TechBlog

Security News? Just a few clicks away

Tag Archives: Exploits

Exploit for SMBv2 hole in Vista publicly available

10 days ago first exploit code for the security vulnerability in the SMBv2 protocol appeared in the underground. Today working exploit code for the open source penetration testing framework Metasploit was released. Therewith it is possible for the cybercriminals to … Continue reading

SMBv2 Exploit Code released

Microsoft acknowledged a security hole in its SMBv2 implementation in Windows Vista, Server 2008 and Windows 7 up to the Release Candidate. With injecting specially prepared network packets attackers obviously are able to take complete control over affected computers. Now … Continue reading

Microsoft Patchday Reloaded

Now that didn’t happen for a while: Microsoft updated one of the security bulletins from Tuesday. It deals with a security flaw in TCP/IP networking. The first version of the bulletin mentioned Windows 2000, Vista, Server 2003 and Server 2008 … Continue reading

5 Security Bulletins for Windows flaws

As announced last Friday, Microsoft released 5 security bulletins – all dealing with critical flaws within the Windows operating systems. Affected are Windows XP to Windows Vista and Server 2008. The security holes can be abused by hackers to compromise … Continue reading

Security Holes and Updates

There is a severe security hole in Microsofts Internet Information Services (IIS) versions 5 and 6. “0-day” Exploit code is publicly available on the net. The error is within the FTP component. Thus Microsoft recommends as workaround to disable (anonymous) … Continue reading

Updates from Microsoft available

As announced before the weekend, Microsoft now released 9 security bulletins. The patches related to those bulletins close overall 19 security holes in Windows, Microsoft Office, Visual Studio, ISA- and BizTalk-Server, RDP client for Mac and the .Net framework. According … Continue reading

Mozilla Foundation fixes 2 vulnerabilities in Firefox

The developers of the Mozilla Foundation just released Firefox 3.5.2 to close two critical rated security vulnerabilities. One flaw in the web browser could be abused to spoof certificates for web servers. This could happen as the browser didn’t parse … Continue reading

Adobe-Patches are out

As announced, Adobe released the first updates for the critical security vulnerabilities in its products already. The first update is for Adobe Flash-Player – the new version 10.0.32.18 is supposed to close the security hole in the software. You can … Continue reading

Avira Risk Level

The Risk Level describes the current phishing- and malware threats that we receive in real time from our sources in Internet. These threats are valid and can be accessed by any user in the Internet. The levels are computed by … Continue reading

Out-of-band Patches from Microsoft II

As announced last week, Microsoft released two security bulletins out-of-band. They cope with critical vulnerabilities in all Internet Explorer Versions and with a flawed Active Template Library (ATL) for developers using Microsoft’s Visual Studio. Due to the flaw in the … Continue reading