Less than ten days after iOS 4.3.4 parachuted in to fix that nasty PDF exploit, Apple’s gone and dropped another. So what’ll Cupertino’s latest fix today? Build 8L1 — or 8E600 on 4.2.10 if you’re rocking CDMA — apparently nixes a vulnerability with “certificate validation,” or you know, Apple’s just really fond of keeping all you hackers on your toes. Either way, time to fire up iTunes, unless of course, you’re already living in the future.
Update: Turns out you can still (tether) jailbreak with redSn0w. Peep the more coverage link below.
Comex has dropped PDF Patcher 2 to patch PDF vulnerability that has been exposed by JailbreakMe 3.0. So, if you already have jailbroken your iDevice via JailbreakMe 3.0 then this is recommended to install PDF Patcher 2 on your iDevice to protect it from any malicious use of the exploit.
PDF Patcher 2 is available free through BigBoss repo in Cydia.
Verizon Android users have had 3G Skype calling since this time last year, but the latest app release — v126.96.36.1993 for those of you keeping tabs — brings 3G calling to the masses, without the need for a VZW-sanctioned app. The update also patches a rather significant security hole discovered last week, which could let third-party apps get hold of your personal information. We’re glad to see that’s no longer the case, and who’s going to object to free calling as part of the deal as well? Make sure your phone’s running Android 2.1 (2.2 for Galaxy S devices) [...]
Microsoft has posted Security Advisory 2219475 to guide the users for Windows XP and Server 2003 vulnerability in Windows Help and Support Center which could allow remote code execution, while the latest OSes as Windows Vista, Windows 7 and others are not reported for that vulnerability issue.
The Windows XP and 2003 Server vulnerability issue of Windows Help and Support Center function (helpctr.exe) was reported by Google researcher on 5 June 2010 and they made it public just within 4 days of report on 9 June 2010 by providing all details that how to exploit this vulnerability and according [...]
Opera has released Opera 10.53 just after the fresh release of Opera 10.52 which has some vulnerability issues. Opera 10.53 is available for Windows and Mac users and includes improvements in interface, new graphic library, Cocoa integration, HTML 5 video, SVG support etc.
Some Features of Opera 10.53 for Mac:
Ten times faster than the previous version
More responsive user interface
Improved finger navigation through track pad
Download Opera 10.53
Microsoft is planning a bumper Patch Tuesday tomorrow, with a total of 13 fixes. One of these will close a loophole that’s existed since the days of DOS.
In a blog posting, Jerry Bryant, Microsoft Senior Security Communications Manager, announced the 13 fixes will address a total 26 vulnerabilities. Five of the patches are deemed critical, seven important, and one moderate. 11 affect Windows, with the remaining two covering Office.
Bryant stated: “We are not aware of any attacks on these vulnerabilities and continue to encourage customers to implement the mitigations and workarounds [...]
On Monday, a set of software components that are shipped in a large variety of Microsoft products have been confirmed to have zero-day vulnerability. The vulnerability rests in Microsoft’s Office Web Components, which are used to publish things like databases, charts and spreadsheets on the web. The good news is that Microsoft is currently working on a patch but have yet to comment on when it will be released.
Dave Forstrom, who is a group manager and part of Microsoft’s Security Response Center, said in a blog post earlier “Specifically, the vulnerability exists in the Spreadsheet [...]