Skip navigation.

風吹くままに

Drift in the wind.

Posts tagged with "Security"

About Several Updates of Softwares

Sunday, 6. April 2008, 12:26:25

, , ,

1/ Apple QuickTime
Apple released an update of QuickTime, fixing at least 11 security holes in it for both Mac and Windows.
Windows QuickTime users will need to use the bundled Apple Software Update application.

2/ Symantec Norton
Symantec pluged two critical holes in ActivX control(SYMADATA.DLL).
Following versions are affected:
Norton 360 1.0
Norton AntiVirus Windows 2006 - 2008
Norton Internet Security 2006 - 2008
Norton System Works 2006 - 2008

A corrected version of the ActiveX is available for download.

3/ Avast anti-virus
Avast is anti-virus scanner and is free for home users.
Avast v4.8 adds anti-rootlit and anti-spyware functionarity.
To download its free edition, access HERE.

4/ VLC Media Player
For some time now, there have been several open security holes in VLC Media Player, MPlayer and Xine. VLC was released the latest version(0.8.6f) to plug several security holes.
To download it, access HERE.


No comments

About Several Vulnerabilities of Thunderbird

Sunday, 30. March 2008, 14:24:37

, ,

Mozilla released the latest version(2.0.0.13) which pluged 10 security holes of Firefox.
However, Mozilla has not released the fixed version of Thunderbird(E-Mail cleiant of Mozilla).
It shares five of the vulunerabilityies because Thunderbird shares the browser engine with Firefox. And It could be vulnerable if JavaScript were to be enabled in mail.
Mozilla's David Ascher said that its paches will not be available for several weeks.
And he also said "This is not the default setting, and we strongly discourage users from running JavaScript in mail."

No comments

Privilege Escalation via Panda Security Suite

Monday, 10. March 2008, 12:58:05

,

A bug in a kernel driver in Panda’s Internet-Security 2008 and Antivirus+Firewall 2008 can be exploited by attackers to escalate their privileges.

See also:
Panda Internet Security/Antivirus+Firewall 2008 cpoint.sys Kernel Driver Memory Corruption Vulnerability, security advisory from Tobias Klein
Vulnerability detected in the Internet protection level control in Panda Internet Security 2008, security advisory and hotfix download from Panda
Vulnerability detected in the Internet protection level control in Panda Antivirus + Firewall 2008,,security advisory and hotfix download from Panda

No comments

Spywareblaster Has Been Upgraded To Version 4

Tuesday, 4. March 2008, 11:46:48

, ,

SpywareBlaster 4.0 Download
http://www.javacoolsoftware.com/sbdownload.html

Caution
JavacoolSoftware, the maker of Spywareblaster, recommend you uninstall the previous version before upgrading to the new one.

No comments

Thunderbird 2.0.0.12 Is Now Available

Thursday, 28. February 2008, 14:31:36

,

Mozilla urged users of Thunderbird to update to its new version(2.0.0.12). In its new version, Mozilla fixed five vulnerabilities. One of which is categorized as critical. This vulnerability allow that attackers can inject malicious code by means of special crafted E-Mails.

See also :
Fixed in Thunderbird 2.0.0.12
Mozilla Thunderbird MIME External-Body Heap Overflow Vulnerability

No comments

Adobe had pushed out the latest version of Adobe Reader

Saturday, 9. February 2008, 23:45:54

,

Adobe Reader 8.1.2 is now available.
Adobe had released an update to its Adobe Reader that corrects more than two dozen bugs, including several security holes.
One of security holes is actively being exploited to break into Microsoft Windows computers.
And now, attackers have started to exploit its vulnerabilities.

To update:
http://www.adobe.com/products/acrobat/readstep2.html

For Japanese:
http://www.adobe.com/jp/products/acrobat/readstep2.html

No comments

ActiveX Vulunerabilities - Facebook, Myspace and Yahoo

Wednesday, 6. February 2008, 12:19:31

,

Web surfers are urged to immediately disable ActiveX controls from IE to protect against a swath of publicly reported—and unpatched—software vulnerabilities.

For more details:
http://www.eweek.com/c/a/Security/ActiveX-Under-Seige-Facebook-MySpace-Image-Uploaders-Vulnerable/
http://www.us-cert.gov/current/index.html#publicly_available_exploit_for_facebook
http://www.kb.cert.org/vuls/id/776931

No comments

Sun released another update to its Java.

Sunday, 27. January 2008, 13:08:06

, ,

This update bring some 370 bug fixes, including a number of security updates.
The update is available for Windows, Linux and Solaris.
To update it, access the link below.
https://cds.sun.com/is-bin/INTERSHOP.enfinity/WFS/CDS-CDS_Developer-Site/en_US/-/USD/ViewProductDetail-Start?ProductRef=jre-6u4-b-oth-JPR@CDS-CDS_Developer

Or, you could also visit Sun's Java Homepage and click on the "Do I have Java" link at the top.

No comments

Ad-Aware SE Personal(Free) Retired

Saturday, 12. January 2008, 00:47:18

, ,

Lavasoft stopped shipping updates for Ad-Aware SE Personal(Free) after Dec. 31.
If you want to continue using Ad-Aware, you can upgrade to Ad-Aware 2007 Free. But this version don't suport Windows Operating Systems prior to Windows 2000.

Download HERE

To download it, you can also click on "Download" button in the image below.

http://www.lavasoftusa.com/products/ad_aware_free.php?t=techspecs

Ad-Aware 2007 Free - Lavasoft via kwout

No comments

Kaspersky Quarantines WindowsExplorer As A Virus

Tuesday, 25. December 2007, 12:16:39

, , ,


A faulty signature update from Kaspersky Lab on Wednesday(20th of December 2007) flagged up Windows Explorer (explorer.exe) as infected with a low-risk virus, Huhk-C. As a result the core Windows component was quarantined or worse.

Kaspersky released a revised update alongside advice on how to recover legitimate system and application files from quarantine (the default setting) within two hours. But that's not much consolation for users that had set their software to auto-delete infected files, who found themselves with hosed systems.


Channel Register

For those affected by this false positive, Kaspersky has provided procedures for a fix.

No comments

1 2 3 4 5 ... 8 Next »

Showing posts 1 - 10 of 74.