This month’s patch Tuesday is comprised of three bulletins covering four vulnerabilities. Two bulletins affect Windows while the other affects Office. The Windows vulnerabilities affect all currently supported client OS’s. The only critical vulnerability of this month belongs to Windows Media. A maliciously crafted MS-DVR file can allow for remote code execution.
PhoenixDzine
Online Ezine
-
You are currently browsing the archives for the Kaspersky category.
Pages
Archives
- August 2014
- July 2014
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- June 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- November 2010
- October 2010
- September 2010
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- December 2009
- September 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- July 2008
- April 2008
- February 2008
- October 2007
Categories
- Android (4)
- Daily Dilbert (676)
- Daily Xhosa (151)
- Domain Names (2)
- Food and Health (1)
- Football (1)
- Industry News (844)
- Kaspersky (166)
- Windows Mobile (1)
- My Thoughts (101)
- WebDesign (7)
- Website SEO (4)
- Webhosting (6)
- wordwall (6)
- World Cup (1,601)
- World Cup 2010 (1,601)
-
You are currently browsing the archives for the Kaspersky category.
Pages
Archives
- August 2014
- July 2014
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- June 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- November 2010
- October 2010
- September 2010
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- December 2009
- September 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- July 2008
- April 2008
- February 2008
- October 2007
Categories
- Android (4)
- Daily Dilbert (676)
- Daily Xhosa (151)
- Domain Names (2)
- Food and Health (1)
- Football (1)
- Industry News (844)
- Kaspersky (166)
- Windows Mobile (1)
- My Thoughts (101)
- WebDesign (7)
- Website SEO (4)
- Webhosting (6)
- wordwall (6)
- World Cup (1,601)
- World Cup 2010 (1,601)
Malware in the Android Market part 3
March 7th, 2011 Tim Posted in Industry News, Kaspersky No Comments »
A new blog update from Google promises a response to deal with the outbreak of the so called “DroidDream” malware that went live on the Android Market last week:
Malware in the Android Market Part 1
Malware in the Android Market Part 2
According to the blog, Google will initiate its remote-removal process by pushing the installation of a new app called “Android Market Security Tool March 2011.” We’ve had a look at this app, and it does not fix the vulnerability, it simply removes the applications known to be malicious. Google further promises changes to the market to deal with this type of issue and claims to be “working with our partners to provide the fix for the underlying security issues.”
Spam Campaign on Twitter Leads to Adware
March 7th, 2011 Nicolas Brulez Posted in Industry News, Kaspersky No Comments »
Kaspersky Lab recently discovered a new ongoing spam campaign on Twitter. A Twitter account is actively sending tweets to random people with links to a video. Here’s one of the messages:
Off-by-one 2.0
March 4th, 2011 Nicolas Brulez Posted in Industry News, Kaspersky No Comments »
The “off-by-one” vulnerability is an old concept. Here is a description from Wikipedia:
An off-by-one error (OBOE) is a logical error involving the discrete equivalent of a boundary condition. It often occurs in computer programming when an iterative loop iterates one time too many or too few. Usually this problem arises when a programmer fails to take into account that a sequence starts at zero rather than one (as with array indices in many languages), or makes mistakes such as using “is less than or equal to” where “is less than” should have been used in a comparison.
Such an error can lead to DOS or even, in some cases, code execution. There are many resources online describing the exploitation of “off-by-one heap overflow”.
Now, why “Off-by-one 2.0”?
While reading my Twitter feed, I noticed something really interesting. A tweet from an official business account included a shortened URL (bit.ly) that led to a site providing a Potentially Unwanted Application.