Microsoft released “Out Of Band” IE Update

blog — Tags: , , , , — anon @ 10/03 4:14 pm

Microsoft has released a new patch for Internet Explorer. According to the Microsoft Security Advisory, the reason for the out-of-band release was that the vulnerability described in CVE-2010-0806, “Uninitilized Memory Corruption Vulnerability”, was being widely seen in the wild.

On March 10th the exploit was added to the MetaSploit Framework, and instructions on how to use the exploit immediately being spread on many hacker boards. It was first seen on the replacement for Milw0rm, XpltDB: Exploit-DB.com.

You can find some more info at Gary Warner’s blog (from where I got the news) or at Rec-Sec.com.

(more…)

Energizer DUO: Trojan yourself for only $19.99

blog — Tags: , , , , — anon @ 10/03 8:18 pm

From CyberCrime & Doing Time:

The Energizer DUO, a USB-powered battery recharger, was confirmed on Friday by Energizer Holdings to contain malicious code. According to this Energizer Press Release, they were notified by the CERT Coordination Center that the Windows software that ships with their DUO Charger “contains a vulnerability”.

(more…)

BIND Dynamic Update DoS

blog — Tags: , , — anon @ 09/07 1:15 pm

A BIND denial of service (server crash) exploit was found in the wild. Upgrade immediately.

This vulnerability affects all servers that are masters for one or more zones – it is not limited to those that are configured to allow dynamic updates. Access controls will not provide an effective workaround.

More details at ISC.

Green Dam URL Processing Buffer Overflow Exploit

blog — Tags: , , — anon @ 09/06 4:10 pm

Found at rec-sec.com:

As of June 1st, the Chinese government demands every personal computer in China to install or be sold with Green Dam Youth Escort Censorware program. Three security researchers – Scott Wolchok, Randy Yao, and J. Alex Halderman from University of Michigan have released an analysis of the Green Dam Censorware system, disclosing multiple vulnerabilities and weaknesses in it. You can read the whole story in the ZDNet Zero Day blog.

The vendor, Jinhui Computer System Engineering Ltd., already patched the vulnerabilities but you can still find vulnerable installations with Google if you want to test it.

One of the vulnerabilities disclosed in the security analysis is a remotely exploitable stack-based buffer overflow vulnerability in the way Green Dam process overly long URLs (OSVDB 55126). seer[N.N.U] posted a simple exploit for this vulnerability on milw0rm.

According to the latest Microsoft Security Intelligence Report, China is the world leading country in Malware distribution so I guess they deserve some pwning :P

Windows Vista UAC

blog — Tags: , , — anon @ 08/12 3:53 pm

Well, while working with Windows Vista on my company laptop I always get the UAC dialog. When first “touching” Vista I never thought that I’ll ever getting used to it. But in fact if you’re working up to 10 hours a day with it you’re definitely get somehow used to it.

But just using it is not the same than developing applications that make use of it! Anyway I was not suprised that I quickly found lots of articles that let you disable the UAC feature in Vista.

This may be suitable for users but NOT for developers. We’re still have to mess around with UAC and the whole technology behind that.

A real good source of information is The Moth. Daniel Moth is a former MVP that now works at Microsoft. He collected a lot of useful information in his blog that can help you understand UAC.

When developing an application that uses a certain kind of functionality that requires administrative privileges you’ll have to decide if you want to elevate the whole application or if you want to refactor that functionality by cutting it off from the main application and to externalize it in a seperate process. In this case you’ll need some extra coding in your software.

(more…)

Open Root Server Network shutdown

blog — Tags: , — anon @ 08/10 10:59 pm

The Open Root Server Network (ORSN) team decided to shutdown the project by 2008/12/31 00:00 (UTC). The ORSN operates since 2002 an alternative network for the Domain Name System (DNS) that in contrast to the official root servers ICANN and IANA had early IPv6 support.

Although in the course of the discussion about the DNS Safety DNSSEC it gets quite clear that such an alternative is neccessary.

Visit http://european.ch.orsn.net for more info.

Windows Vista access rights

blog — Tags: , , — anon @ 08/09 12:51 pm

I maintain several systems for almost nine years now. I’m often confronted with problems that users cause only by themselves. The following scenario was a bit challenging though.

A user created an administrator account on a Windows Vista (x32) system. After that he noticed that the new account has (by nature) full access to his private files etc. He opened the folder properties and detracted all access rights from the administrator account. So far, so good. But something went wrong…

(more…)

copyright © 2008-2010 datenkompost.de/blog - barecity derivative | imprint
* a title remix inspired by a popular german book