Security Updates 20100622

Opera 10.54 Released for Windows The web browser Opera has released an update to address multiple security issues when used on Windows platforms. There are five listed security fixes, four of which have no details given. We advise customers that use this web browser to update as soon as possible.

Apple Quietly Includes Anti-Malware in latest OS X update While Apple products have had a reputation for eluding malware and virus threats, time might be catching up with them. Apple quietly added some Anti-Malware functionality to the latest update for Mac OS X 10.6.4. This is a proactive move by Apple to help maintain their reputation in being safe from malware.

Week In Review for June 14 – June 20, 2010 AlertCon Lowered For MS Windows Help Alert The Threat Level, raised to AlertCon 2 to draw awareness to the Microsoft Windows Help Center Protocol Handler vulnerability, has been lowered to AlertCon 1. Although exploitation continues, our analysts are seeing minimal traffic associated with that vulnerability. We assert that vigilance should be maintained and advise continued monitoring for attacks that exploit this weaknesses.

Sophisticated Flash Player Attack in Circulation IBM X-Force has received a report of a sophisticated attack occurring in the wild targeting a vulnerability in Flash Player (CVE-2010-1297). This issue was disclosed earlier this month and the current attack involves placing a specially-crafted Flash file within a PDF file. The IBM signature PDF_Swf_Detected is detecting this attack. As a conservative measure, customers may want to set this signature to blocking. While this change may also block legitimate traffic, this type of traffic (a Flash file embedded in a PDF file) is not commonly seen.

Apple iTunes 9.2 Released, Addresses Several Security Issues Apple has released iTunes 9.2 in preparation for the release of iPhone 4 next week. This updated release also addresses three security issues all of which have the potential to be exploited to allow arbitrary code execution. This update is available through Apple’s website or through the update tool provided in iTunes itself.

Remote Root Level Vulnerability Found in Samba The Samba team has announced a new memory vulnerability that allows remote root level access. This only impacts older versions of Samba (Versions 3.0.x – 3.3.12), with versions higher then 3.4.0 not being vulnerable. We are advising customers using Samba to verify which version(s) are in production and updating accordingly.

http://www.samba.org/samba/security/CVE-2010-2063

New IBM XPU Addresses Latest MS Vulnerability (CVE-2010-1885) IBM has released an XPU and a Protection Alert to address the Microsoft Windows Help Center vulnerability that currently has the AlertCon raised to Level 2. Due to the ease of exploitability we urge customers to upgrade to this XPU as soon as possible to detect this latest threat.

Writeups on Facebook Password Reset Spam Spammers are starting to leverage the pervasiveness of social networking and social media forums. There have been several writeups on the use of spam in the form of e-mails that look like they are coming from Facebook notifying users to reset their passwords. Links in these emails often contain malware in various forms. The best defense comes in the form of user education and the use of updated Anti-Virus/Anti-Malware software.

 Apple Releases Security Update Bundle for Mac OS X 10.6 Apple has released a security update for Mac OS X 10.6 that addresses 23 separate vulnerabilities, many of which allow remote execution capability. This update is available through the Apple Downloads site or through the Software Update tool. PLEASE NOTE: This update includes an older version of Adobe’s Flash Player that has some security vulnerabilities. If users have already upgraded to the latest version, then the older version will not be installed. We encourage customers running on this platform to apply these updates and verify their version of Adobe Flash Players soon as possible.

http://support.apple.com/kb/HT4188

http://support.apple.com/downloads/

 http://blogs.adobe.com/psirt/2010/06/apple_security_update_2010-004.html

 PHP 0day Vulnerability A presentation at the SyScan conference has made a PHP vulnerability public that allows remote attackers to execute arbitrary code via unserialized user input. Few details are currently available outside of the conference presentation. The PHP vulnerability is currently unpatched. We will continue investigating and provide more information as it becomes available.

http://twitter.com/i0n1c/status/16447867829

https://bugzilla.redhat.com/show_bug.cgi?id=605641

US Supreme Court Rules on Employer/Employee privacy case In a case where a local police department searched an employee’s text messages, the court ruled that the employee’s work provided phone and the data associated with it did not have an expectation to privacy. The unanimous ruling provides some clarity on the issue of privacy in the workplace with regards to electronic communications. We advise customers to review their corporate policies with legal counsel to verify their privacy statements are current with this ruling. http://www.latimes.com/news/nationworld/nation/la-na-court-worker-texting-20100618,0,7772406.story http://www.infolawgroup.com/2010/06/articles/workplace-privacy/quon-us-supreme-court-rules-against-privacy-on-employerissued-devices/



Share and Enjoy:
  • Print
  • Digg
  • Sphinn
  • del.icio.us
  • Facebook
  • Mixx
  • Google Bookmarks
  • Blogplay
Posted on June 22, 2010 at 9:24 AM by root · Permalink
In: Security

Leave a Reply

You must be logged in to post a comment.