1 / 12

Cybersecurity Patch Tuesday Recap: Critical Updates and Vulnerabilities Exposed

Get the latest roundup on Patch Tuesday updates including critical patches for various Windows versions and Microsoft Office, along with vulnerabilities in VMWare, DHCP, SSL/TLS, browsers, and more. Stay informed to secure your systems!

holcombj
Download Presentation

Cybersecurity Patch Tuesday Recap: Critical Updates and Vulnerabilities Exposed

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Previous Gnews

  2. Patch Tuesday • 6 Patches, 15 bug – 3 Critical, Affects 2000, XP, Srv 2003 / 8, Vista, Office • Other updates, MSRT, Defender Definitions, Junk Mail Filter • MS09-063 - Web Services on Devices API Remote Code Execution • MS09-064 - License Logging Server Remote Code Execution • MS09-065 - Windows Kernel-Mode Drivers Remote Code Execution • MS09-066 - Active Directory Denial of Service • MS09-067 - Microsoft Office Excel Remote Code Execution • MS09-068 - Office Word Remote Code Execution

  3. Holes / Patches • VMWare, Multiple Vulns • DHCP DoS • Guest Escaltion, Directory Traversal • SSL/TLS is broken • Java • Adobe • Wireshark, DoS Paltalk dissector • Browsers • Firefox, Chrome, Opera, Safari

  4. Hacking • VM Detection in Malware • Evil-Maid • Drive Encryption Bypassing • CSS History HiJacking • Facebook HiJacking • crossdomain.xml • Stroke dies, kinda, maybe...

  5. Holes / Patches • Apple 2009-006 • 10.6.2 breaks atom support • iPhone worm • root - alpine • Google Cloud used for bot master • Windows 7 / 2008 kernal crash

  6. Books

  7. Free COFEE Computer Online Forensic Evidence Extractor Rapid7 acquires Metasploit CyberTerror… it’s all in your head Hulu proxy blocking ICANN approves non-latin chars in TLD Skype for Linux to go open MS and NC State create Hypervisor based rootkit detection

  8. Papers Mostrame la Guita! Adventures in Buying Vulnerabilities PedramAmini Web Application Security Consortium (WASC) 2008 Statistics Microsoft Security Intelligence Report

  9. WTF • CIA invests in social network mining • MS reports profits under Nevada • New Zealand recommends eating your pets to go green

  10. Legal FCC and Net Neutrality Pirate Bay (almost dead this time…) Email not protected by 4th Ammendment Congress wants ISPs to block fraud sites

  11. Updates Oragami 1.0.0 PDF forensics and forgery Mozilla Raindrop Think Google Wave Nikto 2.1 KrbGuess 0.21 Kerberos brute forcer Yokoso 0.1 Web finger printing Chrome 4 Beta RATS proxy 2.3 Google Go

  12. All images scavenged without permission All images scavenged without permission

More Related