Microsoft Security Essentials Update
Thanks to reader Hurin:
We were notified that a new version of Microsoft's Security Essentials is now available for download from Windows Update. Check it out, or grab it from here:
http://www.microsoft.com/security_essentials/
-- Joel Esler | http://blog.joelesler.net | http://twitter.com/joelesler
Opera 11.00 has been released!
For those of you that use Opera (all 2.20% of you), the folks over there have released version 11.00. There are a ton of updates to the code, including many security related fixes, so check out the Changelog here:
http://www.opera.com/docs/changelogs
and download it here:
Thanks Roseman for writing in!
-- Joel Esler | http://blog.joelesler.net | http://twitter.com/joelesler
Apple Time Capsule and Airport Base Station Updates
Published yesterday, Apple released a new firmware update for it's Time Capsule and Airport Base Station devices covering the following CVE's:
- CVE-2008-4309
- CVE-2009-2189
- CVE-2010-0039
- CVE-2009-1574
- CVE-2010-1804
If you are using these pieces of hardware, please be sure and update. (I already have!)
-- Joel Esler | http://blog.joelesler.net | http://twitter.com/joelesler
Reports of Attacks against EXIM vulnerability
Users of the popular exim mail server report attacks exploiting the recently patches vulnerability [1,2]. It appears that the attacks are scripted and installing popular rootkits. If you experienced an attack against exim: We are interested in packet captures or other logs showing how the attack is performed.
[1] http://www.reddit.com/r/netsec/comments/en650/details_of_the_root_kit_that_got_installed_on_my/
[2] http://www.exim.org/lurker/message/20101207.215955.bb32d4f2.en.html
------
Johannes B. Ullrich, Ph.D.
SANS Technology Institute
Twitter
Comments