Archive for June 13th, 2012

Wednesday WIN (2012-Jun-13)

Published June 13, 2012 Wednesday WIN Leave a Comment
Tags:

Game of Thrones theme mashup

Shmoocon 2012: Lessons of the Kobayashi Maru: Cheating is Fundamental

.

Embracing the Kobayashi Maru: Why You Should Teach Your Students to Cheat Gregory Conti and James Caroland [PDF]

Thank You Hater!

Adobe Patches (JUN-2012)

Published June 13, 2012 Adobe , patch , Patch_Tuesday , security Leave a Comment

Adobe has released one patches for this month’s ‘Patch Tuesday’ this patch is for ColdFusion.

(There was also the patch for Adobe Flash Player APSB12-14 earlier this month).

Bulletin Description Severity Impact Software
APSB12-15 Security update: Hotfix available for ColdFusion 9.0.1 and earlier Remote Code Execution Important ColdFusion 9.0.1 and earlier
LINKS:
[1.] Adobe – Security bulletins and advisories (2012-Jun-12) [Adobe]
[2] Adobe June 2012 Black Tuesday patches (2012-Jun-12) [SANS]

Patch Tuesday Wednesday (Jun-2012)

Published June 13, 2012 microsoft , patch , Patch_Tuesday , security Leave a Comment

This month Microsoft have released seven (7) security bulletins of which three (3) have a maximum rating of Critical, and four (4) having a maximum rating of Important.

For Update Tuesday we’re releasing seven security bulletins – three Critical-class and four Important – addressing 26 unique CVEs to further improve the security postures of Microsoft Windows, Internet Explorer, Dynamics AX, Microsoft Lync, and the Microsoft .NET Framework. In addition to the security bulletins, we are releasing an automatic updater feature for Windows Vista and Windows 7 untrusted certificates.
This new automatic updater feature provides a mechanism that allows Windows to specifically flag certificates as untrusted. With this new feature, Windows will check daily for updated information about certificates that are no longer trustworthy. In the past, movement of certificates to the untrusted store required a manual update. This new automatic update mechanism, which relies on a list of untrusted certificates known as a Disallowed Certificate Trust List (CTL), is detailed on the PKI blog. We encourage all customers to install this new feature immediately. [1]

Bulletin KB number Description Severity Impact Software
MS12-036 2685939 Vulnerability in Remote Desktop Could Allow Remote Code Execution Remote Code Execution Critical Microsoft Windows
MS12-037 2699988 Cumulative Security Update for Internet Explorer Remote Code Execution Critical Microsoft Windows, Internet Explorer
MS12-038 2706726 Vulnerability in .NET Framework Could Allow Remote Code Execution Remote Code Execution Critical Microsoft Windows, Microsoft .NET Framework
MS12-039 2707956 Vulnerabilities in Lync Could Allow Remote Code Execution Remote Code Execution Important Microsoft Lync
MS12-040 2709100 Vulnerability in Microsoft Dynamics AX Enterprise Portal Could Allow Elevation of Privilege Elevation of Privilege Important Microsoft Dynamics AX
MS12-041 2709162 Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege Elevation of Privilege Important Microsoft Windows
MS12-042 2711167 Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege Elevation of Privilege Important Microsoft Windows

PATCH NOW:
* MS12-036
* MS12-037 (CVE-2012-1875 has active exploits against it according to the bulletin.)

June 2012
M T W T F S S
« May   Jul »
 123
45678910
11121314151617
18192021222324
252627282930  

Categories

License

Creative Commons License
This work is licensed under a Creative Commons Attribution-Share Alike 2.5 Australia License.

del.icio.us

Flickr Photos

LaserForce

Birthday Dragon

Birthday Dragon

Birthday Dragon

Birthday Dragon

New Bow

Day 10 | stars | #FMSphotoadayMAY 2013

2013 Mother's Day Classic

More Photos

Twittering

Cluster Map

Locations of visitors to this page
hacker emblem
Follow

Get every new post delivered to your Inbox.

Join 27 other followers