PREVIOUS GNEWS Patch Tuesday 8 Patches 6 Critical

  • Slides: 9
Download presentation
PREVIOUS GNEWS

PREVIOUS GNEWS

Patch Tuesday • • 8 Patches – 6 Critical – 19+ CVEs Affected –

Patch Tuesday • • 8 Patches – 6 Critical – 19+ CVEs Affected – Kernel, AD, Exchange, Unicode, ICMP • • MS 13 -059 - Security Update for Internet Explorer, Remote Code MS 13 -060 - Unicode Scripts Processor, Remote Code MS 13 -061 - Microsoft Exchange Server, Remote Code MS 13 -062 - Remote Procedure Call, Privilege Escalation MS 13 -063 - Windows Kernel, Privilege Escalation MS 13 -064 - Windows NAT Driver, Do. S MS 13 -065 - ICMPv 6, Do. S MS 13 -066 - Active Directory Federation Services, Information Disclosure

Holes / Patches • Oracle, 89+ CVEs 27 remotely executable – 6 DB, 21

Holes / Patches • Oracle, 89+ CVEs 27 remotely executable – 6 DB, 21 Fusion, 18 My. SQL • Adobe – APSB 13 -20 – Adobe Digital Editions • Apple, – nothing • Cisco – – – IOS XR Internet Control Protocol, Do. S Tele. Presence, Default Creds Cisco. Works, Remote Code Web. Ex, Multiple Unified Communications, Multiple Video Surveillance Manager, Multiple

Hacking • femotcells • 16 core "rasberry competitor" • 19 Chrome extensions for Pen.

Hacking • femotcells • 16 core "rasberry competitor" • 19 Chrome extensions for Pen. Testing

Corp • what's old is new, Kremlin goes old school with typewriters • apple

Corp • what's old is new, Kremlin goes old school with typewriters • apple dev breached • Cisco to buy Sourcefire

Legal • UK rubbish bins collecting smartphone data

Legal • UK rubbish bins collecting smartphone data

Papers • Tracking How it works, How it can be avoided • http: //resources.

Papers • Tracking How it works, How it can be avoided • http: //resources. infosecinstitute. com/means-and-methods-of-web-tracking-its-effects-onprivacy-and-ways-to-avoid-getting-tracked/ • NIST Bio. Meteric guidance. • www. nist. gov/customcf/get_pdf. cfm? pub_id=914224 • Drop. Smack • https: //media. blackhat. com/eu-13/briefings/Williams/bh-eu-13 -dropsmack-jwilliams-slides. pdf

CON Events • defcon cellular ids • • Presentation CD http: //contagiodump. blogspot. com/2013/08/d

CON Events • defcon cellular ids • • Presentation CD http: //contagiodump. blogspot. com/2013/08/d efcon-21 -archives-speaker-materials. html • • Password Cracking Contest DC 214 Street Team – faced technical difficulties and still comes in 6° out of 8. • • Network Forensics contest DC 214 Street Team – started 24 hours behind, 2 man team is one of 10 teams to complete all tasks, and still comes 8° place using all open source tools.

All images scavenged without permission

All images scavenged without permission