Author Topic: SECURITY WARNINGS & Notices - Please post them here  (Read 2861197 times)

0 Members and 2 Guests are viewing this topic.

Alan Baxter

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #480 on: June 07, 2010, 02:57:43 PM »
Thank you, Pondus, but all that was reported here three days ago. In case you missed it, that report included information that the Flash Player 10.1 Release Candidate does not appear to be vulnerable and its immediate installation is recommended.

http://forum.avast.com/index.php?topic=52252.msg509931#msg509931
Security Advisory for Flash Player, Adobe Reader and Acrobat
http://blogs.adobe.com/psirt/2010/06/security_advisory_for_adobe_re.html
Quote
A Security Advisory has been posted in regards to a new Adobe Reader, Acrobat and Flash Player issue (CVE-2010-1297). A critical  vulnerability exists in Flash Player 10.0.45.2 and earlier versions for Windows, Macintosh, Linux and Solaris operating systems, and the authplay.dll component that ships with Adobe Reader and Acrobat 9.x for Windows, Macintosh and UNIX operating systems. This vulnerability could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being actively exploited in the wild against both Adobe Flash Player, and Adobe Reader and Acrobat.

The Flash Player 10.1 Release Candidate available on http://labs.adobe.com/technologies/flashplayer10/ does not appear to be vulnerable.

Adobe Reader and Acrobat 8.x are confirmed not vulnerable. Mitigations for Adobe Reader and Acrobat 9.x are included in the Security Advisory.

YoKenny

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #481 on: June 07, 2010, 03:10:46 PM »
Hi Logos,

Thanks for confirming this, for our users. Secunia PSI cannot solve all our patching/upgrading problems.
And now has three bugs: http://www.theregister.co.uk/2010/06/02/secunia_bug_check_tool/
(only form a problem when you feed up wrongly yourself...)

polonus
Make sure you have Secunia PSI V1.5.0.2
http://secunia.com/vulnerability_scanning/personal

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #482 on: June 08, 2010, 01:30:04 AM »
Hi malware fighters,

Targeted attack in an Exel document: http://www.symantec.com/connect/blogs/fifa-world-cup-used-lure-victims-targeted-attack

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Hermite15

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #483 on: June 10, 2010, 11:24:47 AM »
Quote
Hackers expose 114,000 iPad users through AT&T site
http://www.zdnet.co.uk/news/security-threats/2010/06/10/hackers-expose-114000-ipad-users-through-atandt-site-40089189/

Quote
A group of hackers exploited a hole in an AT&T website to get email addresses of about 114,000 iPad users, including what appears to be top officials in government, finance, media, technology and military
.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #484 on: June 10, 2010, 08:31:46 PM »
Hi malware fighters,

To be protected against the facebook link invaders: http://forums.informaction.com/viewtopic.php?f=8&t=4454

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #485 on: June 10, 2010, 08:36:58 PM »
Google finds serious hole in Windows XP: http://seclists.org/fulldisclosure/2010/Jun/205

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #486 on: June 10, 2010, 10:24:12 PM »
Hi malware fighters,

SQL-mass infection reported - http://blog.sucuri.net/2010/06/mass-infection-of-iisasp-sites-robint-us.html

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37506
  • Not a avast user
« Last Edit: June 11, 2010, 11:37:00 AM by Pondus »

YoKenny

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #488 on: June 11, 2010, 01:56:09 PM »

Critical vulnerability in Adobe Flash Player, Adobe Reader and Acrobat - UPDATED
http://www.norman.com/security_center/security_center_archive/2010/83636/en

From the Flash Player site
Quote
Adobe recommends all users of Adobe Flash Player 10.0.45.2 and earlier versions upgrade to the newest version 10.1.53.64
I would remove all versions of Flash Player by using the Flash Player uninstaller:
http://kb2.adobe.com/cps/141/tn_14157.html

Make sure to have all browsers sessions closed when running the uninstaller and do a reboot to permit locked files to be removed.

http://get.adobe.com/flashplayer <== make sure that you un-select the Free Google Toolbar if you do not want it.
« Last Edit: June 11, 2010, 02:04:47 PM by YoKenny »

Jtaylor83

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #489 on: June 11, 2010, 04:54:27 PM »

Critical vulnerability in Adobe Flash Player, Adobe Reader and Acrobat - UPDATED
http://www.norman.com/security_center/security_center_archive/2010/83636/en

From the Flash Player site
Quote
Adobe recommends all users of Adobe Flash Player 10.0.45.2 and earlier versions upgrade to the newest version 10.1.53.64
I would remove all versions of Flash Player by using the Flash Player uninstaller:
http://kb2.adobe.com/cps/141/tn_14157.html

Make sure to have all browsers sessions closed when running the uninstaller and do a reboot to permit locked files to be removed.

http://get.adobe.com/flashplayer <== make sure that you un-select the Free Google Toolbar if you do not want it.

Google toolbar no longer included in the installer, I think. I had problems last night of installing the new Flash plugin. Instead, I downloaded the Active X flash player which is for IE.

YoKenny

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #490 on: June 11, 2010, 08:08:22 PM »

Google toolbar no longer included in the installer, I think. I had problems last night of installing the new Flash plugin. Instead, I downloaded the Active X flash player which is for IE.
It sure is.

I sure would modify my profile if I advertise that I am Granddadsgiant (at) aol.com
« Last Edit: June 11, 2010, 08:13:42 PM by YoKenny »

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37506
  • Not a avast user
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #491 on: June 12, 2010, 02:59:35 AM »
Vulnerability in Windows Help and Support Center Could Allow Remote Code Execution
http://www.microsoft.com/technet/security/advisory/2219475.mspx

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #492 on: June 12, 2010, 04:40:16 PM »
Hi malware fighters,

Install the Fix it for this issue: http://support.microsoft.com/kb/2219475
Certainly soon there will be malware seen to exploit this for Windows XP SP2 & 3,

pol
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48524
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #493 on: June 12, 2010, 06:58:01 PM »
Before using the fixit solution, make sure your System is vulnerable.

Vista and Win7 certainly aren't.  :)
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline nmb

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 3054
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #494 on: June 12, 2010, 07:57:53 PM »
Before using the fixit solution, make sure your System is vulnerable.
How would someone do that?

Quote
Vista and Win7 certainly aren't.  :)

Certainly soon there will be malware seen to exploit this for Windows XP SP2 & 3,