F-Secure is reporting on another SPAM attack that tries to get people to click on a link to a site with an exploit-crafted WMF file. The message is along the lines of a claimed Professor at Yale announcing the unfortunate vandalism over the New Year holiday, the link purports to be pictures of the act in the “hope that someone may recognize the culprits work”. I’m sure this won’t be the last of that sort….
Category: Computers
-
USB flash drive with electronic paper display
Just saw this over at engadget. It’s a Lexar jumpdrive with “amount filled” indicator. The twist is the “amount filled” is done with electronic paper. What this means is that you can see how full the drive is without plugging it into a pc. The electronic paper doesn’t draw power to hold the display.
-
Possible network printing problems with the unofficial WMF patch
The Sunbelt Blog has picked up on a report of some network printing problems with the unofficial WMF exploit patch installed. The first report was on the fulldisclosure list. It is recommended that the patch be tested before rolling out. The variation of software configurations varies by environment…
-
Lack of working exploit does not mean Windows 98 is safe
I want to try to clarify a point. I’ve spent a couple days trying to get current exploits to work on a Windows 98 SE virtual machine. Not to prove that Windows 98 is safe, but to determine if current exploits affect Windows 98. Yesterday evening there were apocalyptic headlines saying that virus threatens every windows os shipped since 1990 which is overhyped. The current vulnerability exists in every windows operating system shipped since 1990. The current exploit for that vulnerability doesn’t seem to work on Windows 98 (you have to go a long ways to find a configuration that the current exploit works with… I haven’t yet.) This does not mean that Windows 98 is invulnerable. It simply means that this specific attack does not easily work. Tomorrow may be different, now that the problem is known, it may be just a matter of time before someone determines WHY windows 98 is not as affected and “correct” the problem.
-
Microsoft warns against unofficial patch
I didn’t exactly expect a parade staged by Microsoft for the writer of the unofficial patch for this WMF vulnerability, but…. eweek tells us that Microsoft says “beware of unofficial WMF patch” It also mentions that behind the scenes Microsoft officials are furious that the threat has been overblown. Personally, I think they’ve downplayed the issue in their recent security bulletin and frankly, I’ve seen quite a bit of overblown hype. (*virus threatens every windows os shipped since 1990…)
-
Microsoft advisory on Sober “Awakening”
Microsoft has posted a security advisory (912920) on the previously reported “awakening” of the Sober worm, expected January 6th.
Systems that are infected with Win32/Sober.Z@mm may download and run malicious files from certain Web domains beginning on January 6, 2006
Further they give the following note….
(more…) -
Kubuntu Review and Ubuntu Review
There’s a good review up of both Kubuntu and Ubuntu over at Desktoplinux.com. The writer doesn’t seem to find either a perfect fit. Ubuntu is Gnome based, Kubuntu is KDE based. The versions reviewed are 5.10
Ultimately the writer suggests Suse Linux 10.0 or Xandros as a desktop workstation, Mepislite or SimplyMepis for a new user and OpenSuse for a server-based linux OS.
-
WMF Exploit Unofficial patch additional download locations
The unofficial WMF exploit patch now has multiple locations to download from. They’ve apparently run into some bandwidth problems at the main site. Sunbeltblog has an alternate download location, Sans is hosting a download here (direct download link)
-
WMF exploit vs. Windows 98 again…
If you’ve visited here in the last few days, you’ll have noticed that I’ve been trying to test the WMF exploit against a Windows 98 Virtual machine since January 1st. I initially started out with a default install, which didn’t work, (for the exploit), then added irfanview (didn’t work), tried the exploit as a jpg, gif, htm, doc file extension, (didn’t work) and then this morning saw that I’m not the only one that’s been testing this….
-
MS seeing WMF with rose colored glasses?
Ok – so at least I wasn’t the only one to see Microsoft’s update to the security bulletin as downplaying the threat….
Of course, I don’t expect them to say…. “OH NO>>>> THE INTERNET WILL BE CRASHING AND BURNING…” But acknowledging that it is a very serious threat and there are few ways (outside of the unofficial patch) to be certain that you’re protected in some manner, shape, form would be nice.