Microsoft

Security news roundup: October 8, 2007

Here is a collection of recent news stories posted on TechRepublic's IT Security blog, which cover SQL Power Injector 1.2, Patch Tuesday, and much more.

Here is a collection of recent news stories posted on TechRepublic's IT Security blog, where you'll find pertinent IT news as well as insightful and thought-provoking analysis of security topics from Chad Perrin and other authors.

Version 1.2 of SQL Power Injector was released late last week. SQL Power Injector is a graphical application created using the .NET Framework. As its name suggests, it helps the penetrating tester inject SQL commands on a Web page.

Eleven vulnerabilities across Windows, Linux, and Solaris-based versions of its JRE (Java Runtime Environment) and Java Web have been patched by Sun. This includes several flaws rated as "highly critical" by outside researchers.

Spammers are abusing the "Invite Your Friends" system to send out "massive quantities of spam," according to content security outfit Marshall.

Microsoft has announced that there will be seven security bulletins come October's Patch Tuesday on October 9, 2007. Four of the seven are rated "critical."

The Spanish security firm Pentest has discovered 10 buffer overflows in different applications in Check Point's flagship Firewall-1 security software.

Apple has finally updated the Windows version of QuickTime to fix a 13-month-old flaw that affects Windows XP and Windows Vista.

About Paul Mah

Paul Mah is a writer and blogger who lives in Singapore, where he has worked for a number of years in various capacities within the IT industry. Paul enjoys tinkering with tech gadgets, smartphones, and networking devices.

Editor's Picks

Free Newsletters, In your Inbox