1 / 10

PREVIOUS GNEWS

PREVIOUS GNEWS. Patch Tuesday. 15 Patches / 32 Vulns – 9 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter. MS10-046 - Windows Shell, Remote Code Execution (out of Band) MS10-047 - Windows Kernel, Elevation of Privilege

sherry
Download Presentation

PREVIOUS GNEWS

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. PREVIOUS GNEWS

  2. Patch Tuesday • 15 Patches / 32 Vulns – 9 Critical • Affecting most everything • Other updates, MSRT, Defender Definitions, Junk Mail Filter • MS10-046 - Windows Shell, Remote Code Execution (out of Band) • MS10-047 - Windows Kernel, Elevation of Privilege • MS10-048 - Windows Kernel-Mode Drivers, Elevation of Privilege (exploit) • MS10-049 – Schannel, Remote Code Execution • MS10-050 - Windows Movie Maker, Remote Code Execution • MS10-051 - Microsoft XML Core Services, Remote Code Execution • MS10-052 - Microsoft MPEG Layer-3 Codecs, Remote Code Execution • MS10-053 - Cumulative Security Update for Internet Explorer • MS10-054 - SMB Server Could Allow Remote Code Execution • MS10-055 - Cinepak Codec Could Allow Remote Code Execution • MS10-056 - Microsoft Office Word, Remote Code Execution • MS10-057 - Microsoft Office Excel, Remote Code Execution • MS10-058 - Vulnerabilities in TCP/IP, Elevation of Privilege • MS10-059 - Vulnerabilities in the Tracing Feature for Services Could Allow an Elevation of Privilege (982799) • MS10-060 - Microsoft .NET Common Language Runtime and in Microsoft Silverlight, Remote Code Execution

  3. Holes / Patches • Adobe, 2 patches • APSA10-16, Flash Player • APSA10-17, Adobe Reader and Acrobat • APSA10-18, ColdFusion (hotfix update) • APSA10-19, Flash Media Server • Apple, • iTune 9.2.1 • Safari 5.0.1 • Cisco • 9 patches, multiple products • ASA, SNMPv3, FWSM • Browsers • Firefox 3.6.8, Chrome, Opera

  4. Hacking / Holes • Open LDAP • slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22

  5. Corp. Hell • Securita vs. Sourcefire. • To thread an IDS or not to thread • Apple to force iAds??? • Vote Fraud in S. Carolina • ES&S machines

  6. Papers Verizon 2010 Breach Report

  7. Updates snorby 1.4 snort / sourcfire new rule categories damn vuln linux nmap dc edition 5.35DC1

  8. Con Pwnies (redsand thought he had one) Hacking Recapthca with 30% return Hacking ATMs, full stealth control

  9. Future Con Software Freedom Day 18 Sept 2010

  10. All images scavenged without permission All images scavenged without permission

More Related