PREVIOUS GNEWS Patch 10 Patches 34 Vulns 3

  • Slides: 10
Download presentation
PREVIOUS GNEWS

PREVIOUS GNEWS

Patch • • 10 Patches / 34 Vulns – 3 Critical Affecting Winodow (all

Patch • • 10 Patches / 34 Vulns – 3 Critical Affecting Winodow (all of them), Office, IE, Share. Point, . net – – – – – • Tuesday MS 10 -032 - Windows Kernel-Mode Drivers , Elevation of Privilege MS 10 -033 - Media Decompression , Remote Code Execution MS 10 -034 - Cumulative Security Update of Active. X Kill Bits MS 10 -035 - Cumulative Security Update for Internet Explorer MS 10 -036 - COM Validation in Microsoft Office, Remote Code Execution MS 10 -037 - Open. Type Compact Font Format (CFF) Driver, Elevation of Privilege MS 10 -038 – Microsoft Office Excel, emote Code Execution MS 10 -039 - Microsoft Share. Point, Elevation of Privilege MS 10 -040 - Internet Information Services, Remote Code Execution MS 10 -041 - Microsoft. NET Framework, Tampering Other updates, MSRT, Defender Definitions, Junk Mail Filter

Holes / Patches • Adobe, 3 patches – APSA 10 -01 Flash, Reader, Acrobat

Holes / Patches • Adobe, 3 patches – APSA 10 -01 Flash, Reader, Acrobat CS 4 – Flash RC is reported as patched. • Really do we need apsa and apsb? One name, one patch! • Apple, – Safari 4. 1 (mac 10. 4) – Safari 5. 0 (mac 10. 5+ and windows) – Java for Mac (10. 5+) • Cisco – 15 patches, multiple products – Cisco IOS with SIP, Remote Execution • Windows 7 / 2008 R 2 (disable aero) – Graphics driver cdd. dll, Remote Execuction • Browsers – Firefox, Chrome, Opera, Safari

Hacking / Holes • OBD-II (paper available, cars-oakland 2010. pdf) – It’s not just

Hacking / Holes • OBD-II (paper available, cars-oakland 2010. pdf) – It’s not just for diagnostics anymore – Change speedo read out, control brakes, …. • More Twitter Bot. Nets – Twitter. Net Builder • Web Server Bot. Net – Mass Do. S •

Corp. Hell • Facebook Registration, for better security • Symantec buys Verisign CA business

Corp. Hell • Facebook Registration, for better security • Symantec buys Verisign CA business • Duke University shuts down usenet • IBM promo usb, complete with virus • Invisible Things Lab to make new OS, Qubes OS • MSI switch to UEFI, death toll for BIOS? • Open Source DB Monitoring, or lack there of • Google Street View / Wi. Fi debacle

Papers Secure Hyper Visor OAKLAND 10. pdf NSA Declassification NSA-HGPEDC_1964. pdf EFF Browser Uniqeness

Papers Secure Hyper Visor OAKLAND 10. pdf NSA Declassification NSA-HGPEDC_1964. pdf EFF Browser Uniqeness browser-uniqueness. pdf

Film / Music Dr. Demento goes off the air. Lime. Wire to shut down

Film / Music Dr. Demento goes off the air. Lime. Wire to shut down

Updates metasploitable vuln os metasploit 3. 4 Ruby nmap parser oh noz madhat mobile

Updates metasploitable vuln os metasploit 3. 4 Ruby nmap parser oh noz madhat mobile malware

CON Events Social Engineering Capture the Flag

CON Events Social Engineering Capture the Flag

All images scavenged without permission

All images scavenged without permission

PREVIOUS GNEWS Patch 16 Patches 49 Vulns 4PREVIOUS GNEWS Patch 16 Patches 49 Vulns 4
PREVIOUS GNEWS Patch Tuesday 2 Patches 3 VulnsPREVIOUS GNEWS Patch Tuesday 2 Patches 3 Vulns
PREVIOUS GNEWS Patch Tuesday 6 Patches 4 CriticalPREVIOUS GNEWS Patch Tuesday 6 Patches 4 Critical
PREVIOUS GNEWS Patch Tuesday Mar 18 Patches 9PREVIOUS GNEWS Patch Tuesday Mar 18 Patches 9
PREVIOUS GNEWS Patch 7 Patches 11 bugs addressedPREVIOUS GNEWS Patch 7 Patches 11 bugs addressed
PREVIOUS GNEWS Patch New Format 10 Patches originallyPREVIOUS GNEWS Patch New Format 10 Patches originally
PREVIOUS GNEWS Patch Tuesday Patches Critical CVEs AffectedPREVIOUS GNEWS Patch Tuesday Patches Critical CVEs Affected
PREVIOUS GNEWS Patch 4 Patches 9 bugs addressedPREVIOUS GNEWS Patch 4 Patches 9 bugs addressed
PREVIOUS GNEWS Patch 4 Patches 2 bugs addressedPREVIOUS GNEWS Patch 4 Patches 2 bugs addressed