Security Alerts
Security Content of QuickTime 7.6
January 23, 2009FROM: US-CERT
Apple released QuickTime 7.6 to correct multiple vulnerabilities affecting QuickTime for Mac OS X and Windows. Attackers may be able to exploit these vulnerabilities to execute arbitrary code or cause a denial of service. For more information go here.
Microsoft Windows Does Not Disable AutoRuns Properly
January 21, 2009FROM: US-CERT
Disabling AutoRuns on Microsoft Windows systems can help prevent the spread of malicious code. However, Microsoft's guidelines for disabling AutoRun are not fully effective, which could be considered a vulnerability.
Microsoft Updates-January 2009
January 13, 2009FROM: Microsoft
Microsoft has released one update for the month of January that affects the Windows Operating system.
Vulnerability in Internet Explorer Could Allow Remote Code Execution
December 17, 2008FROM: Microsoft
Microsoft released a security advisory regarding a security issue with Internet Explorer.
Apple Security Update for Mac OS X v10.5.6
December 15, 2008FROM: Apple
Apple released a security update for Mac OS X v10.5.6. For more information check out this website.
Microsoft Updates-December 2008
December 10, 2008FROM: Microsoft
Microsoft has released eight updates for the month of November that affects the Windows Operating system and Office Suties.
Microsoft Updates-November 2008
November 11, 2008FROM: Microsoft
Microsoft has released two updates for the month of November that affects the Windows Operating system and Office Suties.
Microsoft Updates for Multiple Vulnerabilities
October 14, 2008FROM: US-CERT
Microsoft has released updates that address vulnerabilities in Microsoft Windows, Internet Explorer, and Microsoft Office. These vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code. Update your Microsoft programs now (see link below).
Microsoft Updates-October 2008
October 9, 2008FROM: Microsoft
Microsoft has released 4 Critical updates for the month of October that affects Windows Operating System and Software.
Student Failed Login Attempts
September 15, 2008FROM: EKU
Because of the growing security risks on the internet and the fact that more and more of students' personal and academic data are online we have implemented a logon lockout policy for all student user accounts. This policy is to protect students from outside sources hacking and taking control of their account. The lockout policy works as follows:
- OWA: The account gets locked after 12 failed consecutive logon attempts.
- Blackboard: The account get locked after 3 failed consecutive logon attempts.
- Other systems: The account should get locked after 3 failed consecutive logon attempts.
- The duration of the lockout is 10 minutes.
- Failed logon attempts are cleared after 1 minute. There is a counter that keeps track of attempts. This means that if you fail twice and get it on the third try, you have a fail counter of 2. After 1 minute this counter decreases by one.
- The helpdesk (call x3000) can unlock your account within the 10 minute lockout period if needed.
Microsoft Updates-September 2008
September 9, 2008FROM: Microsoft
Microsoft has released 4 Critical updates for the month of September that affects Windows Operating System and Microsoft Office Suites and Software.
University Communications via University Email Accounts
June 2, 2008FROM: EKU
The Board of Regents approved University Policy 11.2.1 University Communications via University Email Accounts. This policy is effective immediately. For more information find it online here.
Microsoft Updates-April 2008
April 8, 2008FROM: Microsoft
Microsoft has released 5 critical and 3 important updates for the month of April that affect Windows, Office and Internet Explorer in Windows 2000, XP and Vista.
Microsoft Updates-March 2008
March 12, 2007FROM: Microsoft
Microsoft has released 4 critical updates for the month of March.
Microsoft Updates-February 2008
February 12, 2007FROM: Microsoft
Microsoft has released 6 critical and 5 important updates for the month of February.
Mozilla Releases Firefox 2.0.0.12
February 12, 2007FROM: Mozilla
Firefox 2 has been released by Mozilla and should push through as an update for current Firefox users.
Macintosh OS X 10.5.2 Update
February 11, 2008FROM: Apple
This update is recommended for all users running Mac OS X 10.5 or 10.5.1 Leopard.
Security Update for Adobe Reader and Acrobat 8
February 7, 2008FROM: Adobe
There is an update for Acrobat and Adobe Reader 8 available from Adobe.
Active X Control Flaws Affect MySpace and Facebook Users
January 31, 2008FROM: SANS
Vulnerabilities in two ActiveX controls that Facebook and MySpace members use to upload images to their pages could be exploited to crash Internet Explorer (IE) and possibly allow remote code execution, which could in turn allow attackers to take control of the machine on which IE runs or steal data. The ActiveX controls in question are based on a commercial control known as Image Uploader.
Attackers Abuse Google Blogger
January 25, 2008FROM: Dark Reading
Hackers are currently littering Google's Blogger site with phoney blogs--some containing malware, pornographic images, or pure spam.
Firefox Flaw Could Leak User Data
January 23, 2008FROM: Mozilla
Affects: Firefox Browswer
Mozilla is working on a browser fix for a flaw that could give attackers unauthorized access to data on victim's machines.
Apple Quicktime Vulnerabilities
January 16, 2008FROM: CERT
Affects: Apple Macintosh and Windows machines running Quicktime prior to 7.4
There are multiple vulnerabilities that can be exploited in Apple Quicktime prior to 7.4. Upgrade to Quicktime 7.4.
Microsoft Windows January 2008 Updates
January 16, 2008FROM: Microsoft
Affects: Windows
There is a critical and important update you should get for your Windows system.
Microsoft Windows November 2007 Updates
November 13, 2007FROM: Microsoft
Affects: Windows 2000, XP
There is a critical and important update you should get for your system if you have 2000 or XP.
AOL IM Flaw
October 2, 2007FROM: Core Security
Affects: AIM 6.1 (and beta 6.2); AIM Pro; and AIM Lite
It's just been discovered that these versions of AIM contain a vulnerability that could be exploited so an attacker could remotely execute code on a user's computer and exploit Internet Explorer bugs without user interaction.
Zero-Day PDF Flaw in Adobe Reader
September 25, 2007FROM: US-CERT
A zero-day, critical flaw in Adobe Acrobat Reader could be exploited with a maliciously crafted PDF file to take control of PCs. Beware of opening PDFs!
AOL Instant Messenger Bug
September 17, 2007An unspecified vulnerability in AOL instant messenger (AIM) 6.1.141.2 allows remote attackers to write arbitrary html to a notification window via unspecified vectors in circumstances "when the window of orgin is not the main focus."
Public Exploit Code Targeting Firefox and QuickTime
September 12, 2007FROM: US-CERT
This exploit code targets users with Firefox and QuickTime installed. The exploit allows a remote, unauthenticated attackers to execute arbitrary commands on an affected system.
Microsoft's September 11 Updates
September 11, 2007Check out Microsoft's Security Bulletin Summary page and download everything you need!
USAJOBS and Monster Resume Database Compromise
August 30, 2007From US-CERT: The Monster.com database compromise that targeted subscriber names, addresses, phone numbers and email addresses also affects USAJOBS.gov subscribers as Monster Worldwide is the technology provider for USAJOBS.
New Storm Worm Trojan Propagation Techniques
August 21, 2007From US-CERT: There are several new propagation techniques used by the Storm Worm Trojan to spread. The new variants arrive as either an email message claiming to contain a link to a adult pictures, or as credentials for a membership-based website, asking you to login to change your temporary ID and password. The messages contain links to malicious websites that when visited, install malware on the user's system.
Zero-Day Bug in Yahoo! Messenger
August 17, 2007A heap overflow bug has been discovered in Yahoo! Messenger version 8.1.0.413 which allows attackers to inject malicious code into a victim's computer. The bug is triggered when the user accepts a specially crafted webcam invite. Yahoo! has confirmed the vulnerability and is working to develop a fix. In the meantime users are advised not to accept webcam invites from unknown sources and network administrators should block outgoing Yahoo! Messenger webcam traffic on port 5100.
Microsoft's August 14 Updates
August 14, 2007Check out our update download page and download everything you need!
Apple Releases Security Updates for QuickTime
March 6, 2007Systems Affected: Apple QuickTime on systems running Apple Mac OS X and/or Microsoft Windows
From: CERT
Apple QuickTime contains multiple vulnerabilities that can be exploited for a remote attack to execute arbitrary code or cause a denial-of-service condition. SOLUTION: Upgrade to QuickTime 7.1.5. Apple users can upgrade via Apple Update. Microsoft Windows users will need to upgrade by downloading the newest version and installing it.
February Microsoft Updates
February 13, 2007Systems Affected: Windows XP SP2, Windows 2000 SP4
Click on "Downloads" link above and to the the Microsoft Windows Update section to find update to protect your system.
2007 Daylight Savings Time Update!
February 13, 2007Systems Affected: Windows XP SP2, Windows 64
Beginning this year there will be changes to the Daylight Savings Time (DST) calendar we're all use to. The U.S. Energy Policy Act of 2005 has extended DST in the U.S. by approximately four weeks. This means that this year, DST will start three weeks earlier on March 11, 2007 and end one week later on November 4, 2007.
What does this mean to you and your computer? Unless you apply certain updates, it is possible that the time zone settings for your computer's system clock may be incorrect during this four week period. To fix the problem for Windows systems go here. To update Apple Macintosh computer go here.
Vulnerability in Vector Markup Language Could Allow Remote Code Execution (929969)
Microsoft January 9, 2007Systems Affected: Windows XP SP2, Windows 2000 SP4
Click on "Downloads" link above and to the the Microsoft Windows Update section to find update to protect your system.
Microsoft Word 0-Day Vulnerability II
McAfeeDecember 9, 2006
Systems Affected: Windows XP SP0-SP2, Word XP/2003/2000
A vulnerability exists in Microsft Word that could allow for arbitrary code execution.
Microsoft Word 0-Day Vulnerability I
McAfeeDecember 5, 2006
Systems Affected: Word 2000/2002/2003, Microsoft Word 2004 for Mac, Microsoft Works Suite 2004/2005/2006, Windows XP SP 0-SP2, and Windows 2000 SP4
A vulnerability exists in Microsoft Word that could allow for arbitrary code execution.
CERT Alerts--Mozilla Updates for Multiple Vulnerabilities
November 8, 2006Systems Affected: Mozilla SeaMonkey; Mozilla Firefox; Mozilla Thunderbird; Netscape web browser
VU#714496-Remote code execution vulnerability in the way JavaScript is handled
VU#335393-Vulnerability in the way RSA signatures are handled
VU#495288/VU#815432/VU#390480-Three memory corruption vulnerabilities
Microsoft XML Core Services XMLHTTP ActiveX Control Remote Code Execution (0-day)
SANS InstituteNovember 6, 2006
No updates available.
Advisory--October 17
Microsoft917021--Wi-Fi Protected Access 2 support for Wireless Group Policy in Windows XP SP2
Critical Advisories--October 10
Microsoft(MS06-057) Vulnerability in Windows Explorer Could Allow Remote Execution (923191)-Critical
(MS06-058) Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (924163)-Critical
(MS06-059) Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (924164)-Critical
(MS06-060) Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (924554)-Critical
(MS06-061) Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution (924191)-Critical
(MS06-062) Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (922581)-Critical
and an important advisory, two moderate level advisories, and one low risk advisory.
>>IE 0-day vulnerability-Active X
SANSTitle: CRITICAL: IE WebViewFolderIcon ActiveX Control Remote Code Execution Affected: Windows 2000 SP4/XP SP1/XP SP2
From SANS description: The 0-day vulnerability in WebViewFolderIcon ActiveX Control discussed in a previous issue of the @RISK newsletter is now getting exploited in the wild. Security researchers last week publicly posted exploit code that can be used to compromise a Windows system when an IE user browses a malicious webpage.
Status: Microsoft confirmed, no updates yet available. A workaround is to set the kill bits for the following UUIDs: "844F4806-E8A8-11d2-9652-00C04FC30871" and "E5DF9D10-3B52-11D1-83E8-00A0C90DC849".
>> Google Toolbar Virus-July 26, 2006
SANSTitle: Malicious Trojan Disguised as Google Toolbar
From SurfControl: Beginning late on July 18, an email began circulating that claimed to be from Google and offered information on what appears to be the latest version of the Google Toolbar. Clicking the link in the email takes users to a fake Google Toolbar Web site, which looks exactly like the real site, and provides users with the option to download the toolbar for their browser. The file that is downloaded, however, is actually a Trojan that can turn users’ machines into spam zombies.
>> Microsoft Security Alerts-July 17, 2006
Microsoft Security Advisory (922970)Title: Vulnerability in PowerPoint Could Allow Remote Code Execution
http://www.microsoft.com/technet/security/ advisory/922970.mspx
- Revision Note: Advisory Published: July 17, 2006
