| New User, Welcome! Login |
Next Page >>
computer systems
http://www.acis.org.co/index.php?id=1068
- Call for Papers-
National Computer and Information Security
Conferences ACIS 2008
Bogot, D.C - COLOMBIA
Luis Angel Arango Library
June 18, 19 and 20/2008
For complete post with images, please visit
http://securethoughts.com/2009/11/using-blended-browser-threats-involving-ch
rome-to-steal-files-on-your-computer/
SECURETHOUGHTS.COM ADVISORY
=============================================
- CVE-ID : CVE-2009-XXXX (Chrome) {Pending}
- Release Date : November 05, 2009
- Severity : Medium
- Discovered by : Inferno
* The operating system locale
* The processor architecture
* The version number of the tool
* An indicator that notes whether the tool is being run by Microsoft Update, Windows Update, Automatic Updates, the Download Center, or from the Web site
* An anonymous GUID
* A cryptographic one-way hash (MD5) of the path and file name of each malicious software file that is removed from the computer
If apparently malicious software is found on the computer, the tool prompts you to send information to Microsoft beyond what is listed here. You are prompted in each of these instances, and this information is sent only with your consent. The additional information includes the following: * The files that are suspected to be malicious software. The tool will identify the files for you.
* A cryptographic one-way hash (MD5) of any suspicious files that are detected.
You can disable the reporting feature. For information about how to disable the reporting component and how to prevent this tool from sending information to Microsoft, click the following article umber to view the article in the Microsoft Knowledge Base:
891716 (http://support.microsoft.com/kb/891716/) Deployment of the Microsoft Windows Malicious Software Removal Tool in an enterprise environment
Transmission Control Protocol/Internet Protocol is the basic
communication language or protocol of the Internet. It can also be used
as a communications protocol in a private network (either an intranet or
an extranet). When you are set up with direct access to the Internet,
your computer is provided with a copy of the TCP/IP program just as
every other computer that you may send messages to or get information
from also has a copy of TCP/IP.
TCP/IP is a two-layer program. The higher layer, Transmission Control
Protocol, manages the assembling of a message or file into smaller
number conversion routines. Using this vulnerability an attacker
could craft some malicious JavaScript code containing a very long
string to be converted to a floating point number which would result
in improper memory allocation and the execution of an arbitrary memory
location. This vulnerability could thus be leveraged by the attacker
to run arbitrary code on a victim's computer (CVE-2009-1563).
Security researcher Jeremy Brown reported that the file naming scheme
used for downloading a file which already exists in the downloads
folder is predictable. If an attacker had local access to a victim's
computer and knew the name of a file the victim intended to open
*Vulnerability Description*
Internet Explorer introduces the concept of URL Security Zones, which
basically define a set of privileges for web applications (such as, for
example, accessing and/or modifying the local computer files) depending
on their level of trustworthiness.
Issues have been found in the way that security policies are applied
when a URI is specified in the UNC form:
'\\MACHINE_NAME_OR_IP\PATH_TO_RESOURCE'
Microsoft may have inadvertently disclosed a potential Microsoft backdoor for law
enforcement earlier this week. To explain this all, here is the layman term of a backdoor
from Wikipedia:
A backdoor in a computer system (or cryptosystem or algorithm) is a method of
bypassing normal authentication, securing remote access to a computer, obtaining access
to plaintext, and so on, while attempting to remain undetected. The backdoor may take
the form of an installed program (e.g., Back Orifice), or could be a modification to an
existing program or hardware device.
many customers would be more likely to believe the vendor. If the
n.runs claim is true, then many customers might be less protected than
they would if German laws did not have the chilling effect they are
demonstrating.
It should be noted that in 2000, a veritable Who's Who of computer
security - including Bruce Schneier, Gene Spafford, Matt Bishop, Elias
Levy, Alan Paller, and other well-known security professionals -
published a statement of concern about the Council of Europe draft
treaty on Crime in Cyberspace, which I believe was the predecessor to
the legal changes that have been happening in Germany:
> many customers would be more likely to believe the vendor. If the
> n.runs claim is true, then many customers might be less protected than
> they would if German laws did not have the chilling effect they are
> demonstrating.
>
> It should be noted that in 2000, a veritable Who's Who of computer
> security - including Bruce Schneier, Gene Spafford, Matt Bishop, Elias
> Levy, Alan Paller, and other well-known security professionals -
> published a statement of concern about the Council of Europe draft
> treaty on Crime in Cyberspace, which I believe was the predecessor to
> the legal changes that have been happening in Germany:
> many customers would be more likely to believe the vendor. If the
> n.runs claim is true, then many customers might be less protected than
> they would if German laws did not have the chilling effect they are
> demonstrating.
>
> It should be noted that in 2000, a veritable Who's Who of computer
> security - including Bruce Schneier, Gene Spafford, Matt Bishop, Elias
> Levy, Alan Paller, and other well-known security professionals -
> published a statement of concern about the Council of Europe draft
> treaty on Crime in Cyberspace, which I believe was the predecessor to
> the legal changes that have been happening in Germany:
>> many customers would be more likely to believe the vendor. If the
>> n.runs claim is true, then many customers might be less protected than
>> they would if German laws did not have the chilling effect they are
>> demonstrating.
>>
>> It should be noted that in 2000, a veritable Who's Who of computer
>> security - including Bruce Schneier, Gene Spafford, Matt Bishop, Elias
>> Levy, Alan Paller, and other well-known security professionals -
>> published a statement of concern about the Council of Europe draft
>> treaty on Crime in Cyberspace, which I believe was the predecessor to
>> the legal changes that have been happening in Germany:
-- CVE ID:
CVE-2010-1223
-- Affected Vendors:
Computer Associates
-- Affected Products:
Computer Associates XOsoft High Availability
Computer Associates XOsoft Replication
-- CVE ID:
CVE-2010-1223
-- Affected Vendors:
Computer Associates
-- Affected Products:
Computer Associates XOsoft High Availability
Computer Associates XOsoft Replication
would like to present their latest IT
security research.
-- Industry experts who would like to influence
what is taught in undergraduate and graduate
computer security curricula.
-- Industry experts who can update academia on
the current state of real-world IT security.
-- Computer, Security, and Privacy Law experts
http://labs.idefense.com/intelligence/vulnerabilities/
Apr 03, 2008
I. BACKGROUND
Computer Associates Alert Notification Server is used by several CA
products, including eTrust Integrated Threat Management, to provide
notifications to console users.
II. DESCRIPTION
Discovered by:
Gary Simat of Total Server Solutions LLC
Randy Kent of Sevaa Group Inc
Steps to reproduce:
1) login to the APC as a user from computer 1
2) Then attempt to login from another computer (we will call this computer 2), the User Name and Password will not be editable, so just click Log On. It will say someone is already logged in. leave this page up.
3) logout of computer 1
4) simply hit refresh on computer 2 and select to resend the headers. you will be logged in as the previously authenticated user.
when you surf to a web site, but not from anything you intentionally
install.
I'm sorry, we'll have to agree to disagree. I don't see the new attack
vector here. I, the attacker, have to make you download my malicious
trojan program, which you install on your computer.
I see a new piece of software that might entice users to download more
programs, but that's it. The only increased risk you have is that
Sidebar is installed by default on every desktop, which makes it more
coveted by hackers. But if you're worried that your users will click
when you surf to a web site, but not from anything you intentionally
install.
I'm sorry, we'll have to agree to disagree. I don't see the new attack
vector here. I, the attacker, have to make you download my malicious
trojan program, which you install on your computer.
I see a new piece of software that might entice users to download more
programs, but that's it. The only increased risk you have is that
Sidebar is installed by default on every desktop, which makes it more
coveted by hackers. But if you're worried that your users will click
Computer Associates BrightStor HSM r11.5 Multiple Vulnerabilities
iDefense Security Advisory 09.27.07
http://labs.idefense.com/intelligence/vulnerabilities/
Sep 27, 2007
I. BACKGROUND
Computer Associates BrightStor Hierarchical Storage Manager (HSM) is an
application used to create a tiered storage solution for enterprises
Dear Colleagues,
Please find attached the Call for Papers for EC2ND 2010, the
sixth European Conference on Computer Network Defense, which will
be held in Berlin, Germany, October 28-29, 2010.
Please feel free to distribute this announcement. We apologize if
you receive multiple copies of this message.
Best Regards,
from DoS holes in browsers, which I wrote about in 2008 in my articles
Dangers of DoS attacks on browsers and Dangers of resources consumption DoS
attacks. But mostly browser developers ignore to fix these issues.
But in this case it's not only attack on browsers, but on the whole user's
computer - because it's blocking of whole computer and full resource
consumption. Which is working in many browsers, including their last
versions. So browser developers with their neglect to this problem make
possible attacks on the whole users' systems. It was one of leitmotifs of my
advisory.
>> (6.0.2900.2180), Internet Explorer 8 (8.0.7600.16385), Google Chrome
>> 1.0.154.48 and Opera 9.52.
>>
>> In all mentioned browsers occurs blocking and overloading of the system
>> from
>> starting of Opera, which appeared as news-client at my computer, and IE8
>> crashes (at computer without Opera). And in Opera the attack is going
>> without blocking, only resources consumption (more slowly then in other
>> browsers).
>>
>> http://websecurity.com.ua/uploads/2010/Firefox,%20IE%20&%20Opera%20DoS%20Exploit.html
> (6.0.2900.2180), Internet Explorer 8 (8.0.7600.16385), Google Chrome
> 1.0.154.48 and Opera 9.52.
>
> In all mentioned browsers occurs blocking and overloading of the
> system from
> starting of Opera, which appeared as news-client at my computer, and IE8
> crashes (at computer without Opera). And in Opera the attack is going
> without blocking, only resources consumption (more slowly then in other
> browsers).
>
> http://websecurity.com.ua/uploads/2010/Firefox,%20IE%20&%20Opera%20DoS%20Exploit.html
> consumption DoS
> attacks. But mostly browser developers ignore to fix these issues.
>
> But in this case it's not only attack on browsers, but on the whole
> user's
> computer - because it's blocking of whole computer and full resource
> consumption. Which is working in many browsers, including their last
> versions. So browser developers with their neglect to this problem make
> possible attacks on the whole users' systems. It was one of leitmotifs
> of my
> advisory.
Dear Colleagues,
Please find attached the Call for Papers for EC2ND 2010,
the sixth European Conference on Computer Network Defense,
which will be held in Berlin, Germany, October 28-29, 2010.
Please feel free to distribute this announcement. We apologize
if you receive multiple copies of this message.
Best Regards,
previous versions, it must work in 3.5.x and 3.6.x), Internet Explorer 6
(6.0.2900.2180), Internet Explorer 8 (8.0.7600.16385), Google Chrome
1.0.154.48 and Opera 9.52.
In all mentioned browsers occurs blocking and overloading of the system from
starting of Opera, which appeared as news-client at my computer, and IE8
crashes (at computer without Opera). And in Opera the attack is going
without blocking, only resources consumption (more slowly then in other
browsers).
http://websecurity.com.ua/uploads/2010/Firefox,%20IE%20&%20Opera%20DoS%20Exploit.html
number conversion routines. Using this vulnerability an attacker
could craft some malicious JavaScript code containing a very long
string to be converted to a floating point number which would result
in improper memory allocation and the execution of an arbitrary memory
location. This vulnerability could thus be leveraged by the attacker
to run arbitrary code on a victim's computer (CVE-2009-1563).
Security researcher Jeremy Brown reported that the file naming scheme
used for downloading a file which already exists in the downloads
folder is predictable. If an attacker had local access to a victim's
computer and knew the name of a file the victim intended to open
>>> (6.0.2900.2180), Internet Explorer 8 (8.0.7600.16385), Google Chrome
>>> 1.0.154.48 and Opera 9.52.
>>>
>>> In all mentioned browsers occurs blocking and overloading of the system
>>> from
>>> starting of Opera, which appeared as news-client at my computer, and IE8
>>> crashes (at computer without Opera). And in Opera the attack is going
>>> without blocking, only resources consumption (more slowly then in other
>>> browsers).
>>>
>>> http://websecurity.com.ua/uploads/2010/Firefox,%20IE%20&%20Opera%20DoS%20Exploit.html
3. *Vulnerability Description*
Autodesk Softimage [2] is a 3D computer graphics application for
producing 3D computer graphics, 3D modeling, and computer animation.
Autodesk Softimage by default saves a .scntoc file along with the
scene content tree. The scene TOC (scene table of contents) is an
XML-based file that contains scene information. When you open a scene
file, Softimage looks for a corresponding scene TOC file and
number conversion routines. Using this vulnerability an attacker
could craft some malicious JavaScript code containing a very long
string to be converted to a floating point number which would result
in improper memory allocation and the execution of an arbitrary memory
location. This vulnerability could thus be leveraged by the attacker
to run arbitrary code on a victim's computer (CVE-2009-1563).
Security researcher Jeremy Brown reported that the file naming scheme
used for downloading a file which already exists in the downloads
folder is predictable. If an attacker had local access to a victim's
computer and knew the name of a file the victim intended to open
Next Page>>
|
|
|
