 Site Navigation
September 2008
| |
S | M | T | W | T | F | S |
|
»
| |
1
|
2
|
3
|
4
|
5
|
6
|
|
»
|
|
8
|
|
10
|
11
|
|
|
|
»
|
14
|
|
|
17
|
|
|
|
|
»
|
21
|
|
23
|
|
25
|
|
|
|
»
|
|
29
|
30
| | | | |
Latest Discussions
Terryala @ 09-5-08 18:05
Read: 4 Comments: 0
Recommended Sites
|
|
| Google Chrome 'SaveAs' Function 'Title' Tag Buffer Ove |
| Posted by Terryala - 09-5-08 18:05 - 0 comments |
 |
Google Chrome 'SaveAs' Function 'Title' Tag Buffer Overflow Google Chrome is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary-checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code in the context of the user running the application. Failed exploit attempts will likely result in a denial-of-service condition. Google Chrome 0.2.149.27 is vulnerable. SecurityFocus
|
Read 4 times - make a comment
|
| Spammers abusing Google Picasa |
| Posted by Terryala - 09-5-08 18:01 - 0 comments |
|
Spammers abusing Google Picasa Spammers are misusing Google's services to deceive spam filters and draw users to their advertising pages. MessageLabs says that in recent months it has noticed an increasing number of emails with links to Picasa web albums which use Flash films to redirect visitors to spammer pages. Users can store their own images – and apparently Flash applets as well – at Picasa, free of charge. The Intelligence Report says that, with emails containing embedded links to Google, the usual spam filters have a hard time trying to discriminate between the legitimate and the malicious. These are after all legitimate URLs, so blocking emails containing Google URLs would probably do more harm than good. ImageShack is also reported to be among the misused service providers. Although MessageLabs recorded less than two per cent of the total amount of spam in August as arriving by this route, it is nonetheless convinced that these distribution channels will become markedly more significant in coming months. Like the ShadowServer Foundation, MessageLabs was able to spot an extension in the spread of botnets. The Srizbi and Cutwail botnets each grew by 20 to 25 per cent between July and August, taking the increase in spam worldwide in August close to 160 per cent compared to July. MessageLabs is also warning against "Antivirus XP 2008", a rogue program that poses as anti-spyware software and now represents a serious threat to companies. Once installed, it terrorizes its users with false warnings of infections, trying to persuade them to buy the full version of the program. MessageLabs says that, in August, France suffered the most from junk advertising. The spam quota there rose 3.5 per cent to 82.8 per cent, putting the French on the top of the list of the world's most heavily spammed countries. The largest jump in the spam load – 13.9 percentage points – was recorded in Italy, where the total was 71.3 per cent. heiseSecurity.
|
|
Read 4 times - make a comment
|
| Microsoft to close four critical security holes |
| Posted by Terryala - 09-5-08 11:44 - 0 comments |
|
Microsoft to close four critical security holes Next Tuesday, September 9, Redmond will release four updates to close critical security holes in Windows, Office, Windows Media Player and Windows Media Encoder. According to the software vendor's announcement, all four holes can be used remotely to inject and execute code. While no detailed information has been released yet, users probably have to open a specially crafted file for the attack on Office to succeed. It is not clear whether the flaw in Windows Media requires a visit to a web site. The holes in Windows, Windows Media Player and Windows Media Encoder all affect Windows 2000, XP (32/64), Vista (32/64), Windows Server 2003 and Windows Server 2008. In the latter, the flaw cannot, however, be found if the option for Server Core installation is set. As usual, an updated version of the Malicious Software Removal Tool will be included. Microsoft also plans to distribute updates for the Windows Mail Junk E-Mail Filter and other flaws not related to security. heiseSecurity
|
|
Read 13 times - make a comment
|
| Google Chrome at risk from 'carpet bomb' bug |
| Posted by Terryala - 09-4-08 12:56 - 0 comments |
|
Google Chrome at risk from 'carpet bomb' bug QUOTE Blended threat can take down PCs running the browser, says researcher
By Gregg Keizer
September 3, 2008 (Computerworld) Attackers can combine a months-old "carpet bomb" bug with another flaw disclosed last month to trick people running Google Inc.'s brand-new Chrome browser into downloading and launching malicious code, a security researcher said today.
The attacks are possible because Google used an older version of WebKit, an open-source rendering engine that also powers Apple Inc.'s Safari, as the foundation of Chrome, said Israeli researcher Aviv Raff on Wednesday.
Raff posted a proof-of-concept exploit to demonstrate how hackers could create a new "blended threat" -- so-named because it relies on multiple vulnerabilities -- to attack Chrome, the browser Google released this week.
"This is different from the Safari/IE blended threat," said Raff in an interview conducted via instant messaging. "It's a different blend with one similar component. It uses the auto-download vulnerability (aka 'Carpet Bomb') in combination with a [user interface] design flaw and an issue with Java that doesn't display a warning on execution of JAR files downloaded from the Internet." Raff's reference to the earlier Safari/IE blended threat was to his May report that said a bug in Apple's Safari browser could be paired with an unpatched vulnerability in Microsoft Corp.'s Internet Explorer (IE) to compromise Windows PCs. Continued: ComputerWorld
|
|
Read 21 times - make a comment
|
| Mozilla Products Multiple Remote Vulnerabilities |
| Posted by Terryala - 09-4-08 12:47 - 0 comments |
|
Mozilla Products Multiple Remote Vulnerabilities The Mozilla Foundation has released six security advisories specifying vulnerabilities in Firefox, SeaMonkey, and Thunderbird. These vulnerabilities allow attackers to: - Execute arbitrary code - Cause denial-of-service conditions - Perform cross-site scripting attacks - Obtain potentially sensitive information - Spoof legitimate content Other attacks may also be possible. SecurityFocus
|
|
Read 20 times - make a comment
|
| Botnets quadruple in size |
| Posted by Terryala - 09-4-08 12:43 - 0 comments |
|
Botnets quadruple in size In the past three months, the size of "botnets" – groups of virus-compromised "zombie" PCs – has increased by a factor of four, according to statistics published by the ShadowServer Foundation. The Foundation's members include a number of security specialists that monitor botnets, malware and phishing activity, but the experts aren't sure why the number of infected PCs has risen so quickly. The Internet Storm Center (ISC) believes that widespread SQL injection attacks on web sites are behind it all. These attacks compromise the database server behind an otherwise-harmless web site, so that site visitors using unpatched browsers are served malware. Another explanation is that bot-herders may simply be able to keep control of a compromised PC for longer before users discover an anomaly or a virus scanner detects the infection. Thorsten Holz, cofounder of Germany's Honeynet Project, believes that email attacks in the past few months have brought about these changes. During this time, malware has been circulating as forged UPS invoices, Angelina Jolie videos, reports about the US invading Iran and most recently as Olympic screensavers. Holz pointed out to heise Security that ShadowServer mainly monitors IRC botnets, which are not related to SQL injection attacks – a fact that further bolsters his interpretation. Recently, security service providers FireEye and SecureWorks also reported some interesting findings about botnets. It turns out that the two botnets which vie for the title of King of the Hill, Srizbi and Rustock, have some things in common. Apparently, one client is using both networks to send spam email. It is also unusual that emails that distribute Srizbi bots are being sent from the Rustock network. heiseSecurity
|
|
Read 13 times - make a comment
|
| Spammers use free Web services to shield harmful links |
| Posted by Terryala - 09-3-08 22:21 - 0 comments |
|
Spammers use free Web services to shield harmful links QUOTE Legit Web sites are being abused, analyst says
By Jeremy Kirk
September 3, 2008 (IDG News Service) Spammers are abusing free Web services to make their spam links look more legitimate, according to e-mail security vendor MessageLabs Ltd.
One of the services, a photo hosting site called ImageShack, lets people upload different types of photo formats, including Flash files, said Paul Wood, a senior analyst at MessageLabs.
Flash files, which have the extension ".swf," can be used for animated graphics and to automatically redirect people to other Web sites — a feature that can be abused.
The attack involving ImageShack works like this: Spammers upload a Flash file and then copy the link for that file -- which comes from ImageShack's domain -- into a spam message. If the link is followed, the Flash file redirects the victim to a spam site, Wood said.
The technique offers an advantage for spammers. Antispam software will often scan links in e-mail and block any e-mails with suspicious-looking links. But ImageShack's domain is considered to have a good reputation, so messages won't be blocked.
"If you start blocking on domain name only, you can incur a lot of collateral damage," Wood said. Continued ComputerWorld
|
|
Read 22 times - make a comment
|
| Google amends Chrome license agreement after objections |
| Posted by Terryala - 09-3-08 22:16 - 0 comments |
|
Google amends Chrome license agreement after objections QUOTE Users raise copyright, privacy concerns
By Grant Gross
September 3, 2008 (IDG News Service) Google Inc. will dump a section of the licensing agreement for its new Chrome browser after some Internet users objected to its copyright implications.
Google said today it would dump one section of the end-user licensing agreement that gave the company "a perpetual, irrevocable, worldwide, royalty-free, and non-exclusive license to reproduce, adapt, modify, translate, publish, publicly perform, publicly display and distribute any Content which you submit, post or display on or through" the new browser.
Several Web users raised copyright and privacy concerns about portions of the licensing agreement shortly after Google launched Chrome yesterday. Some critics suggested the language would allow Google to use any Web content displayed in Chrome without getting copyright permission.
Google said it borrowed language from other products, "in order to keep things simple for our users," when it inserted the copyright provision in the Chrome license. Continued: ComputerWorld
|
|
Read 22 times - make a comment
|
| Google Chrome Arbitrary File Download Vulnerability |
| Posted by Terryala - 09-3-08 22:06 - 1 comments |
|
Google Chrome Arbitrary File Download Vulnerability Google Chrome is prone to a security vulnerability because the application allows users to download arbitrary files without confirmation. This issue may allow attackers to perform social-engineering or other attacks to trick users into downloading a malicious file. SecurityFocus
|
|
Read 72 times - last comment by Chachazz
|
|
