March 2008

March 25, 2008

Fixed in Firefox 2.0.0.13
MFSA 2008-19 XUL popup spoofing variant (cross-tab popups)
High
MFSA 2008-18 Java socket connection to any local port via LiveConnect
High
MFSA 2008-17 Privacy issue with SSL Client Authentication
Low
MFSA 2008-16 HTTP Referrer spoofing with malformed URLs
Moderate
MFSA 2008-15 Crashes with evidence of memory corruption (rv:1.8.1.13)
Critical
MFSA 2008-14 JavaScript privilege escalation and arbitrary code execution
Critical

Download from Mozilla
Or use browser, Help > Check For Updates.

{ 0 comments }

Apple

Engineers designed Safari to be secure from day one.

Secunia Advisory: SA29483
Release Date: 2008-03-24
Safari Address Bar Spoofing and Memory Corruption Vulnerabilities

Highly critical
Impact: Spoofing
System access
Where: From remote
Solution Status: Unpatched

Description:
Juan Pablo Lopez Yacubian has discovered two vulnerabilities in Safari, which can be exploited by malicious people to conduct spoofing attacks or potentially compromise a user’s system.

1) An error when downloading e.g. a .ZIP file with an overly long filename can be exploited to cause a memory corruption.

Successful exploitation may allow execution of arbitrary code.

2) An error in the handling of windows can be exploited to display arbitrary content while showing the URL of a trusted web site in the address bar.

The vulnerabilities are confirmed in version 3.1 for Windows. Other versions may also be affected.

{ 2 comments }

Anyone who is a normal human being abhors child porn, it is child abuse in the worse sense of the word.

But is the FBI’s solution a good way to tackle this problem.

Click A Link, Go To Jail

FBI posts fake hyperlinks to snare child porn suspects

Not scared about Cross-Site Request Forgery? You should be… you’re scared of jail aren’t you?

At some point, law enforcement and the government is going to HAVE TO START TALKING TO THE SECURITY PROFESSIONALS because they are making such poor decisions with regards to laws, none of us are safe.

Roll up, roll up for THE WORST IDEA EVER

{ 0 comments }

Russinovich, Technical Fellow for the Platform and Services Division, has a new project named ‘Springboard’, a collection of resources, tools, and monthly articles at Technet.

Still on the Fence with Windows Vista? Springboard Live #1

{ 0 comments }

Joe Wilcox Too Much Safari 3.1 Nonsense

Every developer shipping updaters should follow Apple’s approach. Are you listening Adobe?

You have got to be kidding, suggesting Adobe listen up and push more crud our way?

February 28, 2008.
PayPal warns: Steer clear of Apple’s Safari browser

{ 0 comments }

MSRC Blog

This advisory contains information about a very limited, targeted attack exploiting a vulnerability in Microsoft Jet Database Engine. Our initial investigation has shown that this vulnerability affects customers using Microsoft Word 2000 Service Pack 3, Microsoft Word 2002 Service Pack 3, Microsoft Word 2003 Service Pack 2, Microsoft Word 2003 Service Pack 3, Microsoft Word 2007 and Microsoft Word 2007 Service Pack 1 on Microsoft Windows 2000, Windows XP, or Windows Server 2003 Service Pack 1.

Customers running Windows Server 2003 Service Pack 2, Windows Vista, and Windows Vista Service Pack 1 are not vulnerable to the buffer overrun being attacked, as they include a version of the Microsoft Jet Database Engine that is not vulnerable to this issue.

Microsoft Security Advisory (950627)

{ 0 comments }

Apple is taking advantage of its Software Update program, in my case for iTunes, to barge its way onto computers and push Safari 3.1 Web browser for Mac OS and Windows XP/Vista.

It’s bad enough I have to take QuickTime along with iTunes, but really this is too much. The nag comes up with every reboot.

Apple, did I ask? Thanks but no thanks, the updater is now gone.

Edit: If you do the same, be sure to check frequently for Apple security updates.

{ 0 comments }

Following China’s crackdown on protests in Lhasa by Tibetan activists, and a blackout of YouTube and Google News within the country, a new twist on events brings us to Internet security.

Apprantly Groups supporting freedom of Tibet are being targeted by technically advanced malware attacks.

Asia Free Press news report:

AFP received an email Tuesday from someone claiming to be in Denmark, who had attached a file they said were pictures of Tibetans shot by the Chinese army. When AFP tried to open the attachment, a virus warning appeared.

Students For A Free Tibet
Analysis by F-Secure Labs: Targeted malware attacks against pro-Tibet groups

{ 0 comments }

IEBlog

The first is this Thursday, March 20 at 10:00 PDT/17:00 UTC. These chats are a great opportunity to have your questions answered and hear from members of the IE product team. In case you miss the chat, a transcript will be published afterward and available online.

{ 0 comments }