* You are viewing the archive for March, 2011

Google Chrome 10.0.648.204 Released

Google Chrome 10.0.648.204 has been released for Windows, Mac, and Linux. The update includes fixes for 6 vulnerabilities, all of which are classified as high or critical.

References:
http://sites.google.com/a/chromium.org/dev/Home/chromium-security
http://www.google.com/chrome/index.html?hl=en&brand=CHMA&utm_campaign=en&utm_source=en-ha-na-us-bk&utm_medium=ha

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter (free enterprise vulnerability alert feed): twitter.com/patchmanagement

Share

Microsoft Releases KB2524375 to Address Hacked Comodo Certs

KB2524375 was issued to address the rogue SSL certificate issue described at http://www.comodo.com/Comodo-Fraud-Incident-2011-03-23.html.

References:
http://www.microsoft.com/technet/security/advisory/2524375.mspx

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter: twitter.com/patchmanagement

Share

Mozilla Firefox 3.6.16 and 3.5.18 Released

Mozilla has released Firefox versions 3.6.16 and 3.5.18. These new versions contain updates to address the rogue SSL certificate issues described at http://www.comodo.com/Comodo-Fraud-Incident-2011-03-23.html.

References:
http://www.mozilla.com/en-US/firefox/3.6.16/releasenotes/
http://www.mozilla.com/en-US/firefox/3.5.18/releasenotes/

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter: twitter.com/patchmanagement

Share

Adobe Reader 9.4.3 Released

Adobe Reader version 9.4.3 has been released. 9.4.3 fixes a security issue in authplay.dll and three other bugs. The corresponding security patch in the 10.x series won’t come out until mid-June.

The fix for the printing issue introduced in 9.4.2 made it into 9.4.3. From the release notes at http://kb2.adobe.com/cps/837/cpsid_83708/attachments/Acrobat_Reader_ReleaseNote_9.4.3.pdf:

“Printing bug: Some users are experiencing printing issues with 9.4.2 as described here: http://kb2.adobe.com/cps/891/cpsid_89178.html. The 9.4.3 release resolves these issues.”

The full list of bugfixes included in 9.4.3 are:
2809151: The printing problems that some users of 9.4.2 have experienced are fixed by replacing the Adobe.Acrobat.Dependencies.manifest file … Continue Reading

Share

Apple Mac OSX 10.6.7 Released

Apple Mac OSX version 10.6.7 has been released. It includes fixes for several security issues.

References:
http://support.apple.com/kb/HT4581

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter (free enterprise vulnerability alert feed): twitter.com/patchmanagement

Share

Adobe Flash Player 10.2.153.1 Released

Adobe has released version 10.2.153.1 of their Flash player product for Windows.

References:
http://www.adobe.com/support/security/bulletins/apsb11-02.html

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter: twitter.com/patchmanagement

Share

Google Chrome 10.0.648.134 Released

Google Chrome 10.0.648.134 has been released for Windows, Mac, and Linux. The update includes fixes for 1 vulnerability. This vulnerability is classified as high.

References:
http://sites.google.com/a/chromium.org/dev/Home/chromium-security
http://www.google.com/chrome/index.html?hl=en&brand=CHMA&utm_campaign=en&utm_source=en-ha-na-us-bk&utm_medium=ha

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter (free enterprise vulnerability alert feed): twitter.com/patchmanagement

Share

Google Chrome 10.0.648.133 Released

Google Chrome 10.0.648.133 has been released for Windows, Mac, and Linux. The update includes fixes for 1 vulnerability. This vulnerability is classified as high.

References:
http://sites.google.com/a/chromium.org/dev/Home/chromium-security
http://www.google.com/chrome/index.html?hl=en&brand=CHMA&utm_campaign=en&utm_source=en-ha-na-us-bk&utm_medium=ha

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter (free enterprise vulnerability alert feed): twitter.com/patchmanagement

Share

Apache Tomcat 7.0.11 Fixes Security Constraint Bypass Issue

Apache Tomcat 7.0.11 fixes a security constraint bypass bug. Tomcat versions 7.0 through 7.0.10 are vulnerable.

References:
http://tomcat.apache.org/security-7.html

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter: twitter.com/patchmanagement

Share

Apple iOS 4.3 Released

The new Apple iOS 4.3 has been released and contains 12 security updates.

References:
http://lists.apple.com/archives/security-announce/2011/Mar/msg00003.html

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter: twitter.com/patchmanagement

Share

Apple Safari 5.0.4 Released

Apple has released Safari 5.0.4 (for Apple Mac). This new version contains several security-related fixes.

References:
http://lists.apple.com/archives/security-announce/2011/Mar/msg00004.html

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter: twitter.com/patchmanagement

Share

Apple Mac OS X 10.5 and OSX X 10.6 Java Security Updates Released

Apple has released security updates for Java for Mac OS X 10.5 Update 9 and Java for Mac OS X 10.6 Update 4. For details, please refer to the links below.

Relevant Url(s):
[OS X 10.5] http://support.apple.com/kb/HT4563
[OS X 10.6] http://support.apple.com/kb/HT4562

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter (free enterprise vulnerability alert feed): twitter.com/patchmanagement

Share

Joomla! 1.6.1 Fixes Several Security Issues

Joomla! version 1.6.1 includes addresses several security issues. Exploit code is available for at least one of the bugs fixed.

References:
http://www.joomla.org/announcements/release-news/5350-joomla-161-released.html

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter (free enterprise vulnerability alert feed): twitter.com/patchmanagement

Share

Microsoft March 2011 Patch Tuesday Patches Released

There are three bulletins in the Microsoft March 2011 Patch Tuesday patch set.

They are:
MS11-015: Vulnerabilities in Windows Media Could Allow Remote Code Execution (2510030)
http://www.microsoft.com/technet/security/bulletin/ms11-015.mspx
Severity: Critical

MS11-016: Vulnerability in Microsoft Groove Could Allow Remote Code Execution (2494047)
http://www.microsoft.com/technet/security/bulletin/ms11-016.mspx
Severity: Important

MS11-017: Vulnerability in Remote Desktop Client Could Allow Remote Code Execution (2508062)
http://www.microsoft.com/technet/security/bulletin/ms11-017.mspx
Severity: Important

References:
http://isc.sans.edu/diary.html?storyid=10510

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter (free enterprise vulnerability alert feed): twitter.com/patchmanagement

Share

VMware ESX/ESXi Service Location Protocol Daemon (SLPD) Local Denial Of Service Vulnerability

VMware has released a fix for a local denial of service vulnerability affecting the Service Location Protocol Daemon (SLPD) part of their ESX/ESXi products. This is a local exploit, and as of 08 March 2011 no known exploit code exists.

References:
http://www.vmware.com/security/advisories/VMSA-2011-0004.html

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter (free enterprise vulnerability alert feed): twitter.com/patchmanagement

Share

Google Chrome 10.0.648.127 Released

Google Chrome 10.0.648.127 has been released for Windows, Mac, and Linux. The update includes fixes for 23 vulnerabilities, 15 of which are classified as high or critical.

References:
http://sites.google.com/a/chromium.org/dev/Home/chromium-security
http://www.google.com/chrome/index.html?hl=en&brand=CHMA&utm_campaign=en&utm_source=en-ha-na-us-bk&utm_medium=ha

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter (free enterprise vulnerability alert feed): twitter.com/patchmanagement

Share

Upcoming Security Changes for Android Market

Hopefully, from a security perspective, Google will move their Android market to more of the walled garden similar to Apple’s App Store. The developer and application vetting that Apple does seems to be working reasonably well in practice. The first reference link below is a statement from Google announcing some upcoming changes they intend to make to the Android Market due to recent problems (DroidDream) with malicious content being posted. Google has already removed those applications (putting REMOVE_ASSET to good use). And interestingly we see a beneficial use of INSTALL_ASSET, where Google used that facility to … Continue Reading

Share

IBM WebSphere 7.0.0.15 Includes Security Fixes

IBM’s WebSphere 7.0.0.15 (version 7.0 Fix Pack 15) release includes several security fixes. Details can be found at the links below. Exploit code is available for at least one of the security-related bugs.

References:
http://www-01.ibm.com/support/docview.wss?rs=180&uid=swg27014463#70015
http://www-01.ibm.com/support/docview.wss?rs=180&uid=swg24028875

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter (free enterprise vulnerability alert feed): twitter.com/patchmanagement

Share

Exploit Released for JBoss CVE-2010-0738 Vulnerability

An exploit is now publicly available for remote JBoss vulnerability CVE-2010-0738.

References:
https://access.redhat.com/kb/docs/DOC-30741
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0738
http://www.exploit-db.com/exploits/16274/

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter: twitter.com/patchmanagement

Share

Mozilla Firefox 3.6.15 Released

Mozilla has released Firefox versions 3.6.15. This new versions fixes an important problem with Java. There are no security updates in this version beyond what was in 3.6.14. You should abort any deployments to move to 3.6.14 in favor of the fixed 3.6.15 version.

References:
http://releases.mozilla.org/pub/mozilla.org/firefox/releases/3.6.15/

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter: twitter.com/patchmanagement

Share

Saving Money on Antivirus Subscription Renewals

Brian Krebs has published a good article that is of value to millions of home users who are currently overpaying to renew their antivirus licenses every year. He discusses the new Renewal Buddy site (http://www.renewalbuddy.com/), whose purpose is to help home users save money purchasing or renewing licenses for their antivirus products.

That is good information, but Renewal Buddy makes some dubious recommendations at times for alternative antivirus solutions. For the most effective antivirus support currently in existence, typical home users of Windows should stick with either Avira Antivir if they prefer a free tool, or one of … Continue Reading

Share

Apple iTunes 10.2 Includes Security Updates

Apple has released version 10.2 of their iTunes software for Windows 7, Vista, and Windows XP. 10.2 includes several security-related fixes.

References:
http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html
http://support.apple.com/kb/HT1222

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter: twitter.com/patchmanagement

Share

Mozilla Firefox 3.6.14 and 3.5.17 Released

Mozilla has released Firefox versions 3.6.14 and 3.5.17. These new versions contain updates for both security issues and several bugs.

References:
http://releases.mozilla.org/pub/mozilla.org/firefox/releases/3.6.14/
http://releases.mozilla.org/pub/mozilla.org/firefox/releases/3.5.17/
http://www.mozilla.com/en-US/

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter: twitter.com/patchmanagement

Share

Google Chrome 9.0.597.107 Released

Google Chrome 9.0.597.107 has been released for Windows, Mac, and Linux. The update includes fixes for 19 vulnerabilities, 16 of which are classified as high or critical.

References:
http://sites.google.com/a/chromium.org/dev/Home/chromium-security
http://www.google.com/chrome/index.html?hl=en&brand=CHMA&utm_campaign=en&utm_source=en-ha-na-us-bk&utm_medium=ha

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter (free enterprise vulnerability alert feed): twitter.com/patchmanagement

Share

Citrix Secure Gateway 3.1.4 Remote Vulnerability Fix Released

Citrix has released an updated to address a remotely exploitable bug in their Citrix Secure Gateway 3.1.4 product. The fix for the 3.1.x line is to upgrade to 3.1.5. Version 3.2.0 and above isn’t vulnerable.

No public exploit is known to exist as of this writing (28 Feb 2011).

References:
http://support.citrix.com/article/CTX128168

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter: twitter.com/patchmanagement

Share

Commercial Root Exploit Exists for Google Android 2.2

If you support Google Android in your organization, you might want to consider disallowing (e.g. through Good Technologies or by Exchange ActiveSync reporting) Android versions 2.2 and below until those units can be upgraded. Why? There is now commercially available (Immunity CANVAS) exploit code to gain root access to Android 2.2.

This attack against Android 2.2 is a two-step process. The first step takes advantage of a Android Webkit CSS rule deletion vulnerability, and the second step leverages that access to use a privilege escalation vulnerability to gain root access to the device.

Android 2.3 isn’t affected.

email: david @ sharpesecurity.com
website: … Continue Reading

Share