CyTRAP Labs - Wincurity - smarter protection » 2008

Archive for March, 2008

CyTRAP Labs’ reminder - 2008-03-27 - security update for Mozilla Firefox, Mozilla Thunderbird, and SeakMonkey

Thursday, March 27th, 2008

The Mozilla Foundation has issued an important security patch for Mozilla Firefox, Mozilla Thunderbird and Seamonkey that fix 7 critical vulnerabilities (Please click on the link, choose Login as guest - click on this link again and voila free access)

If you have chosen the option that the program checks regularly with the Mozilla Foundation’s website for updates , the security update should have been downloaded BY NOW automatically or next time you log onto the internet (for more details see below

This vulnerabilitiy exposes you to a risk that we rate as follows:

CyTRAP Labs security risk barometer - 4 = critical
low	elevated	moderate- ly critical	critical	severe
1	2	3	4	5

For more information and explanations about the CyTRAP Labs risk barometer you can visit here:CyTRAP Labs security risk barometer

WHAT CAN YOU DO?

CyTRAP Labs security risk barometer - 4 = critical
operating system affected	Windows XP and Vista,
affected software	Mozilla Firefox - all prior versions to 2.0.0.12, Thunderbird - all prior versions to 2.0.0.12, and SeaMonkey - all prior versions to 1.1.8
risk	rating given for these vulnerabilities is a 4 (four)
where is the patch?	depending upon the program you run: Mozilla Firefox - download Version 2.0.0.13 for Windows Thunderbird - download Version 2.0.0.13 SeaMonkey - download Version 1.1.9 To download any of these versions you need admin rights on your PC of course
what should one do?	The Software Update preference pane is set to automatically check by default if you have the latest version installed.Hence, once you go onto the internet, the latest version should be downloaded automatically, if you are not sure, read below we tell you how to check and download manually if need be - quick and easy.
how can I check that I do have the latest version installed	click Help > About Firefox or About SeaMonkey from the Help menu this shows which version runs on your machine or click onHelp > check for updates - if you do not have latest version already installed, Firefox will download it now if you have administrator rights for this PC
not patching the vulnerability could cause what kind of damage to my PC?	2 could be exploited by attackers to execute arbitrary code by tricking a user into opening a malicious file2 bypass security restrictions, cause a denial of service or compromise an affected system.2 being executed on your machine without your authorization.a few more nasty things…
where can one get more details from the vendor?	vendor has issued several security bulletins:MFSA 2008-14 through MFSA 2008-19 - March 25, 2008
where can you get more technical information about the vulnerabilities	CVE-2008-1241, CVE-2008-1195, CVE-2008-1240, CVE-2008-4879, CVE-2008-1238, CVE-2008-1236. CVE-2008-1233, CVE-2008-1234, CVE-2008-1235, CVE-2008-0416,
release date from vendor	2008-03-25 (Pacific Standard Time)
why is this a reminder and not an alert?	security alert or reminder - that’s the question
did CASEScontact.org release an advisory about this earlier?	no - neither exploit code was published nor any details before the vendor issued a patch
did CASEScontact.org release a zero-day advisory	nothing was necessary (see above) patched zero-day archive

60% OF OUR READERS SUBSCRIBE

For better risk management, compliance and protection - become a member of the 60% of our READERS THAT HAVE MADE SURE THEY GET A SUBSCRIPTION

- advisory, zero-day exploits and regulatory intell via alert, newsletter or RSS feed

or just make your choices at CyTRAP Labs subscription portal

For a previous reminder please see here:

- CyTRAP Labs reminder - 2008-02-12 - security update for Mozilla Firefox, Mozilla Thunderbird, and SeakMonkey

purchase generic cialis cheap viagra substitute viagra cialis order viagra cialis buy sublingual viagra order sublingual viagra buy sublingual cialis order sublingual cialis order revatio buy revatio buy cialis jelly order cialis jelly buy viagra jelly order viagra jelly order female viagra buy female viagra order vpxl order levitra professional order levitra professional buy levitra professional purchase levitra order levitra buy levitra order cialis soft tabs buy cialis soft tabs order viagra soft tabs buy viagra soft tabs order cialis super active buy cialis super active order viagra super active buy viagra super active purchase generic cialis order generic cialis buy generic cialis purchase generic viagra order generic viagra buy generic viagra purchase cialis professional cialis professional online purchase viagra professional viagra professional online order brand cialis cialis discount cialis price cialis online brand viagra price brand viagra online viagra discount cheap viagra viagra online

CVE 2008 1195, CVE 2008 1236, CVE 2008 1238, CVE 2008 1240, CVE 2008 1241, CVE 2008 4879, CyTRAP labs, CyTRAP Labs reminder, Firefox, MFSA 2008 14, MFSA 2008 15, MFSA 2008 16, MFSA 2008 17, MFSA 2008 18, MFSA 2008 19, Mozilla, Mozilla SeaMonkey, Mozilla Thunderbird, operating system, security patch, vunlerabilities, Windos Vista, Windows XP

Posted in

WordPress database error: [Can't find file: './Blog/wp_post2cat.frm' (errno: 13)]
SELECT post_id, category_id FROM wp_post2cat WHERE post_id IN (379)

Uncategorized | No Comments »

CyTRAP Labs’ Choice - free tool - protecting yourself against Russian botnets

Wednesday, March 19th, 2008

Everybody has to take the necessary steps to protect oneself against nasty things that happen on the web.
Russian botnets are a sure headache for all users and ISPs that sign contracts with a suspicious firm called phorm.com
Follow the instructions here and install the additional protection available for Firefox.

To get more information on this issue - see our sister blog’s coverage:

- The Russian Mafia is Raising its Ugly head - this Time in Sheep’s Clothing - be Careful

Here we focus on providing you with a tool that helps limiting the privacy risks coming with this technology.

FACTS ABOUT Dephormation v1.2 Firefox Add On

cost	freeware
software	Dephormation v1.2 Firefox Add On.
release date	2008-03
platforms	Win 2000/XP/2003 Windows Vista
author	Pete John
languages	English
size of download	200 KB
download	Dephormation v1.2 Firefox Add on
more information	FAQ and more Info about Dephormation v1.2 Firefox Add on

EVALUATION SHEET ABOUT Androsa FileProtector V 1.4.2So how well is this tool working

advantages	- easy installation with Firefox
disadvantages	The add-on is a band-aid only, it does not solve the problem

WHAT ABOUT INSTALLATION

When you install the add on for Firefox, the first thing you willa) download

b) re-start Firefox

c) see the screen to the right

If you cannot see it click on this to get a n image to look at Dephormation v1.2 Firefox Add On.

After you have it installed you should click on Tools > Add-ons, this will let you see if Dephormation has been installed.

You will see a screen looking just like the one to the right. On the Dephormation Add-on, click on Options and you will see the little window shown as to the right (smaller rectangle).
If the image to the right does not show correctly, please click on this link to get a nice looking one.
Dephormation v1.2 Firefox Add On does it work okay

If you want more information about this Russian threat, please visit:

CASEScontact.org - dkdkdkd

============>More free tools that help you

============>

If this post was helpful to you, please consider stumbling it or subscribing to feeds from CyTRAP Labs. Cheers.

==========>

band aid, botnets, fighting spyware, Firefox, free tool, isps, malware, privacy risks, russian mafia, win 2000

Posted in

WordPress database error: [Can't find file: './Blog/wp_post2cat.frm' (errno: 13)]
SELECT post_id, category_id FROM wp_post2cat WHERE post_id IN (378)

Uncategorized | 2 Comments »

CyTRAP Labs: security reminder - 2008-03-11 - Patch Tuesday - Microsoft

Tuesday, March 11th, 2008

Microsoft has released 4 security bulletins

All 4 of these bulletings are ranked critical - by Microsoft, which means ‘can result in remote code execution’

If you have Automatic Update activated for your PC, these patches will be downloaded automatically

does your automatic update work properly?If you are not sure if it does, check below, otherwise by mid-day 2008-03-13 the downloads should be on your machine…. remember, installing the downloads might necessitate a reboot.Just wait until you stop working once you shut down your machine that will suffice to get them installed.

This vulnerabilitiies exposes you to a risk that we rate as follows:

CyTRAP Labs security risk barometer - 4 = critical
low	elevated	moderately critical	critical	severe
1	2	3	4	5

For more information and explanations about the CyTRAP Labs risk barometer you can visit here:

CyTRAP Labs security risk barometer

what Microsoft Patch Tuesday has in store for us this month
operating system affected	Windows, Windows Vista, Microsoft Outlook 2000 - 2007 Microsoft Excel 2000 - 2007 Microsoft Office XP, MAC, etc.
affected software	see above
risk	4 security bulletins rated critical BY Microsoft were released …the risk rating given for these vulnerabilities by CyTRAP Labs is a 4 (four out of five levels) = CRITICAL - orange
how long did this vulnerability remain unpatched since it was publicly disclosed ==> zero-day alert	these vulnerabilities have been known for a while (several months), however, it was not actively exploited.
patch prioritization - client side impact	users and administrators are urged to roll out this patch as soon as possible, once it has been verified that it does not break any internal applications.
where is the patch?	will be downloaded using Automatic Update, update is detected by the MBSA: CyTRAP Labs tip - using the Microsoft Baseline Security Analzyer called MBSA
what should one do?	If your Automatic Update is functioning properly, you are covered. CyTRAP Labs tip - how to make sure the latest security patch is installed
how can I check that I do have the latest version installed	find out more information how cou can check that this update is installed as well on your PC or server here:
not patching the vulnerability could cause what kind of damage to my PC?	could be exploited by attackers to execute arbitrary code on the user’s machine BETTER patch NOW
Once updated, what do you need to do?	These updates will require a restart for your PC.
where can one get details about each of the patches released on this month’s Microsoft Patch TuesdayWe list the critical ones only - there were 5 important ones as well	Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (949029) - Microsoft Security Bulletin MS08-014 - CRITICAL Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (949031) - Microsoft Security Bulletin MS08-015 - CRITICAL Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (949030) Microsoft Security Bulletin MS08-016 - CRITICAL Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (933103) - Microsoft Security Bulletin MS08-017 - CRITICAL
release date from vendor	2008-03-11 - Pacific Standard Time
why is this a reminder and not an alert?	security alert or reminder - that’s the question
did CASEScontact.org release an advisory about these vulnerabilities earlier?	Yes we did for one regarding ExcelCASEScontact.org advisory - Microsoft Excel — ZERO-DAY exploit - targeted attacks exploiting unspecified error in the handling of Excel files Last Update: 2008-01-16
did CASEScontact.org release a zero-day advisory	NO we did not issue a zero-day advisory see also patched zero-day archive)
Common Vulnerabilities and Exposures (CVE) project has assigned the following numbers to these vulnerabilities that were patched by Microsoft	CVE-2008-0111, CVE-2008-0112, CVE-2008-0114, CVE-2008-0115, CVE-2008-0116, CVE-2008-0117, CVE-2008-0081,

Please make sure that your PC is patched - thank you.

If this post was helpful to you, please consider stumbling it or Digg this WinCurity post from CyTRAP Labs.
Also of interest:
CyTRAP Labs: security reminder - 2008-02-12 - Patch Tuesday - Microsoft	CyTRAP Labs reminder - security update for Mozilla Firefox, Mozilla Thunderbird, and SeakMonkey
the mission of ComMetrics	why benchmark

advisory, alert, CERT, cve 2008 0081, CVE 2008 0102, CVE 2008 0103, CVE 2008 0104, CVE 2008 0109, cve 2008 0111, cve 2008 0112, cve 2008 0114, cve 2008 0115, cve 2008 0116, cve 2008 0117, CyTRAP Labs Early Warning System, CyTRAP Labs glossary, CyTRAP Labs risk barometer, Early Warning System, EWS, Microsoft Office, microsoft security bulletin, microsoft security bulletin summary, Microsoft Windows, ms08 014, ms08 015, ms08 016, ms08 017, patch Tuesday, remote code execution, security alert, security bulletin, security reminder, updates, Vulnerabilities, Windows Vista, windows vista x64, Windows XP, windows xp professional

Posted in

WordPress database error: [Can't find file: './Blog/wp_post2cat.frm' (errno: 13)]
SELECT post_id, category_id FROM wp_post2cat WHERE post_id IN (377)

Uncategorized | No Comments »