|
 |
dilluns, 21 / novembre / 2005 |
[Internet Storm Center] * Internet Explorer 0-day exploit (NEW). Un grup anglès ha fet pública una vulnerabilitat que afecta a totes les versions de l'Internet Explorer i que pot ser utilitzada per executar codi arbritari a l'ordinador de l'usuari, sense la intervenció d'aquest... només cal visitar una pàgina web especialment preparada per treure profit de la vulnerabilitat.
the UK group "Computer Terrorism" released a proof of concept exploit against patched versions of Internet Explorer. We verified that the code is working on a fully patched Windows XP system with default configuration.
The bug uses a problem in the javascript 'Window()' function, if run from 'onload'. 'onload' is an argument to the HTML <body> tag, and is used to execute javascript as the page loads.
Impact:
Arbitrary executables may be executed without user interaction. The PoC demo as tested by us will launch the calculator (calc.exe).
Mitigation:
Turn off javascript, or use an alternative browser (Opera, Firefox). If you happen to use Firefox: This bug is not affecting firefox. But others may. For firefox, the extnion 'noscript' can be used to easily allow Javascript for selected sites only.
Open Questions:
We are not sure if parameters can be passed to the executable. If so, the issue would be much more severe.
Please monitor this diary for updates.
Podeu comprovar els efectes d'aquesta vulnerabilitat a http://www.computerterrorism.com/research/ie/poc.htm. En accedir a aquesta pàgina s'obre la calculadora de Windows
|
20:05 (# Enllaç permanent) | Comentaris: | Trackback:
|
|
[Microsoft] Security Considerations during Exchange Migration
With all that you will have going on during a migration from Exchange 5.5 to Exchange 2003, the last thing you want to worry about is the strength of you anti-virus and anti-spam solution. This paper discusses security concerns during migration and provides ways to minimize their impact. The goal of any migration is to minimize the impact to end users. For an Exchange migration or upgrade, the key items include:
- Stabilizing the Existing Email System
- Automating Desktop Updates
- Outlook Web Access Continuity
- System, Performance, and Throughput Monitoring
- Anti-Virus and Anti-Spam Protection, Minimal Intervention
|
00:39 (# Enllaç permanent) | Comentaris: | Trackback:
|
|
© Copyright 2003-2005 Xavier Caballe.  . Si no s'indica expressament el contrari, el material publicat en aquest weblog es distribueix d'acord amb la llicència Creative Commons. El contingut és responsabilitat única i exclusivament del seu autor i no té cap relació amb les seves activitats professionals.
|
 |
 |
 |
 |
Contingut actualitzat
Categories
Darrers comentaris
Arxiu
Contingut antic
(ja no s'actualitza)
Versions anteriors
d'aquesta pàgina
|
 |
 |
 |
 |
|
