“Dyad Security on Tuesday warned of a so-called “format string vulnerability” in Webmin, a Web-based administration utility written in Perl. An attacker could gain complete control over a server running the vulnerable software by exploiting this “new class” of flaw, the security research company said in an advisory. “If remote code execution is successful, it would lead to a full remote root compromise in a standard configuration,” according to the advisory. ”Here is some more Tech News from around the web:
Tech Talk
- Sun plugs serious holes in Java @ CNET
- Apple releases OS X security patches @ CNET
- “Moving a Beginner to Linux” @ XYZ Computing
- Installing Microsoft Windows XP for beginners @ A1 Electronics
- Win one of ten Intel dual core bundles @ HEXUS
- December XFX 7800GT Giveaway @ Bjorn3D
- Reason Why Vendors Don’t Sell AMD Products @ CoolTechZone.com
- ASUS Delays AGEIA PhysX Expansion Card @ CoolTechZone.com
- Nintendo Revolution to be released May 9, 2006 @ DataFuse.net
- Topcom Butler 4012 VOIP/Dect phone @ Rbmods
- Firefox Tweak Guide Updated @ TweakGuides.com
There’s good news, and there’s bad news
First, the bad news. CNet is reporting on a flaw in PERL which could lead to an attacker getting control over a server. Not only that, but Java has been patched, and so has OS-X. On the other hand, chances are that all 3 vulnerabilities won’t be affecting you, and also Mozilla 1.5 is out!