PSA - Run windows update! 31 vulnerabilites patched

Computers, Gadgets and other Cool Shit

Moderator: Demon Hunters

User avatar
Palehorse
Posts: 2031

PSA - Run windows update! 31 vulnerabilites patched

Post#1 » Tue Jun 09, 2009 10:52 pm

http://www.pcmag.com/article2/0,2817,2348463,00.asp

for those unaware of how to run windows update, open internet explorer browser, then tools option -> windows update -> express updates.

Huge Microsoft Patch Fills Windows, Office, IE Holes
06.09.09

by Larry Seltzer

Microsoft released 10 updates to various versions of Windows, components of Microsoft Office, and a cumulative update to Internet Explorer on Tuesday. The company patched a total of 31 vulnerabilities in the update, with some being highly exploitable.
The most serious one is the update for Internet Explorer, MS09-019: Cumulative Security Update for Internet Explorer. This update addresses a critical vulnerability on every client version of Windows. 8 separate vulnerabilities are patched in this update, including one which was publicly disclosed in 2007. While this very old vulnerability has been public knowledge for some time, there are no known reports of exploit code and Microsoft's exploitability index states that functioning exploit code for it is unlikely.

5 of the other 7 vulnerabilities are some sort of HTML or DHTML "Object Memory Corruption Vulnerability". One of them is interesting for affecting only Internet Explorer 8, the most recent and highly-scrutinized version. This vulnerability appears to be easy to exploit if DEP is not enabled, but unlikely to be exploited on systems on which DEP is enabled. This vulnerability on pre-release IE8 was the subject of a high-profile exploit at the last CanSecWest Pwn2Own contest, but that exploit used a hole through DEP that was patched before IE8 was shipped.

Only one of the other vulnerabilities has an exploitability index of 1, meaning that functioning exploit code is likely. It is rated critical only on IE6 on Windows XP and doesn't affect IE7 or IE8. 2 other vulnerabilities in IE7 on Vista could result in "inconsistent" exploit code.

There are 6 updates for Microsoft Windows:



MS09-018: Vulnerabilities in Active Directory Could Allow Remote Code Execution—This update is rated critical for Windows 2000, important for Windows XP and Server 2003 and not applicable to other versions. This update fixes 2 separate vulnerabilities; one is critical and exploitable, the other not critical and unlikely to be exploitable. "Remote code execution possibility exists on Windows 2000 servers that expose the LDAP service (default tcp/389) on the network."

MS09-022: Vulnerabilities in Windows Print Spooler Could Allow Remote Code Execution—This update is rated critical for Windows 2000, moderate for Windows XP and Server 2003 and, ironically, important for Windows Vista and Server 2008, the usually less-severely affected versions.

MS09-025: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege—This update is rated important for all supported versions of Windows. 4 vulnerabilities patched. Privilege elevation bugs are sometimes used in combination with other vulnerabilities in order to accomplish a more sophisticated exploit.

MS09-026: Vulnerability in RPC Could Allow Elevation of Privilege—This update is rated important for all supported versions of Windows. On the one hand the advisory says that this is an error in "...the Windows remote procedure call (RPC) facility where the RPM Marshalling Engine does not update its internal state appropriately." On the other hand, the exploitability index says that "This vulnerability does not directly affect any Microsoft software. However, workstations on which RPC services are implemented from independent software vendors might be susceptible to remote code execution if this security update is not installed." So it's important, but it's not so clear where the error is.


MS09-020: Vulnerabilities in Internet Information Services (IIS) Could Allow Elevation of Privilege—This update is rated important for Windows 2000, XP and Server 2003, and not applicable to Vista and Server 2008. One of the 2 vulnerabilities in this advisory was publicly disclosed last month after it was exploited in the wild, so clearly it is exploitable, although only for information disclosure.

MS09-023: Vulnerability in Windows Search Could Allow Information Disclosure —This update is rated moderate for Windows XP and Server 2003, and not applicable to all other versions. A script execution bug exists in the way file previews are generated that could result in inappropriate information disclosure.

One update, MS09-024: Vulnerability in Microsoft Works Converters Could Allow Remote Code Execution, is rated critical for Word 2000, important for Word 2002, Word 2003, Word 2007, Works 8.5 and Works 9.0. It's a simple buffer overflow in the Works file importer for .wps files. Word 2007 SP2 is not affected.

A separate vulnerability in Microsoft Word, MS09-027: Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution, is rated critical for Word 2000 and important for a wide variety of Word products including the Mac versions, the file viewers and file compatibility packs. It fixes 2 separate buffer overflow vulnerabilities one of which is exploitable for remote code execution. Word 2000 users beware.

Finally, a vulnerability in Microsoft Excel, MS09-021: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution, is rated critical for Excel 2000 and important for a wide variety of Excel products including the Mac versions, the file viewers, file compatibility packs and the Sharepoint Server. 7 separate vulnerabilities are patched, 6 of them critical on Excel 2000. 4 of these are likely to produce functioning exploit code for remote code execution, but the rating is only critical on Excel 2000 because of mitigating factors in later versions.

70
Ecnailla
Posts: 3624

Post#2 » Tue Jun 09, 2009 11:03 pm

Screw IE. Firefox ftw.

User avatar
Gnomerman
Posts: 1814

Post#3 » Wed Jun 10, 2009 11:05 am

you tell that to netflix.....

it liked version 2, but it refuses to touch version 3. damn you ms and your bs
Image


There is more to life than pew pew you know, like staying out of the fire so you can live to pew pew another day

User avatar
100
Lealla
Class Leader
Posts: 3797
Contact:

Post#4 » Wed Jun 10, 2009 1:18 pm

Regardless of how you feel about IE or even Windows, you should regularly check for updates to all your software. There's no telling where a vulnerability will rear its ugly head, and besides a good firewall, security updates are the single best way to keep hackers out of your porn stash.

Yes, Firefox users, you've had security vulnerabilities too. So has every web browser. Don't confuse obscurity with safety.
Image
Image

User avatar
Ginxx
Posts: 378

Post#5 » Wed Jun 10, 2009 1:20 pm

firefox is obscure?

User avatar
100
Lealla
Class Leader
Posts: 3797
Contact:

Post#6 » Wed Jun 10, 2009 1:46 pm

The vast majority of exploits are targeted at IE users (or underlying Windows vulnerabilities). Every new PC comes with it. Many applications use the IE renderer regardless of the user's operating system browser preference.

Until Firefox can make those claims, it's obscure compared to IE. On the other hand, as it continues to gain market share, it's going to get increasingly targeted by hackers. You can't have it both ways.
Image

Image

User avatar
Gnomerman
Posts: 1814

Post#7 » Wed Jun 10, 2009 2:15 pm

google chrome try it, love it :)
Image





There is more to life than pew pew you know, like staying out of the fire so you can live to pew pew another day

User avatar
Ginxx
Posts: 378

Post#8 » Wed Jun 10, 2009 2:29 pm

i also like chrome alot, although EB told me that its googles way of spying on you even more

User avatar
100
Lealla
Class Leader
Posts: 3797
Contact:

Post#9 » Wed Jun 10, 2009 2:40 pm

Ugh, this is not a browser war thread. This is a thread telling you to get off your ass and patch your software.

IE, Firefox, Safari, Chrome -- they all get security updates on a regular basis. There is no browser that is "so cool" that it's exempt from security flaws.
Image

Image

User avatar
Polarside
Posts: 1087
Contact:

Post#10 » Wed Jun 10, 2009 3:12 pm

This seems to always happen when I try watching the porns on Firefox
Shhh! Theres a dead horde in my trunk. Wanna see it? Fuck around and you'll be it.

User avatar
100
Lealla
Class Leader
Posts: 3797
Contact:

Post#11 » Wed Jun 10, 2009 3:46 pm

Polar, that popup that says, "Your computer may be infected -- click here to download SuperBigFix Deluxe!" is not a friendly happy message from the security geeks.
Image

Image

User avatar
Polarside
Posts: 1087
Contact:

Post#12 » Thu Jun 11, 2009 12:33 pm

hahaha... Yeah it amazes me at how stupid people can be. They love to click anything. And nothing irritates me more than PC users that never update their operating systems. Or well any other software on their computer for that matter...
Shhh! Theres a dead horde in my trunk. Wanna see it? Fuck around and you'll be it.

User avatar
Arlan
Posts: 541

Post#13 » Thu Jun 11, 2009 6:59 pm

I don't seem to have any updates available, but I'm running windows 7 :D

Return to “Technical Discussion”

Who is online

Users browsing this forum: No registered users and 2 guests

cron