Google Chrome 14.0.835.202 has been released for Windows, Mac, and Linux. The update includes fixes for 7 vulnerabilities, all of which are classified as high or critical.
Google Chrome 14.0.835.163 has been released for Windows, Mac, and Linux. The update includes fixes for 32 vulnerabilities, 15 of which are classified as high or critical.
Wow. The security enhancements in Windows 8 look fantastic. Details are available here: http://blogs.msdn.com/b/b8/archive/2011/09/15/protecting-you-from-malware.aspx.
A few things spring to mind:
1). The changes to the Windows 8 heap will significantly raise the bar for exploit developers, and pentest tool vendors. The days of serious and widespread remotely exploitable buffer overflow bugs are mostly behind us. Most of those have been hunted to extinction over the past several years. Today’s cutting edge OS exploit development work is largely in the heap overflow arena, and things will get dramatically more difficult for heap exploit developers as the …
Google Chrome 13.0.782.215 has been released for Windows, Mac, and Linux. The update includes fixes for 11 vulnerabilities, 10 of which are classified as high or critical.
Mozilla has released Firefox versions 6.0 and 3.6.20. These new versions fix several security-related memory corruption bugs (http://www.mozilla.org/security/announce/2011/mfsa2011-29.html).
Firefox version 5.x is now off support. You should be running only 3.6.x or 6.x in production now.
Adobe has released Shockwave Player version 126.96.36.1999 for Windows and Apple OS X. This update contains several security updates as outlined in the link below.
Adobe has released version 10.3.183.5 of their Flash player product for Windows, Linux, Apple OS X, and Solaris. This update includes security fixes.
Wow. This, in addition to MANDIANT’s recently released Redline tool, will amount to another devastating blow to HBGary Responder Pro sales and market share. How can you justify the $9000 USD cost for a Responder Pro license plus annual maintenance if one of these free tools works for the platforms you work on?
The following platforms are currently supported:
32bit Windows XP Service Pack 2 and 3
32bit Windows 2003 Server Service Pack 0, 1, 2
32bit Windows Vista Service Pack 0, 1, 2
32bit Windows 2008 Server Service Pack 1, 2 (there is no SP0)
32bit Windows 7 Service Pack 0, …
Apple has released Quicktime Player 7.7 for Windows and Apple Mac OS X 10.5.8. Version 7.7 includes fixes for 13 security issues.
Google Chrome 13.0.782.107 has been released for Windows, Mac, and Linux. The update includes fixes for 30 vulnerabilities, 14 of which are classified as high.
A remotely exploitable security bug in Citrix XenApp and XenApp has been released. Details are at the link below.
- all versions of XenApp and XenApp Fundamentals (formerly known as Access Essentials) up to and including version 6
- XenDesktop 4 with, or without, Feature Packs 1 or 2
These updates address security-related bug in iOS.
Apple has released Safari 5.1 and 5.0.6 (for Apple Mac and Windows). This new version contains several security-related fixes.
Oracle has released its July 2011 Critical Patch Update. The security patches affect the following products:
Oracle Database 11g Release 2, versions 188.8.131.52, 184.108.40.206
Oracle Database 11g Release 1, version 220.127.116.11
Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5
Oracle Database 10g Release 1, version 10.1.0.5
Oracle Secure Backup, version 10.3.0.3
Oracle Fusion Middleware 11g Release 1, versions 18.104.22.168.0, 22.214.171.124.0, 126.96.36.199.0
Oracle Application Server 10g Release 3, version 10.1.3.5.0
Oracle Application Server 10g Release 2, version 10.1.2.3.0
Oracle Business Intelligence Enterprise Edition, versions 10.1.3.4.1, 188.8.131.52
Oracle Identity Management 10g, versions 10.1.4.0.1, 10.1.4.3
RIM releases fixes for DoS and information disclosure vulnerabilities in their BlackBerry Enterprise Server software. BlackBerry smartphones aren’t affected.
The following BES versions are affected:
- BlackBerry® Enterprise Server version 5.0.0 for Microsoft Exchange, IBM Lotus Domino and Novell GroupWise (with the BlackBerry® Administration API component installed as an option only)
- BlackBerry® Enterprise Server Express 5.0.0 for Microsoft Exchange and IBM Lotus Domino (with the BlackBerry® Administration API component installed as an option only)
- BlackBerry® Enterprise Server Express versions 5.0.1, 5.0.2 and 5.0.3 for Microsoft Exchange
- BlackBerry® Enterprise Server Express versions 5.0.2 …
These updates close the latest jailbreaking hole in iOS.
An exploit has been published on exploit-db.com for a remotely exploitable bug in BlueCoat BCAAA. BlueCoat BCAAA is used by ProxySG and ProxyOne.
The following ProxySG versions include the fix:
5.3.x – no patch available yet
4.3 – SGOS 184.108.40.206 patch release.
No fix has been released yet for ProxyOne.
Siemens has announced a password security problem in an authentication mechanism used in their SIMATIC S7 series of programmable controllers. No patch is available yet. Until a fix is available, some defensive guidance is available at the reference link below. The following Siemens SIMATIC S7 platforms are affected:
WordPress version 3.1.4 contains both normal bugfixes and security-related changes. I upgraded this blog already to the 3.1.4 release level and it seems to work fine.
Apple has released Java updates for Mac OS X 10.6 Update 5 and OS X 10.6 Update 10. Details are at the links below.
Google Chrome 12.0.742.112 has been released for Windows, Mac, and Linux. The update includes fixes for 7 vulnerabilities, 6 of which are classified as high.
A commercial grade exploit has been released for CVE-2011-1220 in IBM Tivoli Endpoint lcfd.exe in the White Phosphorous add-on pack for Immunity CANVAS.
From Apple’s release:
APPLE-SA-2011-06-23-1 Mac OS X v10.6.8 and Security Update 2011-004
Mac OS X v10.6.8 and Security Update 2011-004 are now available and address the following:
Available for: Mac OS X v10.5.8, Mac OS X Server v10.5.8
Impact: When connected to Wi-Fi, an attacker on the same network may be able to cause a system reset
Description: An out of bounds memory read issue existed in the handling of Wi-Fi frames. When connected to Wi-Fi, an attacker on the same network may be able to cause a system reset. This issue does not affect Mac OS X v10.6 CVE-ID
Available for: …
Citrix has released security updates for their Citrix EdgeSight for Active Application Monitoring and Citrix EdgeSight for Load Testing products. Citrix recommends customers upgrade their Citrix EdgeSight for Active Application Monitoring installations to version 5.3 SP2 or later, and Citrix EdgeSight for Load Testing installations to version 3.8.1 or later. Details are available at the link below.
More outstanding work from Virustotal: It looks like a Win32 version of YARA has been posted on the YARA project’s page on code.google.com. Unlike classic YARA, no Python runtime support is required. Note the interesting PID argument to YARA.exe.
usage: yara [OPTION]… [RULEFILE]… FILE | PID
-t print rules tagged as and ignore the rest. Can be used more than once.
-i print rules named …
Mozilla has released Firefox versions 5.0 and 3.6.18. These new versions fix several security-related bugs.
BTW, Firefox version 4.x is now off support, as is 3.5.x. You should be running only 3.6.x or 5.x in production now.
Adobe has released version 10.3.181.26 of their Flash player product for Windows, Linux, Apple OS X, and Solaris. Adobe reports this update includes a fix for a vulnerability that is being exploited in the wild.
Google Chrome 12.0.742.100 has been released for Windows, Mac, and Linux. The update includes fixes for 1, which is classified as critical.
Adobe has released versions 10.1, 9.4.5, and 8.3 of their Acrobat Reader product to address a set of security vulnerabilities. Details are available at the link below.
So far, one patch out of this months set – MS11-044 – has a known exploit in the wild.
UPDATE – 17 June 2011 – Symantec is reporting exploits for MS11-050 being found in circulation: http://www.symantec.com/connect/de/blogs/vulnerability-june-ms-tuesday-wild