Welcome to December's edition of Internet Security News, the monthly risks bulletin detailing the latest Internet software and system vulnerabilities from NTA Monitor, a leading Internet security testing company. It provides a convenient way to keep up to date with the fast changing world of Internet security; this month's edition includes a total of 8 risk issues: 3 High, 2 Medium, 0
Low and 3 Informational.
December 2007
Microsoft Patch Tuesday
(High risk)
Microsoft has patched one critical and one important issue in November's Patch Tuesday bulletin
Read More
|
Apple patches multiple QuickTime flaws
(High risk)
Seven vulnerbilities have been identified in Apple's QuickTime, which if exposed may lead to attackers remotely executing malicious code
Read More
|
Vulnerabilities reported in AOL Radio
(High risk)
AOL radio buffer overflow may allow remote users to execute arbitrary code
Read More
|
Flaw identified in McAfee E-Business Server
(Medium risk)
A flaw has been identified in McAfee E-Business Server which may compromise a vulnerable system if exploited by malicious people
Read More
|
Vulnerability found in Oracle database
(Medium risk)
A flaw has been identified in Oracle database 10g, but a patch will not be issued until January
Read More
|
Has Apple changed its IT spots?
(Informational)
On 26th October, Apple unleashed Leopard, its latest Mac OS X operating system
Read More
|
Retailers should put security top of their Christmas list
(Informational)
In the last two months of 2006, British consumers spent more than £6.6 billion online and during 2007 this figure is due to increase
Read More
|
This Christmas businesses are warned not to have any skeletons in their cupboards
(Informational)
During the festive period, companies who choose to operate with a skeleton staff may need to be extra vigilant about security
Read More
|
About NTA Monitor
This bulletin is produced as a by-product of ongoing research carried out to develop NTA Monitor's Internet security
testing service, Regular Monitor. NTA are a full-service Internet security testing company with a comprehensive range of
testing services including:
- VPN Testing
- Onsite Auditing
- Web Application Test
- War Dialling
- Wireless Infrastructure Testing
- RM Vulnerability Testing
For more information on the above services please see our
services page.