Security, Vulnerability, Bug, Software, Attacks
Adobe Readies Fix for Vulnerability as Attacks Continue
Adobe is shortly to issue a patch for a zero-day security vulnerability bug with its software, as attacks continue. [...] Adobe Systems will issue a patch later this week for a zero-day security vulnerability bug that it is currently being exploited by hackers. [...] In an advisory 4 June, Adobe warned users that a vulnerability affecting Adobe Reader, Flash Player and Acrobat was actively being exploited by attackers. The bug exists in Flash Player 10.0.45.2 and earlier versions for Windows, Macintosh, Linux and Solaris as well as the authplay. [...]
Juniper Challenges Cisco Data Centre Security
It's also rolling out AppSecure, which guards against distributed denial-of-service (DDoS) attacks. And the model provides malware protection through a partnership with FireEye, a security software startup that specialise in detecting and preventing virus infections and zero-day vulnerability exploits. [...] From a technical perspective, the Juniper SRX with AppTrack seems extremely competitive against the broader field of security appliance vendors. Juniper says the integrated management system allows administrators to throttle resources and allocate priority to different security functions based on need. [...] The cornerstone of this model is AppTrack, a security package that identifies applications at the gateway and enforces granular security policies - blocking, filtering and alerting. In essence, Juniper is deploying next-generation firewall technology to enterprise data centre environments. [...]
Microsoft Responds To Virtual PC Security Warning
Core Security issued an advisory Tuesday for what its researchers described as a bug in the software that allowed users to circumvent various security measures in Windows. According to Core Security, there is a vulnerability in the memory management of the Virtual Machine Monitor that makes memory pages mapped above the 2GB available with read or read/write access to user-space programs running in a Guest operating system. [...] Microsoft is disputing Core Security Technologies description of a security issue impacting Microsoft's Virtual PC software as a vulnerability. [...] Microsoft is disputing Core Security Technologies' description of a security issue affecting Microsoft's Virtual PC software as a vulnerability. [...]
Microsoft Releases Out-Of-Band Security Fix
The bug a vulnerability in the Windows shell component that attackers have been exploiting via malicious.LNK files has increasingly become the target of exploits. In light of the attacks, Microsoft announced it is planning to push out a patch on 2 August. [...] The malware first associated with the vulnerability was Stuxnet, which targets Siemens software used by industrial companies. Siemens began distributing a tool on 22 July to help organisations thwart attacks. [...] Security Attacks Companies / News Security Tags / News Security Vulnerability st. [...]
Researchers Warn Of Microsoft Virtual PC Flaw
Researchers at Core Security Technologies issued an advisory today about a new security vulnerability that leaves users of Microsoft's Virtual PC software open to attack. [...] The vulnerability can be exploited locally within a virtualised system to escalate privileges or remotely for code execution in combination with any client-side bug for which existing patches have not been applied or with any client-side bug for which a fix has not been developed after dismissing the bug as not exploitable or of low priority, Ivan Arce, CTO of Core Security, told eWEEK in an e-mail. [...] According to Core Security, certain versions of the Virtual PC hypervisor contain a vulnerability that allows attackers to bypass Windows security mechanisms, including Data Execution Prevention (DEP) and Address Space Layout Randomization. This means other bugs that are not exploitable when running in a non-virtualised operating system could be exploited if running within a guest OS in Virtual PC. [...]
Adobe Strengthens PDF Reader With Sandboxing
Adobe Reader Protected Mode doesn't solve every conceivable security problem that might confront our users of the product, Arkin said. But the vast majority of attacks that we've seen in the past couple years, are leveraging some type of remote code exploit that allows them to execute code due to a memory trespass vulnerability and they use that to either install software or carry out some other malicious activity which the sandbox will make much harder to do. [...] Known as Protected Mode', the technology will be included in the next full version of the PDF viewing software, and comes at a time when attackers are increasingly using Adobe vulnerabilities to compromise computers. The technology is aimed at computers running Microsoft Windows, which have been the target of most of these attacks. [...] Although vulnerabilities do exist in reader for Mac and Unix versions [of Reader], the real world attacks that we're seeing are almost universally on Windows, and so by getting the protection in place for that platformwe're able to do get that protection out to the users where the actual threats are occurring, explained Brad Arkin, director of product security and privacy at Adobe. [...]
IBM Report Labels Apple, Microsoft As Most Vulnerable
The leap in vulnerability disclosures relates to organisations taking a greater interest in exploitable software bugs as well as attackers continuing to develop their own infrastructure, said Tom Cross, manager of IBM's X-Force Advanced Research Team. An area that both whitehat and blackhat security researchers are focusing on is automated vulnerability discovery through approaches such as fuzzing. [...] Attackers have been using JavaScript to obfuscate web browser attacks for a few years, but X-Force believes that the topic comes up infrequently, yet it continues to be a problem, Cross said. With attackers continuing to innovate with JavaScript obfuscation, it is forcing security vendors to innovate [in the areas of] intelligent components and solutions too. . [...] IBM has released its X-Force security report which has discovered that the number of disclosed vulnerabilities during the first half of 2010 shot up 36 percent from a year previously. [...]
Researcher Demonstrates Twitter SSL Vulnerability
The researcher, Anil Kurmus, posted details of the attack to his blog, The Secure Goose, 10 Nov. The exploit takes advantage of a vulnerability reported 5 Nov. by researchers from PhoneFactor. Although the security hole Kurmus took advantage of has reportedly been closed by Twitter, one of the researchers at PhoneFactor who discovered the bug said the exploit underscores the flaw's significance. [...] When news of the vulnerability hit, some in the security community said the bug's impact was essentially the same as cross-site request forgery, which many Web applications are protected against. However, according to Dispensa, Kurmus' exploit showed that the bug could have broader implications. [...] The exploit takes advantage of an SSL renegotiation issue. According to PhoneFactor, the vulnerability partially invalidates the SSL lock and enables attackers to launch attacks that could compromise a variety of sites that use SSL for security&mdash.including banking sites, and back-office systems that use Web services-based protocols. [...]
New Adobe Zero-Day Vulnerability Discovered
There is another security headache for Adobe, after hackers are reportedly exploiting a new vulnerability in its Reader and Acrobat software, despite the company already working on a fix for another zero-day bug exposed earlier this month. [...] According to Adobe's Product Security Incident Response Team blog, the vulnerability impacts Adobe Reader and Acrobat 9.2, and is being exploited in the wild. [...] In addition to the latest bug, Adobe still has another zero-day to clear off its plate as well. Proof-of-concept exploit code has been circulating the web for a vulnerability in Adobe Illustrator CS4 and CS3 that can be exploited to execute code via a malicious Encapsulated PostScript (. [...]
Security Spats Highlight Google And Microsoft Cold War
Ormandy reported that he informed Microsoft of the bug on 5 June. Nonetheless, he caught his share of flak from IT security professionals concerned that Ormandy's decision to publish proof-of-concept attack code could ultimately be used to exploit the vulnerability. [...] However, the spokesperson added, Given the public disclosure of the details of the vulnerability, and how to exploit it, customers should be aware that broad attacks are likely. As such, customers running Windows XP and Windows Server 2003 are encouraged to review and apply the mitigation and workarounds discussed in Microsoft's Security Advisory. [...] The Google security researcher found a help page with a cross-site scripting vulnerability and also a mechanism by which to abuse the allow list functionality to access that page with an exploit query-string. Clicking on a malicious hcp.// link leverages the XSS vulnerability to circumvent helpctr. [...]
- • eWeekEurope
- • Products
- • News
- • Comment
- • Interviews
- • Knowledge Centre
- • Resource Centre