December 2007
Welcome to December's edition of Internet Security News, the monthly risks bulletin detailing the
latest Internet software and system vulnerabilities from NTA Monitor, a leading IT security testing
company. It provides a convenient way to keep up to date with the fast changing world of IT security;
this month's edition includes a total of 8 risk issues:
3 High, 2 Medium and 3 Informational .
Microsoft Patch Tuesday
(
High risk)
Microsoft has patched one critical and one important issue in November's Patch Tuesday bulletin
1st December 2007
Read More
Apple patches multiple QuickTime flaws
(
High risk)
Seven vulnerbilities have been identified in Apple's QuickTime, which if exposed may lead to attackers remotely executing malicious code
1st December 2007
Read More
Vulnerabilities reported in AOL Radio
(
High risk)
AOL radio buffer overflow may allow remote users to execute arbitrary code
1st December 2007
Read More
Flaw identified in McAfee E-Business Server
(
Medium risk)
A flaw has been identified in McAfee E-Business Server which may compromise a vulnerable system if exploited by malicious people
1st December 2007
Read More
Vulnerability found in Oracle database
(
Medium risk)
A flaw has been identified in Oracle database 10g, but a patch will not be issued until January
1st December 2007
Read More
Has Apple changed its IT spots?
(
Informational)
On 26th October, Apple unleashed Leopard, its latest Mac OS X operating system
1st December 2007
Read More
Retailers should put security top of their Christmas list
(
Informational)
In the last two months of 2006, British consumers spent more than £6.6 billion online and during 2007 this figure is due to increase
1st December 2007
Read More
This Christmas businesses are warned not to have any skeletons in their cupboards
(
Informational)
During the festive period, companies who choose to operate with a skeleton staff may need to be extra vigilant about security
1st December 2007
Read More
This bulletin is produced as a by-product of ongoing research carried out to develop NTA Monitor's Internet security
testing service, Regular Monitor. NTA are a full-service Internet security testing company with a comprehensive range of
testing services including: