Upload File

previous gnews

10
PREVIOUS GNEWS PREVIOUS GNEWS

Upload: shania

Post on 20-Jan-2016

36 views

Category:

Documents


1 download

Report

Tags:

DESCRIPTION

PREVIOUS GNEWS. Patch Tuesday. 10 Patches / 34 Vulns – 3 Critical Affecting Winodow (all of them), Office, IE, SharePoint, .net Other updates, MSRT, Defender Definitions, Junk Mail Filter. MS10-032 - Windows Kernel-Mode Drivers ,Elevation of Privilege - PowerPoint PPT Presentation

TRANSCRIPT

Page 1: PREVIOUS GNEWS

PREVIOUS GNEWSPREVIOUS GNEWS

Page 2: PREVIOUS GNEWS

• 10 Patches / 34 Vulns – 3 Critical

• Affecting Winodow (all of them), Office, IE, SharePoint, .net

• Other updates, MSRT, Defender Definitions, Junk Mail Filter

– MS10-032 - Windows Kernel-Mode Drivers ,Elevation of Privilege– MS10-033 - Media Decompression ,Remote Code Execution– MS10-034 - Cumulative Security Update of ActiveX Kill Bits– MS10-035 - Cumulative Security Update for Internet Explorer– MS10-036 - COM Validation in Microsoft Office, Remote Code

Execution – MS10-037 - OpenType Compact Font Format (CFF) Driver, Elevation

of Privilege– MS10-038 – Microsoft Office Excel, emote Code Execution– MS10-039 - Microsoft SharePoint, Elevation of Privilege– MS10-040 - Internet Information Services, Remote Code Execution– MS10-041 - Microsoft .NET Framework, Tampering

Patch Tuesday

Page 3: PREVIOUS GNEWS

• Adobe, 3 patches– APSA10-01 Flash, Reader, Acrobat CS4– Flash RC is reported as patched.

• Really do we need apsa and apsb? One name, one patch!

• Apple,– Safari 4.1 (mac 10.4)– Safari 5.0 (mac 10.5+ and windows)– Java for Mac (10.5+)

• Cisco– 15 patches, multiple products– Cisco IOS with SIP, Remote Execution

• Windows 7 / 2008 R2 (disable aero)– Graphics driver cdd.dll, Remote Execuction

• Browsers– Firefox, Chrome, Opera, Safari

Holes / Patches

Page 4: PREVIOUS GNEWS

• OBD-II (paper available, cars-oakland2010.pdf)– It’s not just for diagnostics anymore– Change speedo read out, control brakes,….

• More Twitter BotNets– TwitterNet Builder

• Web Server BotNet– Mass DoS

Hacking / Holes

Page 5: PREVIOUS GNEWS

• Facebook Registration, for better security

• Symantec buys Verisign CA business

• Duke University shuts down usenet

• IBM promo usb, complete with virus

• Invisible Things Lab to make new OS, Qubes OS

• MSI switch to UEFI, death toll for BIOS?

• Open Source DB Monitoring, or lack there of

• Google Street View / WiFi debacle

Corp. Hell

Page 6: PREVIOUS GNEWS

Papers

Secure Hyper VisorOAKLAND10.pdf

NSA DeclassificationNSA-HGPEDC_1964.pdf

EFF Browser Uniqenessbrowser-uniqueness.pdf

Page 7: PREVIOUS GNEWS

Film / Music

Dr. Demento goes off the air.

LimeWire to shut down

Page 8: PREVIOUS GNEWS

metasploitablevuln os

metasploit 3.4

Ruby nmap parseroh noz madhat

mobile malware

Updates

Page 9: PREVIOUS GNEWS

CON Events

Social Engineering Capture the Flag

Page 10: PREVIOUS GNEWS

All images scavenged without permission

All images scavenged without permission


GNEWS GLENROY PUBLIC SCHOOL

PREVIOUS GNEWS. 4 Patches – 9 bugs addressed Affecting Windows, SQL, Exchange (OWA) Other updates, MSRT, Defender Definitions, Junk Mail Filter 8 Security

PREVIOUS GNEWS. 7 Patches – 3 Critical – 20 CVEs Affected – IE, Kernel, Visio, Silverlight Sarepoint,….. Other updates, MSRT, Defender Definitions, Junk

PREVIOUS GNEWS. Patches – ? Critical – ? CVEs Affected – ? Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS12-052+ - NEXT WEEK FOOL Patch

PREVIOUS GNEWS. try again next week Patch Tuesday

PREVIOUS GNEWS. 7 Patches – x bugs addressed Affecting Word, Outlook, Publisher, Jet DB Engine, IE, Windows Other updates, MSRT, Defender Definitions,

PREVIOUS GNEWS. 7 Patches – 6 Critical – 35 CVEs Affected –.NET, GDI+, IE, Defender, DirectShow MS13-052 -.NET Framework and Silverlight, Remote Code

PREVIOUS GNEWS. –MS12-043 - Microsoft XML Core Services, Remote Execution –MS12-044 - Cumulative Security Update for Internet Explorer –MS12-045 - Microsoft

PREVIOUS GNEWS. 4 Patches – 12 bugs addressed Affecting Office, Visual Studio, BizTalk Other updates, MSRT, Defender Definitions, Junk Mail Filter 4 Security

PREVIOUS GNEWS. 4 Patches – 2 bugs addressed Affecting Windows, Windows Servers, Other updates, MSRT, Defender Definitions, Junk Mail Filter, RootCert

PREVIOUS GNEWS "This is Gary Gnu... and the no gnews is good gnews show. The ONLY tv gnews show guar-an-TEED-- to contain NO gnews what-so-ever."

PREVIOUS GNEWS

PREVIOUS GNEWS

PREVIOUS GNEWS. Advanced Notification on Thursday Patch Tuesday

PREVIOUS GNEWS. 6 Patches – 4 Critical – 19 CVEs Affected – Kernel, SQL, Kerberos, Word, HTML, SharePoint Other updates, MSRT, Defender Definitions, Junk

PREVIOUS GNEWS. 8 Patches – 10 bugs addressed Affecting Project, Visio, DNS, GDI, Scripting, Activex, IE, Windows Other updates, MSRT, Defender Definitions,

PREVIOUS GNEWS. 11 Patches – bugs addressed Affecting Windows (all versions) Other updates, MSRT, Defender Definitions, Junk Mail Filter 11 Security Patches

PREVIOUS GNEWS. 6 Patches – 9 bugs addressed Affecting Windows, Outlook Express / Windows Mail, Office, IE Other updates, MSRT, Defender Definitions,

PREVIOUS GNEWS. 4 Patches / 5 Vulns – 3 Critical Affecting Winodow (all of them), Office, IE, SharePoint,.net Other updates, MSRT, Defender Definitions,

PREVIOUS GNEWS A Hacker is You!

PREVIOUS GNEWS. New Format 10 Patches originally expected –6 Security Affects Windows OS (xp / vista), Office,.net –4 Non-Security related updates, Malicious

PREVIOUS GNEWS. 7 Patches – 11 bugs addressed Affecting Windows, Windows Servers, Vista, Media Player, DirectX, Macrovision (DRM) Other updates, MSRT,

PREVIOUS GNEWS. August 9 Patches – 14 bugs addressed Affecting XML, Office, Visual Basic, GDI, VML (IE), Media Player, Windows Gadgets, Vista, Virtual

PREVIOUS GNEWS. 3 Patches – 4 Critical – 53+ CVEs Affected – Kernel, AD, SharePoint, Office, and more MS13-067 - Microsoft SharePoint Server, Remote Code