New IE Thread crashes by WU

Secure Target Network (Security Advisory December 31, 2003) Topic: New IE Thread crashes by WU Discovery Date: December 30, 2003 Original Advisory External: Full-Disclosure Affected applications and platforms: Microsoft Internet Explorer 6 Service Pack 1 Introduction: Any time you open your Windows Update (WU / wupdmgr.exe) and go to “Scan for Updates”; it takes a… Continue reading New IE Thread crashes by WU

Microsoft Outlook PST Exposure

Secure Target Network (Security Advisory August 31, 2003) Topic: Microsoft Outlook PST Exposure Discovery Date: August 28, 2003 Original Advisory External: Zone-h, Security Tracker, openwall, Full-Disclosure Affected applications and platforms: All versions of Outlook on any Windows platform Introduction: everyone work with .pst files, storing and managing his/her Outlook Data transparently under Microsoft Outlook. A… Continue reading Microsoft Outlook PST Exposure

Recycle Bin Unavailability of Service

Secure Target Network (Security Advisory July 24, 2003) Topic: Recycle Bin Unavailability of Service Discovery Date: July 24, 2003Original Advisory External: VulnDiscuss, List, openwall —–BEGIN PGP SIGNED MESSAGE—– Hash: SHA1 Secure Target Network (Security Advisory August 04, 2003) Topic: Recycle Bin Unavailability of Service Discovery date: July 24, 2003 Affected applications and platforms: Windows XP… Continue reading Recycle Bin Unavailability of Service

OE DBX Exposure

Secure Target Network (Security Advisory October 27, 2002) Topic: OE DBX Exposure Discovery date: October 02, 2002 Discovered by: Kaveh Mofidi External: Security Tracker, Bugtraq, Secunia Affected applications and platforms: All versions of Outlook Express on any Windows platform Introduction You already worked with .dbx files, storing and managing your messages under OE. A default… Continue reading OE DBX Exposure

New Vulnerability Disclosure Policy

Effective today March 20, 2002, SECURE TARGET will be following a new policy in regards to the disclosure of vulnerability information: All vulnerabilities discovered by SECURE TARGET or any member of the entity including myself shall will be kept private during discovery and even after initial submission to vendors, unless otherwise explicitly considered harmless with… Continue reading New Vulnerability Disclosure Policy