Direct patch download links for MS10-002 KB978207

by File in: security

Microsoft had released the out of band patch to resolve Internet Explorer vulnerabilities, see KB978207 and MS10-002 for additional details. The patches for IE6, IE7, and IE8 are available on Windows Update and Microsoft Update.  Unfortunately for me, our business proxy blocks access to these sites.  We also have to go through a corporate vulnerability rating process, […]

New Internet Explorer 7 0-day exploit

by File in: security

SANS has reported a Microsoft IE7 0-day expoit that is now in the wild. This vulnerability is not adderssed by the forthcoming December 2008 patch Tuesday releases, or by the MS08-073 patch that was released on 12-09-2008. Analysis shows the current exploit checks for the following conditions: The user has to be running Internet Explorer […]

MS08-067 vulnerability, exploit, and reverse engineering in detail

by File in: security

Since Microsoft released the out of band patch detailed in MS08-067 yesterday, an exploit and worm have already been developed and seen in the wild.  Dave Aitel announced the exploit yesterday in his DailyDave mailing list. SecurityFocus has the exploit available for download here.  Alexander has also published his decompiled version of the vulnerable function.  Stephenl […]

CMU announces free Firefox add-on to increase browser security against DNS flaw and digital signature problems

by File in: browser add-ons, security

Carnegie-Mellon University is making available a free add-on for Firefox 3.0 that’s intended to increase browser security. The Firefox add-on was developed at the university’s School of Computer Science and College of Engineering and is available for free download. The Perspectives software not only protects Firefox users against attacks that might occur because of the recently disclosed […]

Basic Apache Hardening in SLES 10

by File in: security

I setup a SuSE Enterprise Linux (SLES) 10 SP2 web server last week, and wanted to do some basic hardening of the default Apache configuration.  Here’s what I did. edit /etc/apache2/httpd.conf Add RewriteEngine On Add RewriteLogLevel 2 Add RewriteLog /var/log/apache2/rewrite.log Add ServerSignature Off The ServerSignature directive allows the configuration of a trailing footer line under […]

Novell has released patches for DNS cache poisoning vulnerability

by File in: security

Novell has released patches for novell-bind on OES2 and named.nlm on Netware that address the deficiencies in the DNS protocol and common DNS implementations that facilitate DNS cache poisoning attacks described in CVE-2008-1447.    Patches for bind running on SuSE Enterprise Linux Server (SLES) 9 and 10, plus openSUSE 10.2, 10.3, and 11.0 were released previously.    […]

Multivendor DNS Flaw auditing tool

by File in: security

Earlier I discussed the multivendor DNS flaw and linked to Dan’s web page that contains a tool you can run to see if your DNS servers are vulnerable to cache poisioning. Jose has developed a basic open source tool called CacheAudit that can be used to determine if the cache on your DNS server has been poisoned.  He describes […]

Test for Multivendor DNS Flaw

by File in: security

By now, everyone on the Internet is aware of the fundamental flaw in DNS that all major vendors released security patches for this week.  Dan Kaminsky, the security researcher who discovered the cache poisoning bug, has developed a test for this flaw that you can find at his web site.  Many people have downplayed this […]

Sun Java Multiple Security Vulnerabilities Rated Highly Critical

by File in: security

Sun has disclosed multiple security vulnerabilities within their Java product, which are summarized here.  The categories of vulnerabilities include: 1) Security Bypass 2) Exposure of system information 3) Exposure of sensitive information 4) DoS 5) System access The following Sun products are affected: Java Web Start 1.x Java Web Start 5.x Java Web Start 6.x […]