PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office,...

8
PREVIOUS GNEWS

Transcript of PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office,...

Page 1: PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more MS13-088 - Cumulative Security Update.

PREVIOUS GNEWS

Page 2: PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more MS13-088 - Cumulative Security Update.

• 8 Patches – 3 Critical – 19+ CVEs

• Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more

• MS13-088 - Cumulative Security Update for IE

• MS13-089 - Windows Graphics Device, Remote Code

• MS13-090 - Cumulative Security Update of ActiveX Kill Bits

• MS13-091 - Microsoft Office, Remote Code

• MS13-092 - Hyper-V, Privilege Elevation

• MS13-093 - Windows Ancillary Function Driver, Info Disclosure

• MS13-094 - Microsoft Outlook, Info Disclosure

• MS13-095 - Digital Signatures, DoS

• Windows 8.1

Other updates, MSRT, Defender Definitions, Junk Mail Filter

Patch Tuesday

Page 3: PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more MS13-088 - Cumulative Security Update.

• Oracle, – 127 total patches– 51 patches for Java

• Adobe– APSB13-26 – Adobe Flash Player– APSB13-27 – ColdFusion

• Apple,– OS X Server v 3.0– OS X Mavericks 10.9– iTune v 11.1.2– iOS v 7.0.3– Safari 6.1– Keynote 6.0– Apple Remote Desktop 3.5.4 and 3.7

• Cisco– Identity Services Engine, Multiple Vulns– Unified Computing System, Multiple Vulns– ASA VPN, DoS– IOS XE, Multiple Vulns– CX, Safe Search Bypass– Adaptive Security Appliance, Multiple Vulns

Holes / Patches

Page 4: PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more MS13-088 - Cumulative Security Update.

• D-Link Router Firmware backdoor– Agent string ‘xmlset_roodkcableoj28840ybtide.’

• Flash now sandboxed in Safari (Mac)

• Silverlight targeted by exploit kits

• Maritime tracking system hacked

• 25 Electrical Power Station vulns found by 2 researchers

• Piracy is a lie, http://piracydata.org/

• isohunt shuts down and pays mpaa  :(

• FB just became myspace, again.....– Removed restrictions on minor accounts

Hacking

Page 5: PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more MS13-088 - Cumulative Security Update.

• NYC Comic Con RFID and Social Media, auto tweet badges

• Can NSA track burner phones?

• What is in a name? hackers lose 4th ammendment rights

WTF

Page 6: PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more MS13-088 - Cumulative Security Update.

• brainpan - vuln os

http://resources.infosecinstitute.com/brainpan/

Tools

Papers• Intro to OWASP Mutillidae

https://www.sans.org/reading-room/whitepapers/application/introduction-owasp-mutillidae-ii-web-pen-test-training-environment-34380

• CSA guide v3

https://downloads.cloudsecurityalliance.org/initiatives/guidance/csaguide.v3.0.pdf

Page 7: PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more MS13-088 - Cumulative Security Update.

• HITB Malaysia– iCloud and iMessage broken

• B-Sides DFW– Journaled FS Forensics

• ROOT-66– Anti-forensics

CONS

Page 8: PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more MS13-088 - Cumulative Security Update.

All images scavenged without permission

All images scavenged without permission


CVES-02 CVES Examination Spiritual Life Style …assets.vmou.ac.in/Question Papers/Exam DEC 2015/CVES-02.pdf · CVES-02 December - Examination 2015 CVES Examination Spiritual Life

CVES-02 CVES Examination Spiritual Life Style …assets.vmou.ac.in/Question Papers/Exam DEC 2015/CVES-02.pdf · CVES-02 December - Examination 2015 CVES Examination Spiritual Life

Cves lada naciona

Cves lada naciona

PREVIOUS GNEWS. 7 Patches – 6 Critical – 35 CVEs Affected –.NET, GDI+, IE, Defender, DirectShow MS13-052 -.NET Framework and Silverlight, Remote Code.

PREVIOUS GNEWS. 7 Patches – 6 Critical – 35 CVEs Affected –.NET, GDI+, IE, Defender, DirectShow MS13-052 -.NET Framework and Silverlight, Remote Code.

PREVIOUS GNEWS

PREVIOUS GNEWS

PREVIOUS GNEWS. July - 6 Patches – 2 Critical - 27 CVEs MS14-037 - Cumulative Security Update for IE, Remote Code MS14-038 – Windows Journal, Remote Code.

PREVIOUS GNEWS. July - 6 Patches – 2 Critical - 27 CVEs MS14-037 - Cumulative Security Update for IE, Remote Code MS14-038 – Windows Journal, Remote Code.

PREVIOUS GNEWS. Jan 4 Patches – 0 Critical – 6 CVEs 9 Patches – 4 Critical – 31+ CVEs MS14-005 - Microsoft XML Core Services, Info Disclosure MS14-006.

PREVIOUS GNEWS. Jan 4 Patches – 0 Critical – 6 CVEs 9 Patches – 4 Critical – 31+ CVEs MS14-005 - Microsoft XML Core Services, Info Disclosure MS14-006.

PREVIOUS GNEWS. Feb - 9 Patches – 3 Critical - 55 CVEs MS15-009 - Update for Internet Explorer MS15-010 - Windows Kernel-Mode Driver, Remote Code MS15-011.

PREVIOUS GNEWS. Feb - 9 Patches – 3 Critical - 55 CVEs MS15-009 - Update for Internet Explorer MS15-010 - Windows Kernel-Mode Driver, Remote Code MS15-011.

PREVIOU S GNEWS. May 9 Patches – 3 Critical - 1 out of band – 14 CVEs MS14-021 - Security Update for Internet Explorer MS14-022 - SharePoint Server, Remote.

PREVIOU S GNEWS. May 9 Patches – 3 Critical - 1 out of band – 14 CVEs MS14-021 - Security Update for Internet Explorer MS14-022 - SharePoint Server, Remote.

PREVIOU S GNEWS. May 7 Patches – 2 Critical - 70 CVEs MS14-030 - Remote Desktop, Allow Tampering MS14-031 - TCP Protocol, DoS MS14-032 - Microsoft Lync.

PREVIOU S GNEWS. May 7 Patches – 2 Critical - 70 CVEs MS14-030 - Remote Desktop, Allow Tampering MS14-031 - TCP Protocol, DoS MS14-032 - Microsoft Lync.

PREVIOUS GNEWS "This is Gary Gnu... and the no gnews is good gnews show. The ONLY tv gnews show guar-an-TEED-- to contain NO gnews what-so-ever."

PREVIOUS GNEWS "This is Gary Gnu... and the no gnews is good gnews show. The ONLY tv gnews show guar-an-TEED-- to contain NO gnews what-so-ever."

Man Cves Docto

Man Cves Docto

GNEWS 111Jahre

GNEWS 111Jahre

PREVIOUS GNEWS. Patches – ? Critical – ? CVEs Affected – ? Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS12-052+ - NEXT WEEK FOOL Patch.

PREVIOUS GNEWS. Patches – ? Critical – ? CVEs Affected – ? Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS12-052+ - NEXT WEEK FOOL Patch.

PREVIOUS GNEWS. 6 Patches – 4 Critical – 19 CVEs Affected – Kernel, SQL, Kerberos, Word, HTML, SharePoint Other updates, MSRT, Defender Definitions, Junk.

PREVIOUS GNEWS. 6 Patches – 4 Critical – 19 CVEs Affected – Kernel, SQL, Kerberos, Word, HTML, SharePoint Other updates, MSRT, Defender Definitions, Junk.

PREVIOUS GNEWS

PREVIOUS GNEWS

GNEWS PREVIOUS. Feb - 14 Patches – 5 Critical - 45 CVEs MS15-018 - Cumulative Security Update for IE MS15-019 - VBScript Scripting, Remote Code MS15-020.

GNEWS PREVIOUS. Feb - 14 Patches – 5 Critical - 45 CVEs MS15-018 - Cumulative Security Update for IE MS15-019 - VBScript Scripting, Remote Code MS15-020.

9780135100509 XLS C10 MS13

9780135100509 XLS C10 MS13

PREVIOUS GNEWS. 3 Patches – 4 Critical – 53+ CVEs Affected – Kernel, AD, SharePoint, Office, and more MS13-067 - Microsoft SharePoint Server, Remote Code.

PREVIOUS GNEWS. 3 Patches – 4 Critical – 53+ CVEs Affected – Kernel, AD, SharePoint, Office, and more MS13-067 - Microsoft SharePoint Server, Remote Code.

PREVIOUS GNEWS. 7 Patches – 3 Critical – 20 CVEs Affected – IE, Kernel, Visio, Silverlight Sarepoint,….. Other updates, MSRT, Defender Definitions, Junk.

PREVIOUS GNEWS. 7 Patches – 3 Critical – 20 CVEs Affected – IE, Kernel, Visio, Silverlight Sarepoint,….. Other updates, MSRT, Defender Definitions, Junk.

PREVIOUS GNEWS. 6 Patches – 1 Critical – 22 CVEs Affected – IE. Kernel, Print, Office MS13-047 - Cumulative Security Update for Internet Explorer MS13-048.

PREVIOUS GNEWS. 6 Patches – 1 Critical – 22 CVEs Affected – IE. Kernel, Print, Office MS13-047 - Cumulative Security Update for Internet Explorer MS13-048.