Welcome to September's edition of Internet Security News, the monthly risks bulletin detailing the latest Internet software and system vulnerabilities from NTA Monitor, a leading Internet security testing company. It provides a convenient way to keep up to date with the fast changing world of Internet security; this month's edition includes a total of 8 risk issues: 2 High, 1 Medium, 1
Low and 4 Informational.
September 2007
Highly critical Symantec flaws found
(High risk)
Two flaws have been found in a variety of Symantec programs, which can permit malicious attackers to gain system access
Read More
|
Microsoft's latest Patch Tuesday
(High risk)
Six critical and three important issues have been patched in the latest Microsoft advisory, fixing flaws in programs including Internet Explorer and Excel
Read More
|
Buffer overflow flaws in HP OpenView products
(Medium risk)
Vulnerabilities have been found in various HP OpenView programs, which can enable malicious users to compromise a vulnerable system
Read More
|
NTA Monitor finds Symantec VPN flaw
(Low risk)
NTA Monitor has discovered a username enumeration vulnerability in Symantec's Enterprise Firewall. When Symantec's Enterprise Firewall is configured for remote access (client-to-gateway) VPN using pre-shared key (PSK) authentication, it responds differently to valid and invalid usernames
Read More
|
House of Lords demands security improvements
(Informational)
A report issued by the House of Lords has made recommendations such as introducing a central web-based e-crime reporting system and the introduction of security breach notification laws, in a bid to improve Internet security
Read More
|
Internet bankers not concerned about fraud
(Informational)
Lloyds TSB has recently published results of a survey it recently conducted, which reveals that many people using Internet banking aren't bothered about fraud
Read More
|
Leak of Facebook's code amplifies security concerns
(Informational)
As some of Facebook's code is published online, concerns are raised about the security of social networking websites
Read More
|
UN website targeted by hackers
(Informational)
The UN's website has been defaced by hackers, forcing officials to take some pages offline
Read More
|
About NTA Monitor
This bulletin is produced as a by-product of ongoing research carried out to develop NTA Monitor's Internet security
testing service, Regular Monitor. NTA are a full-service Internet security testing company with a comprehensive range of
testing services including:
- VPN Testing
- Onsite Auditing
- Web Application Test
- War Dialling
- Wireless Infrastructure Testing
- RM Vulnerability Testing
For more information on the above services please see our
services page.