Microsoft has released an out of band security patch (MS09-034) to fix remote exploits in Internet Explorer. This security update is rated Critical for the following versions of Internet Explorer: Internet Explorer 5.01, running on... More...

Update: Microsoft is now sending the workaround message for this bug if you check for solutions to problem reports. Thanks to Saarineames for pointing it out. Mary Jo reports... More...

Microsoft has confirmed that the unpatched bug in Internet Explorer 7 (IE7) that hackers are now exploiting also exists in older versions of the browser, including the still-widely-used IE6. It adds IE6 and IE8 Beta... More...

Security researchers took 2 hours to reverse engineer yesterdays release of a critical patch for the Windows operating system. According to The New York Times, developers of the Immunity security testing tool wrote an exploit... More...

The appearance and disappearance of a Windows XP installation snafu indicates that Microsoft patched a critical vulnerability in XP's still-unfinished Service Pack 3 (SP3) weeks before it fixed any other version of Windows. The glitch,... More...

Only Windows XP SP3 -- that's right, SP3 -- is safe. Hackers are trying to exploit a critical Windows vulnerability just patched on Tuesday, security researchers said this afternoon -- and the only version of... More...

Microsoft is gearing up to release 12 security bulletins Tuesday that will include patches for critical vulnerabilities in Office, Windows, Internet Explorer, VBScript, JScript and Visual Basic. The updates, which will come in Microsoft's monthly... More...

Microsoft plans to issue two security patches next Tuesday, one of which earns the dreaded rating of critical, in this year's first edition of its regular Patch Tuesday update cycle. The critical update covers a... More...

A hacker has released attack code that could be used to exploit a critical bug in some versions of the Windows operating system. Microsoft patched the flaw, which affects older versions of Windows, on Oct.... More...

Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution (936227) This critical security update resolves a privately reported vulnerability. This vulnerability could allow remote code execution if a user viewed a specially... More...

An exploit that attacks a critical Microsoft Agent vulnerability was published less than 24 hours after Microsoft released a relevant security advisory in its Sept. 11 Patch Tuesday set of releases. The security advisory for... More...

A bug in the way Norton AntiVirus software uses the ActiveX programming language could cause serious problems for users of Symantec's products. On Thursday, Symantec patched the flaw warning that a bug in two ActiveX... More...

Microsoft has announced plans to issue four "critical" security bulletins next week that address vulnerabilities in Windows, Internet Explorer, Outlook Express and Windows Mail in Vista. "Critical" is the most severe ranking Microsoft assigns to... More...

Yahoo is working on a patch for critical Yahoo Messenger vulnerabilities that could enable a remote hacker to take control of a user's system. eEye Digital Security's researchers found the bugs within the last few... More...

The U.S. Computer Emergency Response Team is reporting a network evasion technique that uses full-width and half-width unicode characters to allow malware to evade detection by an intrusion prevention system or firewall. The vulnerability concerns... More...

The latest Month of Bugs project, Month of ActiveX Bugs (MoAxB) started up on May 1 and has already found two critical flaws. First off, Microsoft's ActiveX controls, used to make Web pages richer and... More...

A critical vulnerability discovered in Apple Computer Inc.'s Mac OS X could be exploited remotely by an attacker to compromise a user's system. Danish vulnerability clearinghouse Secunia rated the flaw highly critical because it can... More...

A fully working exploit for a high-risk vulnerability fixed by Microsoft two days ago has been put into limited release, prompting new "patch now" warnings from computer security experts. The exploit, which allows PC takeover... More...

A patch has been widely released for a vulnerability in the OpenOffice.org productivity suite, a problem rated as "highly critical" by one security vendor. The flaw could be exploited by creating a malicious file in... More...

Proof-of-concept code that exploits a critical bug in Windows Media Player has gone public, Microsoft Corp. warned users late Thursday. A vulnerability in Media Player 9 and 10 can be used by attackers to grab... More...

Microsoft plans to issue nearly a dozen security patches on Tuesday, including critical fixes for Windows and Office. It will release six updates for the operating system and four for the office suite, according an... More...

Microsoft's Internet Explorer isn't the only Web browser with serious security issues. Mozilla on Sept. 15 shipped a "highly critical" Firefox update to correct a range of security flaws that could lead to security bypass,... More...

Microsoft plans to release a "critical" security update for Office next week, one of three bulletins it will distribute as part of its monthly patch cycle.The other two updates are for Windows and are rated... More...

Security vulnerability discoveries were reported last February to D-Link and surprisingly they still have not been fixed yet! The vulnerability allows remote code to be executed through the routersfirmware potentially leaving affected customers vulnerable to... More...

Microsoft have today admitted that they have received reports of a brand new vulnerability affecting all versions of Microsoft Excel. Mike Reavey (security program manager) posted to the companys blog today explaining that users need... More...

Affected products include Norton AntiVirus and Symantec Corporate AntiVirus. Symantec Corp.'s leading antivirus software, which protects some of the world's largest corporations and U.S. government agencies, suffers from a flaw that lets hackers seize control... More...

Security experts are warning of a critical vulnerability affecting users of Microsoft Word XP and Word 2003. To quote the SANS Internet Storm Center report: Quote - Emails were sent to... More...

This ISO-9660 CD image file contains all security and critical updates for Windows released on Windows Update on February 14th, 2006. This does not contain security updates for other Microsoft products. This CD image is... More...

This ISO-9660 CD image file contains all security and critical updates for Windows released on Windows Update on January 5th and January 10th, 2006. This does not contain security updates for other Microsoft products. This... More...

A Microsoft representative has responded to allegations surrounding the closure of a popular Chinese blog, confirming that the company did take the blog offline on New Years Eve. Hosted on MSN... More...

Security experts are warning Internet users to be careful where they click, thanks to a nasty unpatched bug in the way Microsoft Corp.'s Internet Explorer browser handles the JavaScript computer language. The bug is of... More...

A Microsoft patch meant to fix critical security flaws in Windows 2000, Windows XP and Windows Server 2003 is causing trouble for some users, the company said Friday. The patch was released... More...

Another flaw has been posted to Secunia, a trend for the past few days at least, to show that the Mozilla 'honeymoon' is over and that it's browser is as vulnerable as any other popular... More...

FrSIRT have identified a critical vulnerability with Internet Explorer 6 for Windows XP SP1 and SP2. The problem could be exploited by remote attackers to execute arbitrary commands. The issue is due... More...

Thanks GameGuy21 and matthelmi for this. According to the article on eWeek, a new critical vulnerability, where an attacker could execute arbitary code, has been discovered on the latest version of Winamp. One can only... More...

After you install the MS04-032 Security Update for Windows (KB840987) on a computer running either Windows XP or Windows XP with Service Pack 1 and then try to run an Open MG compliant music software,... More...

This update resolves a compatibility issue with a non-Microsoft software application installed on your computer. This application prevents successful installation of Windows XP Service Packs, critical security updates and other system file updates. This update... More...

After releasing their much awaited preview release of Firefox 1.0, the Mozilla Foundation has issued a warning about seven critical security issues with three of its flagship products. Any product versions prior... More...

This non-security critical update helps resolve an issue where a limited number of systems running a BIOS without production support for Intel Pentium 4 and Intel Celeron D processors based on Prescott C-0 stepping can... More...

A vulnerability has been reported in Winamp, which can be exploited by malicious people to compromise a user's system. The problem is caused due to insufficient restrictions on Winamp skin zip files (.wsz).... More...

Security firm Secunia has detailed a new flaw in Internet Explorer that affects users running Windows XP Service Pack 2. The vulnerability involves drag-and-drop, which can be used within a Web page to place a... More...

German Internet security experts Heise Security have discovered what it calls two "flaws" in Service Pack 2. Microsoft has said its Service Pack 2 offers users the latest security "innovations," but Internet security experts said... More...

Ryan McGeehan of TheBillyGoatCurse.com has reported a vulnerability in AOL Instant Messenger (AIM), which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a... More...

Tomorrow Microsoft and the European Union will meet with an appeal judge to see if the sanctions imposed against Microsoft should be suspended. The European Union already fined Microsoft $613 million dollars, and added... More...

Is your slow internet connection preventing next-generation consoles from reaching their full potential? According to Kaz Hirai Sony Computer Entertainment America president it is. He feels that it's necessary that broadband needs to... More...

A security researcher warned Tuesday of a "critical" flaw in a widely used piece of game software that could let attackers take over vulnerable PCs. Security company Secunia issued a bulletin warning... More...

RealNetworks has patched two highly critical holes in its media player. The bugs could allow an attacker to run malicious code by directing users to a specially-crafted Web page, via an email message for example,... More...

Looks like Oracle has a few more problems to worry about, other than its current court trials. A SQL bug allows any attacker to take over a database, application, or even execute SQL statements.... More...

A big thanks goes out to The Inquirer for spotting this news first. Two new vulnerabilities where found in Internet Explorer yesterday according to the security website Secunia. A solution has been found,... More...

A critical vulnerability has been discovered in RealPlayer, the software widely used to play media files on various operating systems. The flaw, in default installations of the software, would allow malicious code to be... More...