Attacks started on users of Internet Explorer and RealPlayer 0day exploit.

I haven’t really heard of many RealPlayer exploits, however this zero day one is a nasty. This is an Internet Explorer exploit only, so if you’re using FireFox you’re in luck.

I haven’t really heard of many RealPlayer exploits, however this zero day one is a nasty. This is an Internet Explorer exploit only, so if you’re using FireFox you’re in luck.

October 19, 2007 (Computerworld) — Attackers are exploiting a zero-day vulnerability in RealPlayer in order to infect Windows machines running Internet Explorer, Symantec Corp. said late Thursday. The security company issued an alert that rated the threat with its highest possible score.

According to a warning issued to customers of its DeepSight threat network, Symantec said an ActiveX control installed by RealNetworks Inc.’s RealPlayer program is flawed. When combined with Microsoft Corp.’s Internet Explorer (IE) browser — which relies on ActiveX controls to extend its functionality — the bug can be exploited and malicious code downloaded to any PC that wanders to a specially crafted site.

Only systems on which both RealPlayer and IE have been installed are vulnerable.

Read the full article at computerworld.com

0 Shares:
You May Also Like

Featured Windows Download: Manage Multiple Remote Desktop Connections with mRemote

LifeHacker has a review up on their site about a little application called 'mRemote'. This is quite a piece of software and you can tell that the developers have spent some time on it. I have always been an advocate of being more organized and efficient. With mRemote everything that you need is in one screen, and everything that was left out with Microsoft's Remote Desktop Connection Client is in mRemote. Tabbed windows, supports RDP, VNC, SSH2 and telnet protocols. There is also a connection manager, so you can setup all your connections and then point and click to connect.

Protect your MediaWiki from anonymous users.

After searching for some time on an easy way to protect an internal wiki. I found the following article useful. It goes in-depth into what you would need to change on a base MediaWiki configuration to only allow registered users to see the content within the Wiki. After following all the steps I know am able to login to my private Wiki over SSL! Thus allowing me to keep all my private and important notes online!

Iran.com sold for $400,000

I got this link from a friend over MSN, interesting read, almost over a million dollars spent on domains.

Rick Latona of DigiPawn.com went on a spending spree this week and more than half a million dollars later he was the proud new owner of Iran.com ($400,000), TrackAndField.com ($57,000), Territory.com ($30,000) and Gutter.com ($12,500). The first three names all landed on the top half of our new Top 20 chart and Gutter.com just missed making the Big Board. All four names were acquired in private transactions. In addition to being the biggest sale reported this week, Iran.com is the 6th biggest sale reported so far in 2007.




You can read the full article here at http://www.dnjournal.com
















Guide to upgrading Drupal using SSH Commands

A well written guide on how to upgrade Drupal using SSH commands
This guide is meant to augment the official Upgrade guide. Please read the official upgrade steps in UPGRADE.txt as well as in the Drupal.org Dcoumentation thoroughly to ensure that you understand every aspect of the upgrade process. This guide is for more advanced users with SSH experience.