Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: InfoSec Handlers Diary Blog - Internet Storm Center Diary 2006-07-18 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

MS 06-034 Update

Published: 2006-07-18
Last Updated: 2006-07-18 21:46:33 UTC
by Scott Fendley (Version: 1)
0 comment(s)
Last night, Microsoft updated the wsusscan.cab to address 2 deployment problems concerning this patch. The first issue involves the patch being re-offered to some users.  In the other case involves the patch silently failing in Windows 2003 SP1 environment.

So, Windows Server 2003 SP1 admins probably need to re-run detection for this update due to the nature of its failure.   For more information  please see http://blogs.technet.com/msrc/archive/2006/07/18/442388.aspx


---
Scott Fendley
ISC Handler
Keywords:
0 comment(s)

Winternals/SysInternals acquired by Microsoft

Published: 2006-07-18
Last Updated: 2006-07-18 17:05:52 UTC
by Scott Fendley (Version: 1)
0 comment(s)
For those of us that have loved the tools that Mark and Bryce have created over the years, pay attention.  Winternals/Sysinternals has been acquired by Microsoft.  It is my hope/belief that many of these tools may become a standard part of any new operating systems released by Microsoft.   However, those decisions have not been made at this moment in time.  I hope that Mark is able to assist in "making Windows an even better platform for all of us!"  In the mean time,  you might want to download the newest versions of these tools and play with them.  Many of them are wonderful tools to have in the toolkit of any IT Security professional.

Source:
http://www.sysinternals.com/blog/2006/07/on-my-way-to-microsoft.html


--
Scott Fendley
ISC Handler 
Keywords:
0 comment(s)

Wireshark Vulnerability

Published: 2006-07-18
Last Updated: 2006-07-18 16:11:14 UTC
by Scott Fendley (Version: 1)
0 comment(s)
Wireshark (formerly Ethereal) announced yesterday that there is a vulnerability which could cause it to crash, use up all available memory, or potentially execute arbitrary code.  It is highly recommended that we upgrade to version 0.99.2.  I would assume that those using the older Ethereal versions should move over to the new Wireshark branded versions as well.

Source:
http://www.wireshark.org/security/wnpa-sec-2006-01.html
http://secunia.com/advisories/21078/

---
Scott Fendley
ISC Handler
Keywords:
0 comment(s)
Diary Archives