PREVIOUS GNEWS. 16 Patches / 49 Vulns – 4 Critical Affecting most everything Other updates, MSRT,...

Post on 17-Jan-2016

219 views 0 download

Preview:

Click to see full reader
Report this document
SHARE

Transcript of PREVIOUS GNEWS. 16 Patches / 49 Vulns – 4 Critical Affecting most everything Other updates, MSRT,...

PREVIOUS GNEWS

• 16 Patches / 49 Vulns – 4 Critical• Affecting most everything

• Other updates, MSRT, Defender Definitions, Junk Mail Filter

– MS10-071 - Cumulative Security Update for Internet Explorer– MS10-072 - SafeHTML , Could Allow Information Disclosure– MS10-073 - Windows Kernel-Mode Drivers, Elevation of Privilege – MS10-074 - Microsoft Foundation Classes, Remote Code Execution – MS10-075 - Media Player Network Sharing Service, Remote Code

Execution– MS10-076 - Embedded OpenType Font Engine, Remote Code Execution – MS10-077 -.NET Framework, Remote Code Execution – MS10-078 - OpenType Font (OTF) Format Driver, Elevation of Privilege– MS10-079 - Microsoft Word, Remote Code Execution– MS10-080 - Microsoft Excel, Remote Code Execution– MS10-081 - Windows Common Control Library, Remote Code Execution – MS10-082 - Windows Media Player, Remote Code Execution– MS10-083 - COM Validation in Windows Shell and WordPad, Remote Code

Execution– MS10-084 - Windows Local Procedure Call, Elevation of Privilege– MS10-085 - SChannel, Denial of Service (2207566)– MS10-086 - Windows Shared Cluster Disks, Tampering

Patch Tuesday

• Oracle, 85 patches

• Adobe, 3 patches (23 holes in Reader)– APSB10-21 Adobe Reader and Acrobat– APSB10-22 Adobe Flash Player– APSA10-03 Flash Player

• Apple,– Security Update 2010-006– QuickTime 7.6.8

• Cisco– 14 patches, multiple products– NTP and SSLVPN, DoS– Multiple issues with H.323

• Browsers– YES

Holes / Patches

Corp. Hell

• Apple patents parental controls

• Apple trademarks “there’s an app for that”

Papers Hakin9 is out (email, ipv6, voip)

(IN)Secure Magazine #27 is out

OWSP ZAP (Zed Attack Proxy)A fork of Paros Proxy

Updates

Gfirst 6 presentations posted (Aug 2010)http://www.us-cert.gov/GFIRST/presentations.html

Lite coverage of HITBhttp://www.themalaysianinsider.com/features/article/securing-the-future/

Past Cons

ToorConSan Diego CA

20 – 22 Oct 2010

DayConDayton, OH

22 – 23 Oct 2010

SecTorToronto CA

25 – 27 Oct 2010

B-SidesDallas, TX6 Nov 2010

Con

All images scavenged without permission

All images scavenged without permission

Top related

pp89-93 MS10
 Documents
MS10-0200-1 Rev d (10-2010) DCN0530 - ABB Group · Maximum voltage and current ratings ... float of the switch is allowed to move freely up and down with ... MS10-0200-1 Rev d (10-2010)
 Documents
Audio for Next-Generation Broadcast Services: The Dolby MS10 Multistream Decoder Solution · 2010-04-21 · Audio for Next-Generation Broadcast Services: The Dolby MS10 Multistream
 Documents
THE UNFORTUNATE REALITY OF INSECURE LIBRARIES OWASP Libraries.pdf · What’s More Secure: Vulns or No Vulns? Library A Library B CVE-2007-1234 OSVDB 12345 OSVDB 31337 CVE-2009-5678
 Documents
XXXXXXXX Co....Website: TOEFL PAPER* TOLIMO IELTS uivalent MSRT MCHE TOEFL Com uter TOEFL IBT E
 Documents
Leslie Partridge, RRA, MSRT(R) - srpeweb.org
 Documents
Exploiting Internal Network Vulns via the Browser Using ...€¦ · Exploiting Internal Network Vulns via the Browser Using BeEF Bind Michele Orru Ty Miller RuxCon 2012. Ty Miller
 Documents
Rios (2013) medical device vulns
 Business
Pres msrt-en-17.10.14
 Technology
Week2 Apr f1 Sci Irna 1 1 Ms10
 Documents
PREVIOUS GNEWS. 4 Patches / 5 Vulns – 3 Critical Affecting Winodow (all of them), Office, IE, SharePoint,.net Other updates, MSRT, Defender Definitions,
 Documents
MSRT BlackList 1392 07
 Documents
Deserialization vulns - Zeronights 2017 · 2017-11-27 · Various representations of objects: - JSON - XML - YAML - Binary - … Java has ~ 30 libs (formats, speed, capabilities,
 Documents
Text (MS10-21)
 Documents
Effect of Mind Sound Resonance Technique (MSRT)-Yoga Based ...
 Documents
MSRT 159 - Annual Report - 2014-15
 Documents
Information Security Partners, LLC iSECPartners.com Attacking AJAX Web Applications Zane Lackey zane@isecpartners.com Blackhat Japan October 5, 2006 Vulns.
 Documents
Rooting your internals - Exploiting Internal Network Vulns via the Browser Using BeEF Bind
 Technology
Turner.issa la.mobile vulns.150604
 Technology
President’s Award · Web viewBy participating in any part of an MSRT Activity, you grant MSRT permission to use your name, likeness and statements about the ACTIVITY in photographs,
 Documents

Copyright © 2022 FDOCUMENTS