informational) Hewlett Packard is in trouble after a contractor hired to uncover the source of boardroom leaks to the media allegedly used sensitive information to access phone company computers and get the calling records of nine reporters without authorisation 2nd October 2006 Read MoreNew Browzar causing controversy
(Informational) A new web browser is available that does not track users' searches or utilise auto-complete 2nd October 2006 Read MoreO2 security hole
(Informational) A serious breach on O2's website enabled small business users to view other users' call records 2nd October 2006 Read MoreSamsung website was hosting malware
(Informational) Samsung's US website has been hosting malware and nobody knows how long it was there 2nd October 2006 Read MoreAbout NTA Monitor
This bulletin is produced as a by-product of ongoing research carried out to develop NTA Monitor's Internet security testing service, Regular Monitor. NTA are a full-service Internet security testing company with a comprehensive range of testing services including:
- VPN Testing
- Onsite Auditing
- Web Application Test
- War Dialling
- Wireless Infrastructure Testing
- RM Vulnerability Testing
For more information on the above services please see our services page.