Opera before 9.26 allows user-assisted remote attackers to read arbitrary files by tricking a user into typing the characters of the target filename into a file input.

Read More…
Source: National Vulnerability Database

Opera before 9.26 allows user-assisted remote attackers to execute arbitrary script via images that contain custom comments, which are treated as script when the user displays the image properties.

Read More…
Source: National Vulnerability Database

Opera before 9.26 allows remote attackers to “bypass sanitization filters” and conduct cross-site scripting (XSS) attacks via crafted attribute values in an XML document, which are not properly handled during DOM presentation.

Read More…
Source: National Vulnerability Database

Symantec Backup Exec Scheduler ActiveX Control Multiple Stack Based Buffer Overflow Vulnerabilities

Read More…
Source: Security Focus

Learn2 STRunner ‘iestm32.dll’ ActiveX Control Multiple Buffer Overflow Vulnerabilities

Read More…
Source: Security Focus

Mobile devices that allow users to connect with friends, family, and the world via the Internet are commonplace. But how secure are the browsers users are installing on their handhelds? Should they be reading the fine print? In one case, the answer is definitely yes.

Read More…
Source: Network and Infrastructure Blogs

Mozilla is in informal talks with mobile operators about its mobile Firefox project, which the organization hopes will shake up the market as much as the introduction of the desktop browser did in 2004.

Read More…
Source: Network World

Cenzic released its Application Security Trend Report for Q4 2007. This report includes a consolidation of findings for all of 2007, along with the Top 10 Web application vulnerabilities highlighted f…

Read More…
Source: HelpNetSecurity

If you’re using Apple’s Safari browser, PayPal has some advice for you: Drop it, at least if you want to avoid online fraud. …continue reading ‘Apple’s Safari lags in security features, PayPal warns’

Read More…
Source: IT World

Mozilla is in informal talks with mobile operators about its mobile Firefox project, which the organization hopes will shake up the market as much as the introduction of the desktop browser did in 2004. “Mozilla's mission is to break open a closed market,” said Mike Schroepfer, Mozilla's vice president of engineering, during a visit to London earlier this week. But “it won't happen overnight.” The impact, however, will be felt before year's end. By then, Mozilla is aiming to release a mobile browser for two operating systems: embedded Linux and Microsoft's Windows Mobile. At this point, operators and carriers “want to know how much it will cost,” Schroepfer said. That's an easy answer: mobile Firefox will be free, Schroepfer said. View: The full story @ InfoWorld Read full story…

Read More…
Source: Neowin.net