PC Tools Spyware Doctor 7.0.0.514 [Multi]

Spyware Doctor is a utility that detects and, if you buy, remove any spyware.
Spyware Doctor also allows immunize your system against known infections as well as activate a real-time protection as often do the antivirus. Takes care of this OnGuard, which monitors constantly, even in the trial version, to prevent new infections. PC Tools Spyware Doctor has a utility to scan your PC and know well you're infected with spyware or not. To remove it you need to register Spyware Doctor.

Free Download:

Download Link:

LockThis!, Protect your programs

LockThis! is a simple tool that allows you to password protect programs you have open. It protects the implementation of programs, but should prevent others can maximize the windows of your applications.

Thus, if you to provide your PC and do not want the other person see what you're doing, just have to minimize windows in which you're working. If you try to maximize a window protected LockThis! intervene and request the password you've set.

It's a very basic protection. In fact, they warn that developers do not trust very sensitive data. But if we look for something too sophisticated and only want to prevent others from viewing the web pages we are sailing, LockThis! We can be very useful.

Internet Explorer 6 and 7 vulnerable

If a few days ago Microsoft published a security advisory to warn users about a security flaw in Windows 7, now doing the same but to confirm a critical vulnerability affecting Internet Explorer 6 and 7.

The vulnerability in question was caused by a problem in Microsoft HTML Viewer (mshtml.dll) to process certain CSS objects, and this can be exploited by an attacker to execute code and take
control of your computer. For now it is not reported that this vulnerability is being actively
exploited.

As published a solution for this problem in the browser configuration is recommended to
increase the security level for the Internet zone. In addition, the mode of security
protection that incorporates Internet Explorer 7 on Windows Vista can help reduce the impact
of an attack.
Every month Microsoft releases a series of updates, and things are going, it seems that
December will come loaded with some patches, and inform them.

Eleven security bulletins for Mozilla Firefox

The Mozilla Foundation has published eleven security bulletins to fix various vulnerabilities in Mozilla Firefox which could be exploited by a remote attacker to manipulate or disclose sensitive information, bypass security restrictions or compromise a vulnerable system.

Below are the published vulnerabilities:
The first problem lies in a flaw in the way Firefox handles the history of forms. This vulnerability could allow a remote attacker to steal stored data and cause the browser to automatically fill in forms via a specially crafted web page. Another error occurs in the way Firefox appointing temporary files download. A local attacker could exploit this issue to execute arbitrary code via a change of contents of the temporary files download.

Creating Web recursive-workers in JavaScript can be used to create a set of objects whose memory can be released prior to use. These conditions usually result in a denial of service, which could potentially allow an attacker to arbitrary code execution. Multiple vulnerabilities are due to the way Firefox processes the wrong web content, a remote attacker could cause a denial of service and potentially execute arbitrary code via a specially crafted web page.

Another bulletin is a bug in the GIF image processing of Firefox that could cause an overflow of heap memory. A remote attacker could exploit this issue to cause a denial of service and potentially execute arbitrary code via a specially crafted GIF image.

Another error occurs in the fixed conversion routines floating point string to Firefox, which could overflow a heap-based memory. A remote attacker could exploit this issue to cause a denial of service and potentially execute arbitrary code with the permissions of the user through a web page with Javascript, specially crafted code.

Another bulletin refers to an error in the way Firefox handles text selection. A remote attacker could exploit this issue to see the user selected text from a different domain via a specially crafted website. An error occurs in the way Firefox displays the name when you download a file, which would show a different name in the title bar and body dialogue. A remote attacker could perform an attack by man in the middle and execute arbitrary code via a specially crafted file.

Mozilla has also updated several third-party libraries to correct failures in the treatment of memory and stability bugs.

We recommend you upgrade to Mozilla Firefox 3.5.4 or 3.0.15 versions:
http://www.mozilla.com/firefox/

Java Runtime Environment 1.6.0.17. actualizen Now!

To date, the Java platform has attracted more than 6.5 million software developers. It is used in major industrial sectors worldwide and is present in a large number of devices, computers and networks. The versatility and efficiency of Java technology, the platform portability and security it provides, has made it the ideal technology for network computing. From laptops to datacenters, game consoles to scientific supercomputers, cell phone Internet, Java is everywhere.
Over 4,500 million devices using Java technology, including:

* More than 800 million computers
* 2,100 million mobile phones and other handheld devices (source: Ovum)
* 3,500 million smart cards
* Tuners, printers, web cams, games, car navigation systems, lottery terminals, medical devices, cash payment in parking and more.

I recommend that you upgrade to this version because, as he usually does Java has many errors and bulnerablilidades. And as you know the bulnerabilidades let in viruses, so that update as soon as possible, or at least uninstall old versions. Oh almost forgot, do not install the new version without uninstalling the old one, because both versions are installed, and has

filled the bone and is a danger .....

Java Runtime Environment 1.6.0.17:

Tomcat Insecure Installation under Windows

The Windows installer for Tomcat leave the password blank for the administrative user of the application, which can result in serious security problem for those who have installed Tomcat under Windows with the installer. Affected versions are 5.5.0 to 5.5.28 Tomcat 6.0.0 to 6.0.20 and, although they are no longer supported may also be affected.

The ruling is that the Windows intalled leave the password blank and is not changed after the installation process. The admin user is admin and manager roles, which has full powers over Tomcat. Users who have installed Tomcat directly from a zip or tar.gz file are not affected. You can remove the user configuration file tomcat-users.xml after installation to be unaffected by the problem or provide the same file a strong password. This error will be corrected in forthcoming publications 6.0.x, 5.5.x.


Windows distribution vulnerability
http://markmail.org/thread/wfu4nff5chvkb6xp

Apache Tomcat Security Updates
http://tomcat.apache.org/security.html

Mac OS X 10.6.2 Available: fixes multiple security issues

Apple has released the 10.6.2 update of Mac OS X. This version also introduce various stability improvements and compatibility in Snow Leopard, is responsible for close numerous security vulnerabilities, including a serious flaw that causes the loss of information when logged on as guest.
It has also solved another problem known which allows an attacker to modify the firmware on Apple keyboards.
This can be exploited to install a program capable of recording keystrokes (keylogger). Mac OS X 10.6.2 is only available for Snow Leopard. However, in Mac OS X 10.5 also have closed the same vulnerabilities with the release of Security Update 2009-006. So regardless if you are user of "Leopard" or "Snow Leopard" it's time to upgrade.

link : Security Update 2009-006 / Mac OS X v10.6.2

Denial of Service Vulnerability in Linksys WAP4400N

It has reported a vulnerability to denial of service in wireless access points WAP4400N Linksys (Wireless Access Point).The problem is due to an error when trying Association requests poorly constructed, which could result in the device is
rebooted or becomes blocked causing unusable wireless network with the consequent denial of service condition.It has released firmware version 1.2.19 to correct this problem.

More Information:

Links:

Unite with Opera 10.10

Today has released a new version of Opera browser, which apparently counts for almost anyone (and unfortunately its share of use proves it) but has a performance very good, especially in speed and low memory consumption.

Of course, these features are retained in the version 1010 and also adds Unite, a feature that lets you create a content server easily from your browser Opera.

Along with Unite, the 10/10 version includes enhancements like Turbo Opera, Opera Mail, Opera Dragonfly, Opera Link, a BitTorrent download manager, etc ... As in previous versions you can download Opera for Windows / Mac / Linux and in different languages.

Link | Opera

Link | List of features