Thursday, 10. June 2010
Exploit Against Adobe Flash and Adobe Reader.
I thought I got this posted the beginning of the week, but I guess it slipped through the cracks… June 4, 2010, Adobe confirmed that a zero day exploit exists in it’s Flash Player, Acrobat and Adobe Reader software. This bug effects all of it’s supported platforms, and has been found in the wild.
So, you all know the drill, if your computer has the software listed in the Adobe Security Bulletin, then follow the instructions and get yourself safe!
– Stu
Thursday, 9. July 2009
Microsoft announced an ActiveX exploit in their Internet Explorer browser product on July 6, 2009. Read the Microsoft Bulletin.
The exploit allows a website to send an ActiveX control that can execute whatever evil or destructive code it wants to, with the permissions of the user doing the browsing. It does all this without the user even knowing that it is happening. THIS IS VERY BAD!
Currently, there are no patches available for this. Microsoft recommends turning off ActiveX controls on your browser.
Isn’t it ironic, that one of the things that force people to use IE on certain websites is now a 0 day exploit…
My recommendation? Use Firefox for all your web browsing…
Till the next time!
– Stu
Wednesday, 8. July 2009
Well, it’s that time of year again. We are heading toward the Black Hat conference the end of July, and the net is a buzz with exploits and rumors of exploits.
One such rumor has to do with a package that is the backbone of network and server management on the web. OpenSSH or “Secure SHell” is used by every *nix administrator in the world to manage servers. The thought of an exploit against this package sends shivers down every administrator’s spine.
Read more »
