NTA Monitor

Latest News

60% of UK website tests revealed Internet encryption and cross-site scripting vulnerabilities

10th April 2008 60% of web application tests performed for UK organisations showed that their websites contain weak encryption or cross-site scripting (XSS) vulnerabilities Read More

Demilitarised Zone most secure option for BlackBerry device

28th February 2008 Recent BlackBerry testing by IT security consultancy, NTA Monitor, has revealed that organisations are still not configuring these mobile devices correctly Read More

Retailers should put security top of their Christmas list

13th November 2007 With British consumers spending more than £6.6 billion online in the last two months of last year, the 2007 festive season is set to be one of great cheer for online retailers Read More

Businesses warned not to have skeletons in cupboards

13th November 2007 For many organisations, the festive season is an opportunity to heave a corporate sigh of relief and enjoy the brief respite in frenetic business activity as countless people all over the world, go home to celebrate Christmas Read More

Advisories

Cisco VPN Concentrator IKE resource exhaustion DoS

(Medium risk) NTA Monitor has discovered a denial of service vulnerability in the Cisco VPN 3000 Concentrator, IOS software, PIX firewall and ASA appliance products. 26th July 2006 Read More

Avaya VPNRemote VPN Client Password Disclosure Issue

(Medium risk) NTA Monitor has discovered a password disclosure issue in the Avaya VPNRemote VPN client, VPNRemote stores all user credentials (username and password) in clear-text in the process memory. 23rd November 2005 Read More

Sawmill Cross Site Scripting (XSS) Vulnerability

(Medium risk) A vulnerability has been discovered in the Sawmill web server by NTA Monitor in the course of performing a test for a customer. 8th September 2005 Read More

Google Talk Beta Messenger Client Password Disclosure Issue Summary

(Medium risk) NTA Monitor have discovered a password disclosure issue in the Google Talk Windows Messenger Client 7th August 2005 Read More

Juniper Netscreen VPN Username Enumeration Vulnerability

(Medium risk) NTA Monitor has discovered a VPN username enumeration vulnerability in the Juniper Netscreen integrated Firewall/VPN products while performing a VPN security test for a customer 1st August 2005 Read More

PHP-Fusion messages.php SQL Injection Vulnerability

(Medium risk) NTA Monitor discovered a SQL Injection vulnerability in the PHPFusion Content Management System 25th July 2005 Read More

Cisco VPN Concentrator Groupname Enumeration Vulnerability

(Medium risk) NTA Monitor has discovered a groupname enumeration vulnerability in the Cisco VPN 3000 series concentrator products while performing a VPN security test for a customer 8th June 2005 Read More

Nortel VPN Router Malformed Packet DoS Vulnerability

(Medium risk) NTA Monitor have discovered a denial of service (DoS) vulnerability in the Nortel VPN Router products (which were previously known as Nortel Contivity) while performing a VPN security test for a customer. 3rd May 2005 Read More

Previous advisories: