Apple almost made it through the month of July without an operating system security update which would have been a first for the year. But OS X Security Update 2007-007 was released on the last day of the month. Thirteen components are updated. Click the thumbnail to see the component list or visit the Apple [...] Read more »
WordPress Stats Plugin Vulnerability Plugged
I usually don’t mention WordPress vulnerabilities here, but since I use WordPress and the vulnerable plugin I figured I’d mention it (now that I’m patched). The WordPress Stats plugin by Automattic (Andy Skelton ) had a critical SQL injection vulnerability that could allow admin credentials to be stolen. The vulnerability was patched in version 1.1.1 [...] Read more »
Mozilla Firefox 2.0.0.6 Released
Mozilla has released a security update to Firefox 2, making it the second update this month. Firefox 2.0.0.6 is available through the built-in auto-update feature or as a standalone download. One “critical” and one “moderate” vulnerabilities are patched in this update. The critical update is “Unescaped URIs passed to external programs” which is similar to [...] Read more »
Firefox 2.0.0.5 Released
Mozilla has released Firefox 2.0.0.5 which patches eight security vulnerabilities in Firefox. The update patched eight security vulnerabilities. The previously reported vulnerability where IE would pass a malformed URL which Firefox would then accept is one of the eight patched vulnerabilities. Two other vulnerabilities were rated as “critical” by the Firefox team. A critical rating [...] Read more »
Adobe Patches Flash Player
Adobe has issued an update to Flash Player (formerly known as Macromedia Flash Player) that patches several serious security vulnerabilities. The latest version is Flash Player 9.0.47.0 They’ve also updated the older version 7 to version 7.0.70.0. The patch may be installed through the auto update feature of Flash Player or you can visit the [...] Read more »