To secure a computer system running Adobe Shockwave a user would therefor have to uninstall Adobe Shockwave, perform a system restart and install the latest version of Shockwave after the reboot.

The Security Bulletin that has been published at the Adobe website gives little information about the vulnerability other than it can be remotely exploited and that it only affects the Microsoft Windows operating system. Users are encouraged to download the latest version of Adobe Shockwave on the program’s website.

It should also be noted that this vulnerability targets only Adobe Shockwave and not Adobe Flash. Thanks goes to Dante for sending me the information per email.

Related posts

• Game for the Weekend 3 iSketch (2)
• Adobe Flash Player Clickjacking Vulnerability (1)
• You’d be Stupid Not To… (31)
• You better stop using Internet Explorer for now (18)
• Vulnerabilities in latest Flash version (4)

Many file and image hosts filter dangerous file types. If you tried to upload a Jar file to most of them you would get an error message stating that the file type was not supported. Many however fail to analyze the file itself and simply reject files based on their extension which opens the door for this attack.

That’s a pretty dangerous exploit. Imagine someone who uses this to upload a new avatar to popular websites like Facebook or Myspace (two examples, I have not checked if the two use advanced upload filters). He could do all sorts of things with the Java Applet once users open up his profile page.

The only valid defense against this type of attack is to disable Java on the computer for the moment. Sun is already working on a fix although the researchers say that it is not Sun’s fault that this vulnerability exists.

Related posts

• Send Windows to Nirvana with an animated cursor (1)
• You better stop using Internet Explorer for now (18)
• Windows XP: Default Internet Browser Per User Profile (0)
• Which will it be ? Opera ? Firefox ? IE ? (38)
• Web Browser: Firefox 3.1 Beta 3 (4)

According to their research Internet Explorer is leading the field with a market share of 78.3% followed by Firefox with 16.1%, Safari with 3.4% and Opera with 0.8%. This means in daily numbers 1108 million Internet Explorer, 227 million Firefox, 48 million Safari and 11 million Opera browsers.

If you analyze that data to find out how many of the users are using the latest version of the browser the picture changes drastically and provides another explanation why Internet Explorer is still the number one target for malicious software.

Only 52.5% of all Internet Explorer users are running the latest browser version compared to 92.2% of all Firefox users, 90.1% of the Opera users and 70.2% of the Safari users. The numbers are assuming that the latest version of the browser is the most secure one.

This leads to my initial question. Are you running the latest browser version of the browser that you are using ?

Related posts

• You better stop using Internet Explorer for now (18)
• Xenocode Web Browser Sandbox (0)
• Web Browser Popularity (51)
• Web Browser Memory Usage Benchmark Gets It All Wrong (15)
• Web Browser Have Impact On Battery Life (1)

Sounds scary ? There is no fix for this vulnerability yet other than to disable Javascript or allow it only on trusted domains. Some researchers claim that other browsers are affected as well but have failed to deliver proof for those claims yet. It would not hurt however to use the Firefox add-on No Script for instance.

The vulnerability can be tested on this page if you visit it with Internet Explorer. It opens a new window and records the user input on that domain. There is an explanation from the same researcher available.

Related posts

• Are you running the latest browser version? (4)
• Xenocode Web Browser Sandbox (0)
• Why you should restrict Cookie Access (4)
• Web Browser Popularity (51)
• Web Browser Memory Usage Benchmark Gets It All Wrong (15)

The solution given by the security company that discovered the vulnerability is to load only subtitles from trusted source or no subtitles at all until an official fix has been posted by the developers ov VLC.

Another option would be to switch to another player for the time being. SMPlayer, my favorite player, is another good choice which does not have this vulnerability.

Related posts

• VLC Media Player 1.0 Released (9)
• VLC Media Player (2)
• Send Windows to Nirvana with an animated cursor (1)
• You better stop using Internet Explorer for now (18)
• Yahoo marks dangerous search results (4)

Affected are all Real Player versions running under Internet Explorer. Microsoft has an article up that explains Killbits and what they do. They basically prevent Active X controls from being loaded in Internet Explorer. I still would recommend to either switch to Firefox or Opera temporarily or uninstall Real Player for the time until a security patch has been created.

Researcher Elazar Broad has posted to the Full Disclosure mailing list a so-called heap overflow vulnerability that makes it possible for an attacker to modify heap blocks after they are freed and overwrite certain registers.

The killbits that should be disabled are the following:

• 2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93
• CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA

This will definitely have the effect that some Real Player functions will stop working properly.

Related posts

• Microsoft Internet Explorer Security Update (3)
• You better stop using Internet Explorer for now (18)
• Validation removed from Internet Explorer 7 (5)
• Use Multiple Internet Explorer Versions Simultaneously (10)
• Uninstall Internet Explorer 8 (33)

Basically said, uTorrent will crash if a user connects to it that sends a software version that is to long to be handled. This results in a crash of uTorrent. The attacker does not need to use Bittorrent at all to do that, a connection to the port that is being used by Bittorrent sending the to-long software version and a valid torrent hash is enough.

Code execution on the other hand is not possible. The uTorrent team reacted in less than one day and published a new version of their software 1.7.6 that handles the DOS vulnerability and three minor issues as well.

While it is not very likely that someone will actually exploit the vulnerability it is still advised to update immediately.

via Torrentfreak

Related posts

• uTorrent Error: Access is Denied Windows 7 (15)
• uTorrent Download Accelerator (20)
• uTorrent 2.0 Beta Released (1)
• uTorrent 1.8.2 Final (1)
• uTorrent 1.6 final released (0)

You might be interested in which Windows editions are effected and which are not. It would also be nice to know if your browsers and e-mail clients are vulnerable and can be used to exploit the system. Vulnerable are Windows Vista, Windows XP SP2 and Windows 2000 SP4. Several other Microsoft operating systems are affected as well like Windows Server 2003 but I think the first three cover most Windows editions that my readers use. Exploitation happens completely silently.

Take a look at the demonstration video below. It shows how Windows Vista enters a endless Crash-Restart loop caused by a malicious ani file which was dropped on the desktop. Attacks will most likely occur over the Internet.

A security company has released a temporary fix for the solution until an official Microsoft patch gets released.

Related posts

• Vista Part 3 (19)
• Triple Boot Vista, XP and Ubuntu (5)
• Things to check before switching to Vista Part 1 (1)
• Superfast Shutdown for XP and Vista (4)
• Security and Privacy Complete (0)

SQL Injection Attacks by Example gives you a detailed view how experts used the technique to break into a customers system.

“There have been other papers on SQL injection, including some that are much more detailed, but this one shows the rationale of discovery as much as the process of exploitation.”

Related posts

• SQL Injection Walkthrough (1)
• You better stop using Internet Explorer for now (18)
• VLC Player Vulnerability (2)
• Send Windows to Nirvana with an animated cursor (1)
• Real Player Internet Explorer vulnerability (2)