Posts

Showing posts from November, 2010

New 0-day Vulnerability in Adobe Acrobat Reader

Technical Description A vulnerability has been identified in Adobe Acrobat and Reader, which could be exploited by remote attackers to execute arbitrary code. This issue is caused by a heap corruption error in the "EScript.api" plugin when processing the "printSeps()" function within a PDF document, which could be exploited by attackers to crash an affected application or compromise a vulnerable system by tricking a user into opening a specially crafted PDF file. http://community.websense.com/blogs/securitylabs/archive/2010/11/08/new-0-day-vulnerability-in-adobe-acrobat-reader.aspx http://www.vupen.com/english/advisories/2010/2890 November 8, 2010 Update: We plan to resolve this issue in the update for Adobe Reader and Acrobat 9.4 and earlier 9.x versions scheduled for release during the week of November 15, 2010, mentioned in Security Advisory APSA10-05 . We have assigned CVE-2010-4091 to this issue. As of today, Adobe is not aware of any exploits in the wild or pu...

Staying out of trouble

These are notes for myself, mostly for cleaning up friends and families machines. Things to do in order to properly secure your home machine. Update your Operating system on a regular basis. Don't forget to update your other important and vulnearable applications, such as Adobe Flash and Reader, Mozilla Firefox, and Google Chrome. Never click on links or attachments if, a. you don't know who they came from and/or b. you weren't expecting it. Its alot easier to email your buddy to double check if he meant to send you that link or attachment, then risk getting an infection and having to deal with cleaning something like that up. Anti Virus --------------------------------------------------- AVG http://free.avg.com/us-en/download-free-antivirus Avira http://www.avira.com/en/avira-free-antivirus Threat Fire (Supplement to AV) http://www.threatfire.com/ Malware --------------------------------------------------- Malware Bytes http://www.malwarebytes.org/ Drive By Prevention ...

Remote Code Execution Vulnerability in Internet Explorer (CVE-2010-3962)

A new vulnerability has been discovered in Internet Explorer that is currently being used in limited attacks. Microsoft Security Advisory (2458511) This vuln is now being used in an exploit kit. http://thompson.blog.avg.com/2010/11/heads-up-0-day-in-an-exploit-kit.html