Sun security updates

Published: 2010-11-29. Last Updated: 2010-11-29 20:43:19 UTC
by Stephen Hall (Version: 1)
0 comment(s)

Just in case you missed this on Friday, Sun have released details of three vulnerabilities with Solaris components:

  • PERL 5.8 - Safe Perl Modules (safe.pm) - Covers CVE-2010-1168
  • Apache - Apache Portable Runtime utility library - Covers CVE-2010-1623
  • BZIP2 - Interger Overflow vulnerability - Covers CVE-2010-0405

All patches available via sunsolve.

Steve Hall

ISC Handler

Keywords: patches solaris
0 comment(s)

iPhone phishing - What you see, isn't what you get

Published: 2010-11-29. Last Updated: 2010-11-29 20:34:42 UTC
by Stephen Hall (Version: 1)
4 comment(s)

Across at our sister site, the SANS Security Institute the Application Security Street Fighter Blog brings us proof that what you see, isn't what you get. Or at least with the latest in phishing techniques on a mobile platform.

With many financials pushing to have their customers able to access their accounts via mobile devices, they should be away of this technique for spoofing site identification. The threat? The URI bar at the top of the browser page. Fair game it would appear.  

Steve Hall

ISC Handler

Keywords: iphone phishing
4 comment(s)

Comments

Login here to join the discussion.


Diary Archives