Microsoft Patch Tuesday for August 2007
Microsoft patch Tuesday for August 2007 brings us 6 critical and 3 important security updates from Microsoft. Microsoft summarizes the patches in their August summary. Every supported desktop version of Windows is affected by one or more patches. Several Microsoft Office versions are also affected along with several versions of Virtual PC and Virtual Server. [...]
OSX Security Update 2007-007
Apple almost made it through the month of July without an operating system security update which would have been a first for the year. But OS X Security Update 2007-007 was released on the last day of the month. Thirteen components are updated. Click the thumbnail to see the component list or visit the Apple [...]
WordPress Stats Plugin Vulnerability Plugged
I usually don’t mention WordPress vulnerabilities here, but since I use WordPress and the vulnerable plugin I figured I’d mention it (now that I’m patched). The WordPress Stats plugin by Automattic (Andy Skelton ) had a critical SQL injection vulnerability that could allow admin credentials to be stolen. The vulnerability was patched in version 1.1.1 [...]
Mozilla Firefox 2.0.0.6 Released
Mozilla has released a security update to Firefox 2, making it the second update this month. Firefox 2.0.0.6 is available through the built-in auto-update feature or as a standalone download. One “critical” and one “moderate” vulnerabilities are patched in this update. The critical update is “Unescaped URIs passed to external programs” which is similar to [...]
Firefox 2.0.0.5 Released
Mozilla has released Firefox 2.0.0.5 which patches eight security vulnerabilities in Firefox. The update patched eight security vulnerabilities. The previously reported vulnerability where IE would pass a malformed URL which Firefox would then accept is one of the eight patched vulnerabilities. Two other vulnerabilities were rated as “critical” by the Firefox team. A critical rating [...]