Tuesday, May 29, 2012

Highly Advanced Malicious Toolkit Revealed

Kaspersky Labs published yesterday a research about Flame (aka Skywiper), most complex malicious software found to date.
"It is a backdoor, a Trojan, and it has worm-like features, allowing it to replicate in a local network and on removable media if it is commanded so by its master." (source: Kaspersky Labs blog)


Here are some links about Flame malware:
- Kaspersky Labs blog post
- Iran National CERT (MAHER)
- Technical report by Laboratory of Cryptography and System Security (CrySyS Lab)

Thursday, May 17, 2012

QuickTime 7.7.2 Released

Apple has released a new version of their QuickTime. Version 7.7.2 contains fixes for a bunch of vulnerabilities that could be exploited to run arbitrary code in target system.

QuickTime users with version older than 7.7.2 should update to the latest one available.

More information about security content of QuickTime 7.7.2 can be read here.

Chrome 19 Available

Google have released a new version of their Chrome web browser. Chrome 19 contains some new features like tab sync (more about these here). Last but not least, new version contains fixes to seven high, six medium and four low catogorized vulnerabilities.

More information in Google Chrome Releases blog.

Tuesday, May 15, 2012

Update For Opera Available

Opera Software has released an update for their Opera web browser. Version 11.64 fixes a critical vulnerability. The vulnerability is related to URL constructs and by exploiting it attacker may be able to execute arbitrary code in affected system.

Related advisory can be viewed here.

Opera users are strongly recommended to update to the latest version. New version can be downloaded here.

Thursday, May 10, 2012

Safari Update Released

Apple has released a new version of their Safari web browsers. Version 5.1.7 contains fixes to four security vulnerabilities. Some of these may lead to an unexpected application termination or allow an attacker to execute arbitrary code in affected system.

Affected are Safari versions earlier than 5.1.7. Users of vulnerable Safari versions can get the latest version here.

More information of the security content of 5.1.7 can be read here.

Wednesday, May 9, 2012

Security Updates From Adobe

Adobe have released patched versions of Adobe Illustrator, Adobe Photoshop, Adobe Flash Professional and Adobe Shockwave Player products. Each of these updates contains fixes to vulnerabilties that may allow an attacker to take control of the affected system.

*Adobe Illustrator update related security bulletin

*Adobe Photoshop update related security bulletin

*Adobe Flash Professional update related security bulletin

*Adobe Shockwave Player update related security bulletin

Tuesday, May 8, 2012

Microsoft Security Updates For May 2012

Microsoft has released security updates for May 2012. This month update contains seven security bulletins of which three critical and four important. A new version of Windows Malicious Software Removal Tool (MSRT) was released too. More information can be read from the bulletin summary.

Saturday, May 5, 2012

ESET Global Threat Report for April 2012

ESET has released a report discussing global threats of April 2012.

TOP 10 threats list (previous ranking listed too):

1. HTML/ScrInject.B (1.)
2. HTML/Iframe.B (3.)
3. INF/Autorun (2.)
4. JS/Iframe.AS (6.)
5. Win32/Conficker (4.)
6. Win32/sirefef (7.)
7. JS/TrojanDownloader.Iframe.NKE (-)
8. JS/Agent (5.)
9. Win32/Dorkbot (9.)
10. JS/Redirector (10.)

Complete report (with a description about each of the above listed threats) can be downloaded here (in PDF format).

Security Update For Adobe Flash Player

Adobe has released an updated version of their Flash Player. The new version fixes a critical vulnerability that could cause a crash and potentially allow an attacker to take control of the affected system.

Affected versions:
-Users of Adobe Flash Player 11.2.202.233 and earlier are recommended to get update 11.2.202.235
-Users of Flash Player 11.1.115.7 and earlier for Android 4.x devices are recommended to get update Adobe Flash Player 11.1.115.8
-Users of Flash Player 11.1.111.8 and earlier for Android 3.x and 2.x devices are recommended to get update Adobe Flash Player 11.1.111.9
-Flash Player integrated with Google Chrome will be updated by Google via Chrome update.

More information can be read from Adobe's security bulletin.

Vulnerabilities In VMware Products

VMware have released new versions of their virtualizing software fixing security vulnerabilities. Some of these vulnerabilities may allow a guest user to potentially execute arbitrary code in host system.

Affected software versions are:
- Workstation 8.0.2 and earlier
- Player 4.0.2 and earlier
- Fusion 4.1.2 and earlier
- ESXi 5.0 prior update ESXi500-201205401-SG
- ESXi 4.1 prior updates ESXi410-201205401-SG, ESXi410-201110201-SG and ESXi410-201201401-SG
- ESXi 4.0 prior updates ESXi400-201105201-UG and ESXi400-201205401-SG
- ESXi 3.5 prior update ESXe350-201205401-I-SG
- ESX 4.1 prior update ESX410-201205401-SG, ESX410-201110201-SG and ESX410-201201401-SG
- ESX 4.0 prior updates ESX400-201105201-UG and ESX400-201205401-SG
- ESX 3.5 prior update ESX350-201205401-SG

Instructions for updating to a non-vulnerable version can be read from the related security advisory.

Wednesday, May 2, 2012

New Chrome Version Available

Google have released a new version of their Chrome web browser. 18.0.1025.168 contains fixes to three high and two medium catogorized vulnerabilities.

More information in Google Chrome Releases blog.