Archive for November 12th, 2008

Dump Acrobat Reader v8 and get onto v9

Published November 12, 2008 patch , security , soe Leave a Comment
Tags: ,

Summary [1]
Critical vulnerabilities have been identified in Adobe Reader and Acrobat 8.1.2 and earlier versions. These vulnerabilities would cause the application to crash and could potentially allow an attacker to take control of the affected system.
Adobe Reader 9 and Acrobat 9 are not vulnerable to these issues. Adobe recommends users of Acrobat 8 and Adobe Reader 8 who can’t update to Adobe Reader 9 install the 8.1.3 update to protect themselves from potential vulnerabilities.

The vulnerability is actively being exploited in the wild with very little detection/protection from the AntiVirus products.

The payload is in a JavaScript object embedded in the PDF document [4]

Avoid the problems and the risk and upgrade to Adobe Reader 9 asap!

[1] APSB08-19 Security Update available for Adobe Reader 8 and Acrobat 8 (2008-Nov-04) [Adobe]
[2] Acrobat continued activity in the wild (2008-Nov-11) [SANS]
[3] Adobe Reader Vulnerability – part 2 (2008-Nov-10) [SANS]
[4] Adobe Reader vulnerability exploited in the wild (2008-Nov-07) [SANS]

Patch Tuesday Wednesday (NOV-2008)

Published November 12, 2008 microsoft , patch , Patch_Tuesday , security Leave a Comment

This month we have 1xCritical and 1xImportant for our patching pleasure, all of which are detected via Microsoft Baseline Security Analyzer (MS BSA 2.1). A restart will be required.

Bulletin KB number Description Severity Impact Software
MS08-068 957097 Vulnerability in SMB Could Allow Remote Code Execution Remote Code Execution Important Microsoft Windows
MS08-069 955218 Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution Remote Code Execution Critical Microsoft Windows

For this month:

This month Microsoft released two bulletins which repair a total of four vulnerabilities. One of these vulnerabilities (MS08-068) has been seen implemented in exploit frameworks and has likely been used in in-the-wild attacks. …
Out of the two patches this month, one was related to desktop / client-side applications while the other is network-based. The threats are directed mostly towards desktop users for this month. … — eEye [5]

PATCH NOW:
MS08-068 – Exploit code is currently public for this vulnerability on Windows XP.

LINKS:
[1.] November 2008 Monthly Bulletin Release (2008-Nov-11) [MS]
[2.] November Black Tuesday Overview (2008-Nov-11) [SANS]
[3.] Microsoft Security Bulletin Summary for November 2008 (2008-Nov-11) [MS]
[4.] Microsoft security updates for November 2008 (2008-Nov-11) [MS]
[5.] Microsoft Patch Disclosure – November 2008 (2008-Nov-11) [eEye]

November 2008
M T W T F S S
« Oct   Dec »
 12
3456789
10111213141516
17181920212223
24252627282930

Categories

License

Creative Commons License
This work is licensed under a Creative Commons Attribution-Share Alike 2.5 Australia License.

del.icio.us

Flickr Photos

LaserForce

Birthday Dragon

Birthday Dragon

Birthday Dragon

Birthday Dragon

New Bow

Day 10 | stars | #FMSphotoadayMAY 2013

2013 Mother's Day Classic

More Photos

Twittering

Cluster Map

Locations of visitors to this page
hacker emblem
Follow

Get every new post delivered to your Inbox.

Join 27 other followers