The Windows Meta File (WMF) zero-day (0-day) exploit is apparently, VERY nasty, no user intervention required (unless running firefox or opera). Just VISITING a malicous site (viewing a malicious email with image…) would be enough to get the system owned. It sounds as though a FULL reinstall is the best solution. Sunbelt has had some coverage…
Category: Computers
-
More on the Windows WMF zero-day exploit
There seems to be quite a bit developing on the Windows Meta File (WMF) zero-day (0-day) exploit which was first reported yesterday. Sans has raised their alert level to yellow in an effort to get attention to this problem. It looks like the original site serving the exploit is down, but now it’s being served MANY places. Here are more details from f-secure…
-
Small Ethernet Print Server
The Hawking Technology Print Server (HPS1P) is a nice little parallel port to ethernet print server that can be configured to make a single printer available to multiple machines on a LAN (local area network). It supports a number of different protocols and can be configured through a web interface, or with a Windows based control application. There are disadvantages with hooking a printer up to a pc to share over a network. First, the pc that shares the printer has to be up and reliable. Second, that pc has to be in a convenient location to the printer.
-
Network Security guide for the home or small business network – Part 16 – Learn about the enemy
I remember I had a geography teacher once that was a former Marine and he said when he was growing up it was the height of the cold war and geography was interesting to him from a “know your enemy” point of view. That’s a good concept to apply to computer security and network security. This doesn’t mean you have to visit a bunch of blackhat sites (although I’ve known those that do) to monitor their activities.
-
Keeping the new PC spyware free
Spyware Confidential has the top 10 tips to keep that new pc spyware free. Some good tips here and these should be on the checklist when setting up a new pc any time of the year…
Paraphrased here….
-
WMF 0-day exploit
There seems to be a 0-day exploit involving WMF (Windows Meta File’s) according to SANS. Here’s their lead-in
Just when we thought that this will be another slow day, a link to a working unpatched exploit in, what looks like Windows Graphics Rendering Engine, has been posted to Bugtraq.
-
Fake MS Messenger 8 beta and other IM warnings…
F-Secure is warning about ads for a “leaked version” of Windows Messenger 8 beta. There is no public beta of this and it is a virus….
If you download and run BETA8WEBINSTALL.EXE from that site, you won’t get a new chat client. Instead, your existing MSN Messenger will start to send download links to everyone in your contact list. It also connects your machine to a botnet server.
-
WordPress 2.0 is now released
I saw an article at Barrapunto that WordPress 2.0 is now available. I went over to the WordPress site and found indeed it is released. (No mention in their blog yet of it.) Here’s the Gaceta Digital Article that Barrapunto “found”…
-
Flightgear multi platform open source flight simulator revisited
Ok – I was thinking I might have been a bit too dismissive of flightgear. So, I took a second look (and a third and fourth.) In fact, I found a source rpm of the 0.99 version and rebuilt it for Mandriva 2006 and installed. And went in search of scenery for the local area. Now, to compare the two, X-Plane has more spit and polish and frankly the visuals (from the limited area I could see) are better. Flightgear is interesting from the standpoint that it’s open source (GPL) and can use a variety of flight models.