PREVIOUS GNEWS Patch 11 Patches 5 Critical Affecting
![Papers • [In]secure Magazine 25 • NIST Guide for PII](https://slidetodoc.com/presentation_image_h2/b54b078455ba1407d3e58328e746bc54/image-7.jpg "Papers • [In]secure Magazine 25 • NIST Guide for PII")
- Slides: 10
PREVIOUS GNEWS
Patch • • 11 Patches – 5 Critical Affecting most everything – – – • Tuesday MS 10 -018 - IE, Remote Execution – Out of Band Patch MS 10 -019 - Windows Could Allow, Remote Execution MS 10 -020 - SMB Client, Remote Execution MS 10 -021 - Windows Kernel, Privilege Escalation MS 10 -022 - VBScript, Remote Execution MS 10 -023 - Office Publisher, Remote Execution MS 10 -024 - Exchange and Windows SMTP Service, Do. S MS 10 -025 - Windows Media Services, Remote Execution MS 10 -026 - Microsoft MPEG Layer-3 Codecs, Remote Execution MS 10 -027 - Media Player, Remote Execution MS 10 -028 - Visio, Remote Execution MS 10 -029 - Windows ISATAP Component, Spoofing Other updates, MSRT, Defender Definitions, Junk Mail Filter
Holes / Patches • Oracle Patches Released – 47 critical patches • Adobe, 1 patche – APSB 10 -09 Adobe Reader and Acrobat – Install 9. 3. 2 • Apple, – – OSX 10. 6. 3 released Quick. Time 7. 6. 6 released i. Tunes 9. 1 released Air. Port Base Station 2010 -001 released • Browsers – Firefox, Chrome, Opera
Holes / Patches • MS virtual machine and doublespeak “There is no vulnerability introduced, just a loss of certain security protection mechanisms. ” But wait didn’t you just say…. . “First and foremost, customers should rest assured that this advisory does not affect the security of Windows 7 systems directly. The security safeguards (DEP, ASLR, Safe. SEH, etc. ) that are in place remain effective at helping protect users from malware on that system. In addition, Our Windows Server virtualization technology, Hyper-V, is also not affected by this advisory. Applications running inside a Hyper-V guest continue to benefit from these same security safeguards. ” • Core Security Technologies “A Core Security Exploit Writer working with Core. Labs, the research arm of Core Security Technologies, found that affected versions of Virtual PC hypervisor contain a vulnerability that may allow attackers to bypass several security mechanisms of the Windows operating system to compromise vulnerable virtualized systems. The issue may also transform a certain type of common software bug into exploitable vulnerabilities. Affected versions of the product include: Microsoft Virtual PC 2007, Virtual PC 2007 SP 1, Windows Virtual PC and Microsoft Virtual Server 2005. On Windows 7 the XP Mode feature is affected by the vulnerability. Microsoft Hyper-V technology is not affected by this problem. The issue was reported to Microsoft in August of 2009. The vendor indicated that it plans to solve the problem in future updates to the vulnerable products. “
Holes / Patches • ie o-day • Java – installing an alternate malicious library an attacker could compromise the machine. • Cisco – 15 patches released. – Unified Communications Do. S • VMWare – Do. S – VMnc codec – VMware Remote Console • Clam. AV bypass – Clam 0. 96 released
Hacking Disgruntled Austinian Do. S’ed 100+ cars Apache - XSS on issue tracking site exploited "If you are a user of the Apache-hosted JIRA, Bugzilla or Confluence, a hashed copy of your password has been compromised, “
Papers • [In]secure Magazine 25 • NIST Guide for PII
Updates skipfish 1. 31 b webappsec recon owasp codwcrawler 2. 5 webappsec code review tool vicnum 14 vulnerable app Webraider 0. 2. 3. 8 custom metasploit Sahi webappsec Pulledpork 0. 4. 0 snort rule manager / oinkmaster replacement stream armor ads tool
CON Events Can. Sec. West HITB Dubai Mar 24 Apr 19 Black. Hat Europe Apr 12 Notacon Apr 15 Toorcon Seatle Apr 18 THOTCON 0 x 1 Apr 23 rd – Sold Out Source Apr 24 Interop Vegas Apr 25
All images scavenged without permission
