Security Hero Rotating Header Image

December, 2007:

Vulnerability in Macrovision SECDRV.SYS Driver on Windows Could Allow Elevation of Privilege – 12/11/2007

Microsoft Security Advisory (944653): Vulnerability in Macrovision SECDRV.SYS Driver on Windows Could Allow Elevation of Privilege – 12/11/2007

Revision Note: Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS07-067 to address this issue. For more information about this issue, including download links for an available security update, please review MS07-067. The vulnerability addressed is the Macrovision Driver Vulnerability – CVE-2007-5587.

URL: http://www.microsoft.com/technet/security/advisory/944653.mspx

VADition to Distribute Infoblox Core Network Services Platforms to Resellers

VADition to Distribute Infoblox Core Network Services Platforms to Resellers

VADition, the Value Adding Distributor, has today announced a distribution agreement with Infoblox, presenting resellers the opportunity to offer a tightly integrated, highly resilient platform to distribute, integrate and manage core network services.

URL: http://feedproxy.google.com/~r/InfobloxNewsFeed/~3/uzUfg6YwbbA/release.cfm

CiscoWorks Server XSS Vulnerability

CiscoWorks Server XSS Vulnerability

This is the Cisco PSIRT response to an issue that was discovered and reported to Cisco by David Lewis of Liquidmatrix.org regarding a cross-site scripting (XSS) vulnerability in CiscoWorks Server login page.

URL: http://www.cisco.com/en/US/products/products_security_response09186a008090a498.html

Extensible Authentication Protocol Vulnerability

Extensible Authentication Protocol Vulnerability

This is the Cisco PSIRT response to a presentation that was delivered by Laurent Butti, Julien Tinnhs and Franck Veysset of France Telecom Group at Hack.lu on October 19th, 2007.

URL: http://www.cisco.com/en/US/products/products_security_response09186a00808de8bb.html