New User, Welcome!     Login

Internet Security Systems

RE: New Paper: More than 600 million users surf at high risk

"insecurity iceberg"

Authors
- Stefan Frei, Communication Systems Group, ETH Zurich, Switzerland
- Thomas Duebendorfer, Google Switzerland GmbH
- Gunter Ollmann, IBM Internet Security Systems, USA
- Martin May, Communication Systems Group, ETH Zurich, Switzerland

Paper Download:
http://www.techzoom.net/insecurity-iceberg

RE: New Paper: More than 600 million users surf at high risk

"insecurity iceberg"

Authors
- Stefan Frei, Communication Systems Group, ETH Zurich, Switzerland
- Thomas Duebendorfer, Google Switzerland GmbH
- Gunter Ollmann, IBM Internet Security Systems, USA
- Martin May, Communication Systems Group, ETH Zurich, Switzerland

Paper Download:
http://www.techzoom.net/insecurity-iceberg

[TZO-06-2009] IBM Proventia - Generic bypass (Limited disclosure - see details)

Please see "Common misconceptions" for more information.

I. Background
~~~~~~~~~~~~~
IBM Internet Security Systems (ISS) offers a comprehensive portfolio 
of IT security products and services for organizations of all sizes. 

IBM Proventia Network Mail Security System and IBM Proventia 
Network Mail Security System Virtual Appliance provide spam 
control and preemptive protection for your messaging

Re: New Paper: More than 600 million users surf at high risk

> "insecurity iceberg"
>
> Authors
> - Stefan Frei, Communication Systems Group, ETH Zurich, Switzerland
> - Thomas Duebendorfer, Google Switzerland GmbH
> - Gunter Ollmann, IBM Internet Security Systems, USA
> - Martin May, Communication Systems Group, ETH Zurich, Switzerland
>
> Paper Download:
> http://www.techzoom.net/insecurity-iceberg
>

New Paper: More than 600 million users surf at high risk

"insecurity iceberg"

Authors
- Stefan Frei, Communication Systems Group, ETH Zurich, Switzerland
- Thomas Duebendorfer, Google Switzerland GmbH
- Gunter Ollmann, IBM Internet Security Systems, USA
- Martin May, Communication Systems Group, ETH Zurich, Switzerland

Paper Download:
http://www.techzoom.net/insecurity-iceberg

[ GLSA 200907-06 ] Adobe Reader: User-assisted execution of arbitrary code

Multiple vulnerabilities have been reported in Adobe Reader:

* Alin Rad Pop of Secunia Research reported a heap-based buffer
  overflow in the JBIG2 filter (CVE-2009-0198).

* Mark Dowd of the IBM Internet Security Systems X-Force and Nicolas
  Joly of VUPEN Security reported multiple heap-based buffer overflows
  in the JBIG2 filter (CVE-2009-0509, CVE-2009-0510, CVE-2009-0511,
  CVE-2009-0512, CVE-2009-0888, CVE-2009-0889)

* Arr1val reported that multiple methods in the JavaScript API might

VMSA-2007-0006 Critical security updates for all supported versions of VMware ESX Server, VMware Server, VMware Workstation, VMware ACE, and VMware Player

     This release fixes several vulnerabilities in the DHCP server
     that could enable a specially crafted packets to gain system-level
     privileges. (CVE-2007-0061, CVE-2007-0062, CVE-2007-0063)

     Thanks to Neel Mehta and Ryan Smith of the IBM Internet Security
     Systems X-Force for discovering and researching these
     vulnerabilities.

     Hosted products
     ---------------
     VMware Workstation 6.0.0 upgrade to version 6.0.1 (Build# 55017)


Copyright © 1995-2012 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!