PREVIOUS GNEWS. 11 Patches – bugs addressed Affecting Windows (all versions) Other updates, MSRT, Defender Definitions, Junk Mail Filter 11 Security Patches.

Slides:

Advertisements

Similar presentations

Patch Management Patch Management in a Windows based environment

Advertisements

PREVIOUS GNEWS. ? Patches – ? Critical – ? CVEs Affected – ? Other updates, MSRT, Defender Definitions, Junk Mail Filter Patch Tuesday.

PREVIOUS GNEWS. 7 Patches – 3 Critical – 23 CVEs Affected – RDP, IE, Lync, Windows Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS

PREVIOUS GNEWS. 11 Patches – 5 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS IE, Remote Execution.

. 15 Patches / 32 Vulns – 9 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Windows.

PREVIOUS GNEWS. 13 Patches – 5 Critical Affecting Windows (pretty much all of them) Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS

3 Patches – x bugs addressed Affecting Kernel, SChannel, DNS/WINS Other updates, MSRT, Defender Definitions, Junk Mail Filter 3 Security Patches - 1 Critical,

PREVIOUS GNEWS. 4 Patches – 9 bugs addressed Affecting Windows, SQL, Exchange (OWA) Other updates, MSRT, Defender Definitions, Junk Mail Filter 8 Security.

PREVIOUS GNEWS. Oct - 8 Patches – 3 Critical - 24 CVEs MS Cumulative Security Update for Internet Explorer MS NET Framework, Remote Code.

SP2 Mikael Nystrom. Agenda Översikt Installation.

CAP6135: Malware and Software Vulnerability Analysis Examples of Term Projects Cliff Zou Spring 2012.

Microsoft October 2004 Security Bulletins Briefing for Senior IT Managers updated October 20, 2004 Marcus H. Sachs, P.E. The SANS Institute October 12,

PREVIOUS GNEWS. Apr 4 Patches – 2 Critical – 11 CVEs MS Microsoft Word and Office Web Apps, Remote Code MS Cumulative Security Update.

1 Infrastructure Hardening. 2 Objectives Why hardening infrastructure is important? Hardening Operating Systems, Network and Applications.

9 Patches – 2 Critical – 12 CVEs Affected – IE, Kernel, SharePoint, Remote Desktop, AD….. Other updates, MSRT, Defender Definitions, Junk Mail Filter.

PREVIOUS GNEWS. 6 Patches – 1 Critical – 22 CVEs Affected – IE. Kernel, Print, Office MS Cumulative Security Update for Internet Explorer MS

PREVIOUS GNEWS. 7 Patches – x bugs addressed Affecting Word, Outlook, Publisher, Jet DB Engine, IE, Windows Other updates, MSRT, Defender Definitions,

PREVIOUS GNEWS. Patches – 1 Critical Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS DNS Server, DoS –MS Kernal Mode Driver,

PREVIOUS GNEWS. 8 Patches – 10 bugs addressed Affecting Project, Visio, DNS, GDI, Scripting, Activex, IE, Windows Other updates, MSRT, Defender Definitions,

PREVIOUS GNEWS. 7 Patches – 3 Critical – 23 CVEs Affected – Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Microsoft Word, Remote.

PREVIOUS GNEWS. 4 Patches – 2 bugs addressed Affecting Windows, Windows Servers, Other updates, MSRT, Defender Definitions, Junk Mail Filter, RootCert.

PREVIOUS GNEWS. 7 Patches – 3 Critical – 20 CVEs Affected – IE, Kernel, Visio, Silverlight Sarepoint,….. Other updates, MSRT, Defender Definitions, Junk.

PREVIOUS GNEWS. 2 Patches / 3 Vulns – 1 Critical Affecting Windows XP, Vista, 7, 2003, 2008 Other updates, MSRT, Defender Definitions, Junk Mail Filter.

1 © 2004, Cisco Systems, Inc. All rights reserved. CISCO CONFIDENTIAL Using Internet Explorer 7.0 to Access Cisco Unity 5.0(1) Web Interfaces Unity 5.0(1)

PREVIOUS GNEWS. 4 Patches – 12 bugs addressed Affecting Office, Visual Studio, BizTalk Other updates, MSRT, Defender Definitions, Junk Mail Filter 4 Security.

C HAPTER 2 Introduction to Windows XP Professional.

CERN IT Department CH-1211 Genève 23 Switzerland t Windows Desktop Applications Life-cycle Management Sebastien Dellabella, Rafal Otto Internet.

Previous Gnews. 13 Patches – 8 Critical, Affects pretty much everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS SMBv2.

PREVIOUS GNEWS. 7 Patches – 11 bugs addressed Affecting Windows, Windows Servers, Vista, Media Player, DirectX, Macrovision (DRM) Other updates, MSRT,

PREVIOUS GNEWS. July - 6 Patches – 2 Critical - 27 CVEs MS Cumulative Security Update for IE, Remote Code MS – Windows Journal, Remote Code.

PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more MS Cumulative Security Update.

PREVIOUS GNEWS. 7 Patches – 1 Critical Affecting server builds and powerpoint Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Windows.

PREVIOUS GNEWS. 6 Patches – 4 Critical – 19 CVEs Affected – Kernel, SQL, Kerberos, Word, HTML, SharePoint Other updates, MSRT, Defender Definitions, Junk.

P  e  i  Gne . 6 Patches, 12 bugs – 3 Critical, Affects Windows, Office Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS

Client-based Application Attacks Adli Abdul Wahid Dept. of Comp. Science, IIUM

PREVIOUS GNEWS. 6 Patches – 4 Critical – 11 CVEs Affected – SQL, Visual Basic, Visual Foxpro, more… Other updates, MSRT, Defender Definitions, Junk Mail.

PREVIOUS GNEWS. Oct - ? Patches – ? Critical - ? CVEs Come Back Next Week Other updates, MSRT, Defender Definitions, Junk Mail Filter Patch Tuesday.

PREVIOUS GNEWS. 4 Patches – x bugs addressed Affecting Windows, SQL, Office, Visual Studio,.Net Other updates, MSRT, Defender Definitions, Junk Mail Filter.

. 6 Patches, 15 bug – 3 Critical, Affects 2000, XP, Srv 2003 / 8, Vista, Office Other updates, MSRT, Defender Definitions, Junk Mail Filter.

PREVIOUS GNEWS. Advanced Notification on Thursday Patch Tuesday.

. Next Week Yo! Patch Tuesday Java Multiple advisories and updates Openssl DoS in ASN1_STRING_print_ex() cisco ios DoS in Cisco Tunneling.

PREVIOUS GNEWS. –MS Microsoft XML Core Services, Remote Execution –MS Cumulative Security Update for Internet Explorer –MS Microsoft.

PREVIOUS GNEWS. Jan 4 Patches – 0 Critical – 6 CVEs 9 Patches – 4 Critical – 31+ CVEs MS Microsoft XML Core Services, Info Disclosure MS

PREVIOUS GNEWS. 7 Patches – 6 Critical – 35 CVEs Affected –.NET, GDI+, IE, Defender, DirectShow MS NET Framework and Silverlight, Remote Code.

PREVIOUS GNEWS. try again next week Patch Tuesday.

PREVIOUS GNEWS. 16 Patches / 49 Vulns – 4 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Cumulative.

Previous Gnews. 5 Patches – x bugs addressed Other updates, MSRT, Defender Definitions, Junk Mail Filter 5 Security Patches - 5 Critical –MS – JScript.

PREVIOU S GNEWS. May 7 Patches – 2 Critical - 70 CVEs MS Remote Desktop, Allow Tampering MS TCP Protocol, DoS MS Microsoft Lync.

PREVIOUS GNEWS A Hacker is You!. 1 Patches – 1 bugs addressed Affecting Windows (pretty much all of them) Other updates, MSRT, Defender Definitions, Junk.

PREVIOUS GNEWS. 4 Patches / 5 Vulns – 3 Critical Affecting Winodow (all of them), Office, IE, SharePoint,.net Other updates, MSRT, Defender Definitions,

PREVIOUS GNEWS. Aug - 4 Patches – 1 Critical - 42 CVEs MS – IE Cumulative Security Update, Remote Code MS –.NET Framework, DoS MS –

PREVIOUS GNEWS. 2 Patches – 2 Important Affecting Windows Movie Maker, Office Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS –

PREVIOUS GNEWS. 2 Patches – 2 Critical Affecting VB and Mail Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS – Visual Basic for.

PREVIOUS GNEWS. 3 Patches – 4 Critical – 53+ CVEs Affected – Kernel, AD, SharePoint, Office, and more MS Microsoft SharePoint Server, Remote Code.

Previous Gnews. Patch Tuesday April – 8 Patches (5 high/critical), Windows, Excel, ISA, IE, HTTP Services MS thru MS May – 1 Patch (critical)

PREVIOUS GNEWS. 2 Patches – bugs addressed Affecting Windows (all versions) Other updates, MSRT, Defender Definitions, Junk Mail Filter Patch Tuesday.

PREVIOU S GNEWS. May 9 Patches – 3 Critical - 1 out of band – 14 CVEs MS Security Update for Internet Explorer MS SharePoint Server, Remote.

Previous Gnews. Other updates, MSRT, Defender Definitions, Junk Mail Filter 10 Security Patches - 6 Critical, 3 Important, 1 Moderate –MS Active.

PREVIOUS GNEWS. Aug - 9 Patches – 1 Critical - 37 CVEs MS Windows Media Center, Remote Code MS – SQL Server, Privilege Escalation MS

PREVIOUSLY GNEWS. Patch Tuesday Aug - 13 Patches – 6 Critical - 57 CVEs MS Cumulative Security Update for IE (Aug Out of Band) MS Cumulative.

PREVIOUSLY GNEWS Patch Tuesday Jan – 10 (9) Patches – 6 Critical – 24ish CVEs MS Cumulative Security Update for IE, Remote Code MS Cumulative.

Previous Gnews. Other updates, MSRT, Defender Definitions, Junk Mail Filter Out of Band Patchs –MS – IE Cumulative Security Update / Activex –MS

Vulnerabilities in Operating Systems Michael Gaydeski COSC December 2008.

Securing a Host Computer BY STEPHEN GOSNER. Definition of a Host  Host  In networking, a host is any device that has an IP address.  Hosts include.

Final Project: Advanced Security Blade IPS and DLP blades.

PREVIOUS GNEWS. 8 Patches – 6 Critical – 19+ CVEs Affected – Kernel, AD, Exchange, Unicode, ICMP MS Security Update for Internet Explorer, Remote.

All images scavenged without permission

All images scavenged without permission

All images scavenged without permission

Severity and Exploitability Index

Presentation transcript:

PREVIOUS GNEWS

11 Patches – bugs addressed Affecting Windows (all versions) Other updates, MSRT, Defender Definitions, Junk Mail Filter 11 Security Patches - 6 Critical, 5 Important –MS – AD - DoS –MS – TCP/IP – DoS –MS – IIS – Privilege Escalation –MS – IIS - Remote Code Execution –MS – WebDAV - Remote Code Execution * –MS – OLE Automation - Remote Code Execution –MS – Word - Remote Code Execution –MS – IE Cumulative - –MS – Works File Converter - Remote Code Execution * –MS – Publisher - Remote Code Execution –MS – Office - Remote Code Execution Patch Tuesday

Holes / Patches IE 7 Moved back into ‘High Priority’ Vista SP1 released to Manufacturers Another Windows 0-day bounty –Digital Armaments, 20K Hacker’s Challenge, ends Feb 29th Another Excel 0-day, Malformed file grants privilege escalation MS Update, MS Small Business Sever vuln to IGMP AOL Radio, BO in OLMediaPlaybackControl.exe, allows code execution Winamp, BO in in_mp3.dll, allows code execution Yahoo! Music Jukebox Activex, BO in datagrid.dll, allows code execution –Multiple exploits posted to milw0rm uTorrent, crafted packet with overly long client string, allows code execution

Hacking Drive-by pharming in the wild Polish TV Remote used to control train switch vLite, Windows Vista Stripper Malicious Facebook page poses as Windows Update Mitnick Probation ends iPhone / iPod Touch firmware jail busted –Paper on milw0rm NIAP Group posts new anti-rootkits to rootkit.com Yahoo! Captcha Cracked

Holes / Patches (more) Oracle Patch Release, 27 patches –Multiple local exploits posted to milw0rm Oracle Siebel SimBuilder NCTAudioFile2 ActiveX Apple Patch Release , 411 fixes Apple QuickTime, BO in handling RTSP relies, code execution iPhone application signing key leaked MBR Rootkit Cisco, BO in CTLProvider.exe, DoS / Code execution Cisco ASA, TTL decrement feature enabled, DoS Home Routers, exploited via flash swf file and UPNP

Corp. Hell OLPC coming to America Time Warner Cable Beaumont TX tests tiered internet plans Hasbro issues DMCA against Facebook applications Oracle buys BEA Sun buys mysql. HackerSafe (or not) Windows 7 scheduled for 2 nd half of 2009 MS virtualization strategy announced –Possible partnership with Citrix / reverses EULA prohibiting Vista under virtualization No open source for os/2 NVIDIA buys AGEIA Yahoo! Music closing, converts user to Real / Rhapsody new comcast tos Do Not Call Registry to be made permanent

Holes / Patches (again) TSA Website hacked (data loss) Citadel SMTP, BO in user_ops.c, allows code execution Facebook Photo Uploader –Multiple exploits on milw0rm Another Adobe Reader vulnerability Mozilla Firefox and Thunderbird, Multiple vulns GNUCitizen release PoC code for BT Home Hub B, VOIP hijacking Skype IE zone allows malicious code execution Nokia / Symbian worm, SymbOS/Beselo.A!worm Lots of SQL injection posted to milw0rm

Film / Music Netflix removes steaming limits Possible deal in writers strike

Papers RBN, Shadowserver Foundation Flash Memory, Robert Graham (blog) NIST draft for IPv6 –ICANN adds IPv6 to internet backbone routers Risking Communications Security: Potential Hazards of the Protect America Act, Steve Bellovin, Matt Blaze, Whit Diffie, Susan Landau, Peter Neumann, and Jennifer Rexford Covert channel vulnerabilities in anonymity systems, Steven Murdoch – University of Cambridge NIST approved scanners gay authentication –Undercover: Authentication Usable in Front of Prying Eyes

UK proposes chipping prisoners RealID requirements issued UK considering a German hacking tool law Dakota makes DNS zone transfers illegal. Maryland ditches digital voting EU slams ISP filtering Canadian DMCA takes more heat EU recommends IPs be considered personal data. Electronics freely searchable Bush security plan Legal

Sun Java 6 update 4 VOIP hopper tor wifizoo 1.3 (dsniff-ish) sqlmap 0.5 sysinternals –autoruns 9.02 –psservice 2.22 –tcpview 2.53 –psexec 1.94 KDE 4.0 goes cross platform linux kernel metasploit 3.1 OSVDB API beta PostgreSQL 8.3 aircrack ng Updates

student expelled for misquoted Facebook image QuickTime DRM disables 3rd party video editing. apple cripples their dtrace port under water cables cut in Mediterranean SCADA security mailing list –(don't talk security) more fedware WTF

CON Events Future Cons –Ebay RedTeam, ? Feb / SanJose –Shmoocon, Feb / Washington DC –Black Hat DC, Feb / Washington DC –InfowarCon 2008, Mar / Bethesda MD –Infosec World, Mar / Orlando FL –SOURCE Boston, Mar / Boston MA –Black Hat Europe, Mar / Amsterdam –CanSecWest 2008, Mar / Vancouver BC –CarolinaCon 4, Mar / Chapel Hill NC

All images scavenged without permission