Cybertelecom :: Vulnerabilities

Cybertelecom
Federal Internet Law & Policy
An Educational Project

Vulnerabilities

Navigation Links:

- Agencies
- Cryptography

Crimes Against Network
- Worms, Viruses, Attacks
- Hackers
- DOS
- Cyberwar
- Network Reliability
- Infrastructure Protection

Crimes Over Network
- CyberStalking
- Fraud
- - Auctions
- - Phishing
- Gambling
- Hoaxes
- ID Theft
- Offensive Words

Info Gathering
- Wiretaps
- CALEA
- ECPA
- FISA
- Forensics
- Carnivore
- Patriot Act
- Data Retention
- Safe Web Act

Emergency
- EAS
- Assessment
- Reliability
- Vulnerabilities

:: Home ::
:: Feedback ::
:: Disclaimer ::
:: Sitemap ::

A vulnerability is a flaw or weakness in the design or implementation of hardware, software, networks, or computer-based systems, including security procedures and controls associated with the systems. Vulnerabilities can be intentionally or unintentionally exploited to adversely affect an organization’s operations (including missions, functions, and public confidence), assets, or personnel. -- Federal Plan for Cyber Security and Information Assurance: Research and Development, NSTC p. 5 (April 2006)

Federal Activity

Mar. 3. House Commerce Committee Subcommittee on Oversight and Investigations hearing on "Cyber Insecurity at EPA: GAO Reports Agency Systems Vulnerable to Attack." 10:00 am in 2322 Rayburn House Office Building. Postponed

US CERT

Vulnerability information

Common Vulnerabilities and Exposures List (CVE) Search vulnerabilities by CVE name or browse the US-CERT list of vulnerabilities in CVE name order.
Open Vulnerability Assessment Language (OVAL) Identify vulnerabilities on your local systems using OVAL vulnerability definitions.

Papers

DOE Computer Vulnerabilities

Sendmail Vulnerability

Secretly Saving Sendmail, ABC 3/7/03
Sendmail, Beware, Internet News 3/3/03
Companies mobilize to patch Sendmail, CNET 3/3/03
Security flaw in major e-mail system discovered, Forbes 3/3/03
Bulletin: Major Internet vulnerability discovered in e-mail protocol, CW 3/3/03
Advisory 03-004." Remote Sendmail Header Processing Vulnerability" Common Vulnerabilities and Exposures (CVE) CAN-2002-1337, March 3, 2003" NIPC 3/3/03 http://www.nipc.gov/warnings/advisories/2003.htm, ZDNet 3/3/0

News

New Website Lists Validated Software Security Tools for Federal IT, NIST 2/7/2008
Web 2.0: Unsafe At Any Speed?, Internet News 2/11/2008
Critical TCP/IP Worm Hole Dings Windows Vista, eweek 1/9/2008
Wi-Fi Networks Face Virus Threat?, Internet News 1/8/2008
In-Flight Broadband Susceptible to Hacking - FAA report causes concern about security of Boeing flights, DSLreports 1/8/2008
US-CERT warns of flaw in latest RealPlayer, CW 1/3/2008
Researchers Warn of AJAX Security Risks, CW 8/8/2007
FTC Testifies on Potential Risks of Peer-to-Peer File Sharing, FTC 7/27/2007
Congress: P2P networks harm national security, CNET 7/27/2007
Rootkits: What They Are and How to Fight Them, CW 7/26/2007
Symantec Bats Botnets With New Tool, eweek 7/24/2007
FBI launches probe of new Internet virus, Hindustan Times 7/18/2007
Zombie Nation, Ecommerce Times 7/10/2007
Comcast DHCP Outage - Provisioning systems offline, Broadband Reports 11/14/2006
Mozilla Patches 'Critical' Bugs in Firefox, Thunderbird, eweek 11/8/2006
Old DoS vulnerability in Internet Explorer turns into giant hole, Heise Security 9/29/2006
Microsoft Confirms New Word Zero-Day Attack, eweek 9/2/2006
Microsoft Confirms New Word Zero-Day Attack, eweek 9/2/2006
MySpace faces security problems, BBc 7/21/2006
5 Steps to a Safer Wireless Network, BWO 7/21/2006
The Plot to Hijack Your Computer, BWO 7/21/2006
Banner Ads Launch Security Attacks, Ed Felton 7/21/2006
New Zero-day PowerPoint Attack Under Way, Internet Week 7/14/2006
U.S. Warns PC Users of Flaw in Windows, NYT 8/11/2006
ig holes in net's heart revealed, BBC 4/28/2006
CERT warns about new Microsoft vulnerability, InfoWorld 11/11/2003
Flash Has Security Hole, But Fix Is Offered, Internet Week 12/18/02
Microsoft Patches Three Security Problems, Including One Rated As Critical, Google 12/13/02
New flaws expose Net to attacks ZDNet 11/15/02
ISS blasted over disclosure of BIND flaws Sydney 11/15/02
Multiple Vulnerabilities in BIND CERT 11/15/02
So Many Holes, So Few Hacks, Wired 1/2/03
Broadband Users Lack Basic Security, Internet News 6/6/03
Fast and Present Danger: New Study Shows Majority of Broadband Users Lack Basic Online Protections, NCSA 6/6/03
Apache issues anti-DoS patch, ZDNet 4/4/03
Security Holes in RealPlayer, QuickTime, Internet World 4/4/03
Security glitch with SETI@home screensaver, Register 4/7/03
Databases Ripe for Attacks, eWeek 4/7/03
Security hole found in Linux, CNET 3/19/03
People are the biggest security risk, Register 3/19/03
Computer Risk Redefined After 'Zero-Day' Attack, Newsfactor 3/19/03
Security Flaws Found In ISC's DHCP, Internet News 1/17/03
How Vulnerable Is The Internet Now?, Newsfactor 2/10/03
How Vulnerable Is The Net? Newsfactor 11/3/02
Trojan Horse OpenSSH Distribution, CERT 8/2/02
CERT Warns Of Multiple SQL Flaws, Server Watch 7/31/02
Gov't Team Tackles Windows Security, FCW 5/10/02
PHP holes leave Web Services Open to Hackers, NWFusion 2/28/02
CERT Warns Of Solaris Exploit, Internet News 1/14/02
Computer security holes found at Commerce Dept., USAToday 8/3/01

Web services provided by

: Home : Federal Legislation : Contact Us : Webcasts :
: Sitemap : CyberTelecom-l: Disclaimer : Notes : Search :
: Newsletter & Discussion Group : RSS : About Us :..