SecurePurdue - Advisory Alerts

SecurePurdue - Advisory Alerts http://www.purdue.edu/securePurdue/ Collaborating to create the university of the future through IT. Service quality, powerful partnerships, and a great place to work. en-us Copyright 2005 Purdue University http://www.purdue.edu/securePurdue/ Fri, 02 Oct 2009 16:16:03 PST SecurePurdue http://www.purdue.edu/securePurdue//images/loginBanner.gif http://www.purdue.edu/securePurdue/ Microsoft Server Message Block (SMB) Vulnerability allows for Remote Code Execution STEAM-ADVISORY NO. 2009091801 PURDUE UNIVERSITY SECURITY TEAM CIRT Friday, September 18 16:10:00 EDT 2009 **** NOTICE **** Update 2: Microsoft has released a "Fix-it" tool to automatically disable the SMBv2 service, which is presently the only known mitigation technique other than implementing firewall rules to block SMB traffic. The tool can be downloaded from Microsoft's website at the following URL: support.microsoft.com/kb/975497 (Copy and paste link into browser) The MS Security advisory page further down in the Further Information and Resources section has also been updated to include a link to the Fix-It tool. Update: Microsoft Server Message Block (SMB) Vulnerability allows for DoS and arbitrary remote code execution. **************** A vulnerability exists in Microsoft Windows SMB2.0 that can be exploited remotely to cause system failure. Currently this exploit is unpatched but workarounds are available. http://www.purdue.edu/securePurdue//news/detail.cfm?NewsID=283&tm=commons_news Advisory Alerts Fri, 02 Oct 2009 Security Advisory for Adobe Reader, Acrobat and Flash Player http://www.purdue.edu/securePurdue//news/detail.cfm?NewsID=272&tm=commons_news Advisory Alerts Fri, 31 Jul 2009 ISC BIND Dynamic Update Denial of Service Vulnerability http://www.purdue.edu/securePurdue//news/detail.cfm?NewsID=270&tm=commons_news Advisory Alerts Thu, 30 Jul 2009 Microsoft Office Web Components ActiveX Remote Code Execution Vulnerability The Microsoft Office Web Components ActiveX control used by Internet Explorer contains a vulnerability that when exploited will allow an attacker to gain rights of the local user and allow remote code execution. Microsoft KB973472 CVE-2009-1136 http://www.purdue.edu/securePurdue//news/detail.cfm?NewsID=266&tm=commons_news Advisory Alerts Mon, 13 Jul 2009 Critical Unpatched Internet Explorer Issue http://www.purdue.edu/securePurdue//news/detail.cfm?NewsID=240&tm=commons_news Advisory Alerts Fri, 12 Dec 2008 Phishing Emails Threatening Internet Service Disconnection Carry Virus In the past couple of days we have been seeing a new batch of phishing emails which carry a virus infected attachment. Users should immediately delete any emails with a subject line "Your internet access is going to get suspended" http://www.purdue.edu/securePurdue//news/detail.cfm?NewsID=226&tm=commons_news Advisory Alerts Wed, 17 Sep 2008 Critical SSH Issue Involving Education and Research Institutions http://www.purdue.edu/securePurdue//news/detail.cfm?NewsID=224&tm=commons_news Advisory Alerts Tue, 26 Aug 2008 Multiple reports of attempted and successful SQL injection attacks against campus web sites. http://www.purdue.edu/securePurdue//news/detail.cfm?NewsID=219&tm=commons_news Advisory Alerts Fri, 18 Jul 2008 Adobe Acrobat and Reader Vulnerability affects Windows and Macs Adobe has reported a critical vulnerability in Acrobat and Reader. The vulnerability could allow a malicious user to crash an affected machine to gain full access. Most versions are affected. http://www.purdue.edu/securePurdue//news/detail.cfm?NewsID=217&tm=commons_news Advisory Alerts Mon, 30 Jun 2008 Multiple Xserver and XInput Vulnerabilities Multiple vulnerabilities have been discovered in the server code of the X window system, which can cause an assortment of overflows. Local exploitation of these overflows cause the X server to crash or allow the execution of arbitrary code in certain situations. http://www.purdue.edu/securePurdue//news/detail.cfm?NewsID=193&tm=commons_news Advisory Alerts Wed, 23 Jan 2008 Critical Vulnerabilities In Adobe Flash Content May Lead to Cross-Site Scripting (XSS) Attacks Critical vulnerabilities in Adobe Flash content have been found which leave potentially hundreds of thousands of websites and a considerable percentage of major Internet sites susceptible to Cross-Site Scripting (XSS) attacks that would allow malicious individuals to steal personal details of visitors. http://www.purdue.edu/securePurdue//news/detail.cfm?NewsID=191&tm=commons_news Advisory Alerts Mon, 14 Jan 2008 Adobe Flash Player: Multiple Vulnerabilities Adobe Flash Player and Flash Plugin have been found to have multiple vulnerabilities which could allow an attacker to remotely execute code on a vulnerable system, obtain sensitive information via browser keystrokes, and allow cross-site request forgery. These vulnerabilities affect all users of Adobe Flash Player regardless of platform (Win, Mac, Solaris, and Linux). A new version that addresses the security issues has been released by Adobe. http://www.purdue.edu/securePurdue//news/detail.cfm?NewsID=138&tm=commons_news Advisory Alerts Tue, 17 Jul 2007