I just received word from an authoritative source on this vulnerability (actually the person that found it) and was informed that version 4.7.2B does not fix the DoS vulnerability. The only way to mitigate the risk is to block TCP port 80 on your concentrator (or upstream router/firewall), otherwise an attacker could send a stream […]
From the Security Now! podcast: Leo and I carefully examine the operation of the recently patched Windows MetaFile vulnerability. I describe exactly how it works in an effort to explain why it doesn’t have the feeling of another Microsoft “coding error”. It has the feeling of something that Microsoft deliberately designed into Windows. Given the […]
A vulnerability has been discovered in the way Windows displays Embedded Open Type fonts. Similar to the WMF exploit, a user simply has to view HTML in their browser or email client to trigger an exploit. There is a big (okay huge) difference however, this is a heap overflow which is far more difficult to […]
Just getting back into the swing of things and reading all I can about the WMF vulnerability and exploits. I’ve summarized everything (I think) we know so far, if I’m missing anything please drop me a note (paul /at/ securityweekly.com): Update – 01/06/2006 – Added the official patch section, corrected the IDS statements, added the […]
“It has been identified a vulnerability in the Cisco IOS Web Server. An attacker can inject arbitrary code in some of the dynamically generated web pages. To succesfully exploit the vulnerability the attacker only needs to know the IP of the Cisco. THERE’S NO NEED TO HAVE ACCESS TO THE WEB SERVER! Once the code […]
