[Security Update] November 2011 Microsoft Super Tuesday



Microsoft had a very light month for their mo regularly scheduled monthly update. Four CVEs were addressed in four separate bulletins. Here's our take on this month's critical and important bulletins.

MS11-083 : Vulnerability in TCP/IP Could Allow Remote Code Execution

This bulletin covers a critical severity in tcpip.sys for recent versions of Windows (Vista and later). A large number of specially crafted UDP packets can overflow a counter causing an inadvertent freeing of a memory structure. The resulting memory corruption can lead to a denial of service via bugcheck or potentially even kernel mode code execution. Blocking of unused UDP ports at the perimeter and/or in the Windows firewall can help to mitigate the problem. Although the potential exists for a worm, the large amount of traffic required to exploit this vulnerability wouldn't make it an attractive vehicle.

MS11-085 : Vulnerability in Windows Mail and Windows Meeting Space Could Allow Remote Code Execution


This bulletin covers a dll hijacking vulnerability in a component of WIndows Mail. An attacker who entices a victim to open associated files such as a .eml or .wcinv on a remote share can supply an attacker controlled dll which will be loaded and executed. You've seen these vulnerabilities before, you know what to do. Block SMB and WebDAV at the network perimeter, adjust DLL loading behavior, etc.

MS11-086 : Vulnerability in Active Directory Could Allow Elevation of Privilege

SSL and certificate issues are definitely in vogue. The vulnerability addressed in this update is in Active Directory using LDAP over SSL. AD doesn't correctly check the certificate revocation list and can allow an attacker to authenticate with a revoked certificate for a valid domain user

Comments

Post a Comment

Để lại góp ý của bạn để blog của mình hoàn thiện hơn :))

Popular posts from this blog

[Hack crack] Tổng hợp Google Dork

Image
/includes/header.php?systempath= /Gallery/displayCategory.php?basepath= /index.inc.php?PATH_Includes= /nphp/nphpd.php?nphp_config[LangFile]= /include/db.php?GLOBALS[rootdp]= /ashnews.php?pathtoashnews= /ashheadlines.php?pathtoashnews= /modules/xgallery/upgrade_album.php?GALLERY_BASEDIR= /demo/includes/init.php?user_inc= /jaf/index.php?show= /inc/shows.inc.php?cutepath= /poll/admin/common.inc.php?base_path= /pollvote/pollvote.php?pollname= /sources/post.php?fil_config= /modules/My_eGallery/public/displayCategory.php?basepath= /bb_lib/checkdb.inc.php?libpach= /include/livre_include.php?no_connect=lol&chem_absolu= /index.php?from_market=Y&pageurl= /modules/mod_mainmenu.php?mosConfig_absolute_path= /pivot/modules/module_db.php?pivot_path= /modules/4nAlbum/public/displayCategory.php?basepath= /derniers_commentaires.php?rep= /modules/coppermine/themes/default/theme.php?THEME_DIR= /modules/coppermine/include/init.inc.php?CPG_M_DIR= /modules/coppermine/themes/c
Read more

[Security] Internet blackout scheduled in protest of SOPA

Last night I spent an inordinate amount of time on reddit looking at pictures of baby hedgehogs, reading a Q&A with a theoretical physicist, and catching up on the intended blackouts protesting the Stop Online Piracy Act (SOPA) and its sister bill, Protect IP Act (PIPA). Haven’t heard about SOPA? It’s no wonder, since the mainstream media has been curiously silent on the issue. Maybe it’s because most of the big news outlets are owned by companies supporting SOPA. Nonetheless, reddit and others, such as Tucows, Cheezburger, game developer Red 5 Studios, and hacktivist group Anonymous, hope to make the issue broadly known with a coordinated internet blackout scheduled for January 18th. Things will really get interesting if the “nuclear option” is implemented where the likes of Wikipedia, Google, Facebook, Ebay, Yahoo!, LinkedIn, Tumblr, Mozilla, Twitter, and PayPal “go simultaneously dark” to join them in protest of the bill. You may have heard a blip of a news story during the
Read more