A patchy kind of day
Black Tuesday, Reboot Wednesday, , "lets all distribute patches and vulnerability information Thursday". We might need to come up with a shorter name.
We often get links sent to us when vendors release new patches etc. We don;t publish all of them and typically we let you know about the more important ones. However this month there just seems to be a swag of patches from a range of vendors.
Microsoft had their usual bunch of patches, Adobe had two which have already been mentioned. So here are some of the others:
Cisco
- Unified Communications Manager Overflow Vulnerabilities
- MacAfee
- https://knowledge.mcafee.com
/article/761/613364_f.SAL _Public.html - https://knowledge.mcafee.com
/article/762/613365_f.SAL _Public.html - https://knowledge.mcafee.com
/article/763/613366_f.SAL _Public.html - https://knowledge.mcafee.com
/article/764/613367_f.SAL _Public.html
iDefense released information on full disclosure and bugtrack (read more here)
Others mentioned today (so far) CLAM AV, Open office, more on Java, more on tipping point evasion, quicktime (thanks Chris). We'll also add Symantec and itunes, Juniper and no doubt more.
In short it is a patchy kind of day, I'd be checking my list of core software and checking to see if I'm on the relevant notification list. I'll also be checking if there are any non MSFT or Adobe patches I need to apply.
Mark
Adobe patches
Like admins have not enough to do on Reboot Wednesday, Adobe joined in the release of patches today:
| APSB07-12 | Flash player: multiple vulnerabilities |
CVE-2007-3456 CVE-2007-3457 CVE-2007-2022 |
|
| APSB07-13 | Photoshop CS2 and CS3: multiple file format vulnerabilities |
CVE-2007-2244 CVE-2007-2365 |
Public exploits available see past diary |
Enjoy the patching!
Thanks to Andre for the pointer to our own past diary.
A reader mentioned that you if you are running multiple browsers you'll probably have t make sure both plugins are updated (Thanks Chris) - MH.
--
Swa Frantzen -- NET2S
Comments
Anonymous
Dec 3rd 2022
9 months ago
Anonymous
Dec 3rd 2022
9 months ago
<a hreaf="https://technolytical.com/">the social network</a> is described as follows because they respect your privacy and keep your data secure. The social networks are not interested in collecting data about you. They don't care about what you're doing, or what you like. They don't want to know who you talk to, or where you go.
<a hreaf="https://technolytical.com/">the social network</a> is not interested in collecting data about you. They don't care about what you're doing, or what you like. They don't want to know who you talk to, or where you go. The social networks only collect the minimum amount of information required for the service that they provide. Your personal information is kept private, and is never shared with other companies without your permission
Anonymous
Dec 26th 2022
9 months ago
Anonymous
Dec 26th 2022
9 months ago
<a hreaf="https://defineprogramming.com/the-public-bathroom-near-me-find-nearest-public-toilet/"> nearest public toilet to me</a>
<a hreaf="https://defineprogramming.com/the-public-bathroom-near-me-find-nearest-public-toilet/"> public bathroom near me</a>
Anonymous
Dec 26th 2022
9 months ago
<a hreaf="https://defineprogramming.com/the-public-bathroom-near-me-find-nearest-public-toilet/"> nearest public toilet to me</a>
<a hreaf="https://defineprogramming.com/the-public-bathroom-near-me-find-nearest-public-toilet/"> public bathroom near me</a>
Anonymous
Dec 26th 2022
9 months ago
Anonymous
Dec 26th 2022
9 months ago
https://defineprogramming.com/
Dec 26th 2022
9 months ago
distribute malware. Even if the URL listed on the ad shows a legitimate website, subsequent ad traffic can easily lead to a fake page. Different types of malware are distributed in this manner. I've seen IcedID (Bokbot), Gozi/ISFB, and various information stealers distributed through fake software websites that were provided through Google ad traffic. I submitted malicious files from this example to VirusTotal and found a low rate of detection, with some files not showing as malware at all. Additionally, domains associated with this infection frequently change. That might make it hard to detect.
https://clickercounter.org/
https://defineprogramming.com/
Dec 26th 2022
9 months ago
rthrth
Jan 2nd 2023
8 months ago