Microsoft security bulletins

As it developed, on Tuesday Microsoft has released six security bulletins (from MS09-063 to MS09-068) for its usual cycle of updates. According to Microsoft's own classification of three of the bulletins have a severity level "critical" while the other five are "important." A total of 15 vulnerabilities have been resolved.
The bulletin "critical" are:
* MS09-063: Update to correct a vulnerability in Web Services on Devices Application Programming Interface (WSDAPI), which could allow remote code execution if Windows affected system receives a specially created package. It affects Windows Vista and Windows Server 2008.
* MS09-064: Update is intended to correct a vulnerability in License Logging Server on Windows 2000 that could allow arbitrary remote code execution if an attacker sends a network specifically created a system running License Logging Server.
* MS09-065: Update to fix for three vulnerabilities in Windows Kernel that could allow remote execution of arbitrary code. It affects Windows 2000, XP, Vista, Server 2003 and Server 2008.

The newsletters are classified as "important" are:

* MS09-066: Update designed to correct a denial of service vulnerability in the Active Directory service, Active Directory Application Mode (ADAM) and Active Directory Lightweight Directory Service (AD LDS).
* MS09-067: Update that addresses eight vulnerabilities in Microsoft Excel. The problems may come to allow remote code execution if a user opens an Excel file specifically manipulated.
* MS09-068: Update that fixes a vulnerability in Microsoft Word, which could allow remote code execution if a user opens a Word file specifically manipulated.

You can download the updates released through Windows Update or Microsoft bulletins consultation which includes the addresses of each patch direct download. Given the seriousness of the vulnerabilities we recommend updating systems as soon as possible.

Tomcat Insecure Installation under Windows

The Windows installer for Tomcat leave the password blank for the administrative user of the application, which can result in serious security problem for those who have installed Tomcat under Windows with the installer. Affected versions are 5.5.0 to 5.5.28 Tomcat 6.0.0 to 6.0.20 and, although they are no longer supported may also be affected.

The ruling is that the Windows intalled leave the password blank and is not changed after the installation process. The admin user is admin and manager roles, which has full powers over Tomcat. Users who have installed Tomcat directly from a zip or tar.gz file are not affected. You can remove the user configuration file tomcat-users.xml after installation to be unaffected by the problem or provide the same file a strong password. This error will be corrected in forthcoming publications 6.0.x, 5.5.x.


Windows distribution vulnerability
http://markmail.org/thread/wfu4nff5chvkb6xp

Apache Tomcat Security Updates
http://tomcat.apache.org/security.html

Mac OS X 10.6.2 Available: fixes multiple security issues

Apple has released the 10.6.2 update of Mac OS X. This version also introduce various stability improvements and compatibility in Snow Leopard, is responsible for close numerous security vulnerabilities, including a serious flaw that causes the loss of information when logged on as guest.
It has also solved another problem known which allows an attacker to modify the firmware on Apple keyboards.
This can be exploited to install a program capable of recording keystrokes (keylogger). Mac OS X 10.6.2 is only available for Snow Leopard. However, in Mac OS X 10.5 also have closed the same vulnerabilities with the release of Security Update 2009-006. So regardless if you are user of "Leopard" or "Snow Leopard" it's time to upgrade.

link : Security Update 2009-006 / Mac OS X v10.6.2

Denial of Service Vulnerability in Linksys WAP4400N

It has reported a vulnerability to denial of service in wireless access points WAP4400N Linksys (Wireless Access Point).The problem is due to an error when trying Association requests poorly constructed, which could result in the device is
rebooted or becomes blocked causing unusable wireless network with the consequent denial of service condition.It has released firmware version 1.2.19 to correct this problem.

More Information:

Links:

Vulnerability in HP Color LaserJet

It has reported a vulnerability in some printers HP Color LaserJet range, which could allow denial of service attacks orbypass security restrictions and allow unauthorized access to data.
On several occasions we talked about the importance of keeping systems up to date, but we must also remember that hardwareelements may also be affected by security problems that can cause significant impact to business continuity. They arefrequent updates for vulnerabilities in routers, switches and network devices similar, but the printers are importantelements in the daily operational work and may also be affected by serious problems. Especially workplace printers withmultiple functionalities.

The problem is caused by an error from which HP has not provided details, but confirmed that affected the HP Color LaserJetM3530 Multifunction Printer with firmware 53.021.2 and HP Color LaserJet CP3525 Printer with firmware 05.058.4. Only printersare affected with these specific versions of firmware.
HP has released firmware updates to correct these problems:
HP Color LaserJet M3530 Multifunction Printer 53.031.4 or later.
HP Color LaserJet CP3525 Printer 05.059.3 or later.
Available from the HP website at www.hp.com
This problem is an example of how important it can be given to all systems and devices that make up our network, even those
who think they can not have problems as a printer.

More Information:

HPSBPI02472 SSRT090196 rev.1 - Certain HP Color LaserJet Printers, Remote Unauthorized Access to Data, Denial of Service
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01886100

Unite with Opera 10.10

Today has released a new version of Opera browser, which apparently counts for almost anyone (and unfortunately its share of use proves it) but has a performance very good, especially in speed and low memory consumption.

Of course, these features are retained in the version 1010 and also adds Unite, a feature that lets you create a content server easily from your browser Opera.

Along with Unite, the 10/10 version includes enhancements like Turbo Opera, Opera Mail, Opera Dragonfly, Opera Link, a BitTorrent download manager, etc ... As in previous versions you can download Opera for Windows / Mac / Linux and in different languages.

Link | Opera

Link | List of features

Internet and Security Tool

Dear readers welcome to Internet and Security tool blog. You will get all kind of internet software which is required for browsing and you will also get security software to keep your pc secure. Trying to communicate a secret in an environment with millions of potential witnesses such as the Internet is difficult, and the likelihood that someone will hear a conversation between two partners increases as does the distance between them. Because the Internet is truly global, no secrets in value should be communicated through it without the help of cryptography.

In the business world, information like credit card numbers, authentication of clients, including emails and phone calls end up being routed through the Internet. Since much of this corporate information should not be heard by other people, the need for security is obvious.

However, Internet Security is not only a business concern. Everyone has the right to privacy when it accesses the internet your need for privacy does not disappear. The privacy is not only confidentiality, but also includes anonymity. What we read, the pages you visited, the things we buy and the people we talked to represent information that most people do not like to publicize. If people are forced to expose information that would normally want to hide the fact connect to the Internet, probably reject all network related activities. Normally people are are not aware that how they get virus or how malware entered in their pc.

When we visit a website that contain malicious webpage within it (source code) codes that attempt to infect any way our system. Basically what happens when you visit a site with such malicious code is present in interior of that site when you start downloading ,from downloading process Malware enter in your .Basically what happens when you visit a site with such malicious code is present in suinterior start our team scans for vulnerabilities, when one is detected starts
downloading the malware that "knows" to take it.

It all starts with the download script, or put another way, entering a page that contains malicious scripts. Hence ons like noscript in Firefox are highly recommended to prevent these from running, but beware ... not all scripts are harmless and without them a lot of pages may not display correctly. Besides blocking the scripts is not the only possible security measure to take, keep your browser updated, programs and operating system updated with the latest security patches is absolutely vital. Not doing so is to increase significantly our exposure to viruses as well as affecting the performance of the PC, they can steal confidential information, capture what we write, delete files, install other malware and etc..

The malicious websites abound and can take various forms, from very attractive designs to alleged errors and seemingly empty pages. A newspaper is distributed by mail (spam), instant messaging (chat), forums, blogs, social networks and even on major portals are violated. That is why our common sense is the best weapon to keep them away, we must be cautious with all links
to click (look at the actual destination in the status bar), especially those present in unknown websites and unsolicited messages.

So beware of malware and virus and keep your system update and get all the latest update from this blog.