NTA Monitor

Latest News

Living with threats

1st August 2010 Back in 2004, Bill Gates predicted that spam would be a thing of the past within two years. As we all know now, and quite a lot of people predicted at the time, far from being a solved problem, the volume of spam has continued to increase. Read More

Web application security goes from bad to worse in many sectors

27th July 2010 NTA Monitor's 2010 Annual Web Application Security Report analysed the data gathered from web application security tests performed for a wide range of industry sectors over a 12-month period... Read More

IT Managers get to grips with Internet security issues

4th May 2010 According to NTA Monitor's 2010 Annual Security Report, the average number of Internet security vulnerabilities afflicting organisations has fallen.. Read More

Responsible Patching

1st January 2010 Microsoft's response to the "zero day" exploit that was used in the cyber attacks against Google shows that software vendors still have a lot to learn when it comes to responding to vulnerabilities. Read More

Advisories

Cisco VPN Concentrator IKE resource exhaustion DoS

(Medium risk) NTA Monitor has discovered a denial of service vulnerability in the Cisco VPN 3000 Concentrator, IOS software, PIX firewall and ASA appliance products. 26th July 2006 Read More

Avaya VPNRemote VPN Client Password Disclosure Issue

(Medium risk) NTA Monitor has discovered a password disclosure issue in the Avaya VPNRemote VPN client, VPNRemote stores all user credentials (username and password) in clear-text in the process memory. 23rd November 2005 Read More

Sawmill Cross Site Scripting (XSS) Vulnerability

(Medium risk) A vulnerability has been discovered in the Sawmill web server by NTA Monitor in the course of performing a test for a customer. 8th September 2005 Read More

Google Talk Beta Messenger Client Password Disclosure Issue Summary

(Medium risk) NTA Monitor have discovered a password disclosure issue in the Google Talk Windows Messenger Client 7th August 2005 Read More

Juniper Netscreen VPN Username Enumeration Vulnerability

(Medium risk) NTA Monitor has discovered a VPN username enumeration vulnerability in the Juniper Netscreen integrated Firewall/VPN products while performing a VPN security test for a customer 1st August 2005 Read More

PHP-Fusion messages.php SQL Injection Vulnerability

(Medium risk) NTA Monitor discovered a SQL Injection vulnerability in the PHPFusion Content Management System 25th July 2005 Read More

Cisco VPN Concentrator Groupname Enumeration Vulnerability

(Medium risk) NTA Monitor has discovered a groupname enumeration vulnerability in the Cisco VPN 3000 series concentrator products while performing a VPN security test for a customer 8th June 2005 Read More

Nortel VPN Router Malformed Packet DoS Vulnerability

(Medium risk) NTA Monitor have discovered a denial of service (DoS) vulnerability in the Nortel VPN Router products (which were previously known as Nortel Contivity) while performing a VPN security test for a customer. 3rd May 2005 Read More

Previous advisories: