PREVIOUS GNEWS Patch 16 Patches 49 Vulns 4

  • Slides: 9
Download presentation
PREVIOUS GNEWS

PREVIOUS GNEWS

Patch • • 16 Patches / 49 Vulns – 4 Critical Affecting most everything

Patch • • 16 Patches / 49 Vulns – 4 Critical Affecting most everything – – – – • Tuesday MS 10 -071 - Cumulative Security Update for Internet Explorer MS 10 -072 - Safe. HTML , Could Allow Information Disclosure MS 10 -073 - Windows Kernel-Mode Drivers, Elevation of Privilege MS 10 -074 - Microsoft Foundation Classes, Remote Code Execution MS 10 -075 - Media Player Network Sharing Service, Remote Code Execution MS 10 -076 - Embedded Open. Type Font Engine, Remote Code Execution MS 10 -077 -. NET Framework, Remote Code Execution MS 10 -078 - Open. Type Font (OTF) Format Driver, Elevation of Privilege MS 10 -079 - Microsoft Word, Remote Code Execution MS 10 -080 - Microsoft Excel, Remote Code Execution MS 10 -081 - Windows Common Control Library, Remote Code Execution MS 10 -082 - Windows Media Player, Remote Code Execution MS 10 -083 - COM Validation in Windows Shell and Word. Pad, Remote Code Execution MS 10 -084 - Windows Local Procedure Call, Elevation of Privilege MS 10 -085 - SChannel, Denial of Service (2207566) MS 10 -086 - Windows Shared Cluster Disks, Tampering Other updates, MSRT, Defender Definitions, Junk Mail Filter

Holes / Patches • Oracle, 85 patches • Adobe, 3 patches (23 holes in

Holes / Patches • Oracle, 85 patches • Adobe, 3 patches (23 holes in Reader) – APSB 10 -21 Adobe Reader and Acrobat – APSB 10 -22 Adobe Flash Player – APSA 10 -03 Flash Player • Apple, – Security Update 2010 -006 – Quick. Time 7. 6. 8 • Cisco – 14 patches, multiple products – NTP and SSLVPN, Do. S – Multiple issues with H. 323 • Browsers – YES

Corp. Hell • Apple patents parental controls • Apple trademarks “there’s an app for

Corp. Hell • Apple patents parental controls • Apple trademarks “there’s an app for that”

Papers Hakin 9 is out (email, ipv 6, voip) (IN)Secure Magazine #27 is out

Papers Hakin 9 is out (email, ipv 6, voip) (IN)Secure Magazine #27 is out

Updates OWSP ZAP (Zed Attack Proxy) A fork of Paros Proxy

Updates OWSP ZAP (Zed Attack Proxy) A fork of Paros Proxy

Past Cons Gfirst 6 presentations posted (Aug 2010) http: //www. us-cert. gov/GFIRST/presentations. html Lite

Past Cons Gfirst 6 presentations posted (Aug 2010) http: //www. us-cert. gov/GFIRST/presentations. html Lite coverage of HITB http: //www. themalaysianinsider. com/features/article/securing-the-future/

Con Toor. Con San Diego CA 20 – 22 Oct 2010 Day. Con Dayton,

Con Toor. Con San Diego CA 20 – 22 Oct 2010 Day. Con Dayton, OH 22 – 23 Oct 2010 Sec. Toronto CA 25 – 27 Oct 2010 B-Sides Dallas, TX 6 Nov 2010

All images scavenged without permission

All images scavenged without permission

PREVIOUS GNEWS Patch 10 Patches 34 Vulns 3PREVIOUS GNEWS Patch 10 Patches 34 Vulns 3
PREVIOUS GNEWS Patch Tuesday 2 Patches 3 VulnsPREVIOUS GNEWS Patch Tuesday 2 Patches 3 Vulns
PREVIOUS GNEWS Patch Tuesday 6 Patches 4 CriticalPREVIOUS GNEWS Patch Tuesday 6 Patches 4 Critical
PREVIOUS GNEWS Patch Tuesday Mar 18 Patches 9PREVIOUS GNEWS Patch Tuesday Mar 18 Patches 9
PREVIOUS GNEWS Patch 7 Patches 11 bugs addressedPREVIOUS GNEWS Patch 7 Patches 11 bugs addressed
PREVIOUS GNEWS Patch New Format 10 Patches originallyPREVIOUS GNEWS Patch New Format 10 Patches originally
PREVIOUS GNEWS Patch Tuesday Patches Critical CVEs AffectedPREVIOUS GNEWS Patch Tuesday Patches Critical CVEs Affected
PREVIOUS GNEWS Patch 4 Patches 9 bugs addressedPREVIOUS GNEWS Patch 4 Patches 9 bugs addressed