Tuesday, February 24th, 2009
Symantec is reporting that Trojan.Mdropper.AC is exploiting an unpatched vulnerability in Excel 2007. Earlier versions of Excel may also be vulnerable.
The vulnerability is described as a "Boundary Condition Error" and can result in remote code execution, but that's it for details for now. The research is obviously in its early ...
Posted in Coding, Security, Software, Windows | No Comments
Tuesday, February 17th, 2009
Microsoft warned last week that it would be easy for cybercriminals to build new attacks using bugs it patched in the Internet Explorer browser; now that prediction has come true.
On Tuesday, security vendor Trend Micro said that it had spotted the first attack taking advantage of one of two flaws ...
Posted in Security, Windows | No Comments
Thursday, February 12th, 2009
The Partial GET Request (HTTP 206 Status Code) of a WAV file results in a Denial of Service of the application.
Last HTTP packet from Firefox before the DoS is listed below in RAW format:
GET /fpaudio/footprints_waves.wav HTTP/1.1
Accept: */*
User-Agent: NSPlayer/11.0.6001.7001 WMFSDK/11.0
UA-CPU: x86
Accept-Encoding: gzip, deflate
Range: bytes=34848-
Unless-Modified-Since: Mon, 09 Jul 2007 12:44:57 GMT
If-Range: "4f0018-440f2-434d403204440"
Host: ...
Posted in Coding, Internet, Linux, Security, Software, Windows | No Comments
Wednesday, February 11th, 2009
A feature in Internet Explorer, which checked the type of file before presenting it to the user, has been found to allow execution of JavaScript embedded in an image. The MIME sniffing functionality was originally meant to compensate for web servers sending out the wrong content type information when they ...
Posted in Internet, Privacy, Security, Windows | No Comments
Wednesday, January 28th, 2009
DP Shredder scrubs files, folders, and free disk space with Department-of-Defense-approved methods. Completely stand-alone and small, DP Shredder is a great addition to your flash drive toolbox.
After selecting the disk, folder, or file you want to securely delete with DP Shredder, you can select the method and number of times ...
Posted in Hardware, Privacy, Security, Windows | No Comments
