While we wait for Microsoft to release a patch for the MOST recent Internet Explorer vulnerability….. it looks as though MS is “planning” to release a patch on their routine patch day of April 11th. (However they could always change their mind…) As before though there are some 3rd party patches. I’ve got to say I’m slightly uncomfortable with the prospect of a third party patch when there are workarounds (use another browser, disable active scripting….) However, for some those aren’t enough options. I know of two unofficial patches.
Tag: remove
-
Scheduling tasks in linux – the at command
I did an article a while back about cron and scheduling tasks in linux (I also mentioned kron which is a graphical interface for cron scheduling…). That works well and good for things that happen on a recurring basis, but the next question is what if I want to schedule a command (or series of commands) to happen once and not again? Well, to tell the truth I’ve used cron for this on occasion, being sure to revisit the crontab and remove the entry before it repeats again, but there is a better way. At.
-
Third Party WMF patch
The F-secure blog is reporting on a third party patch for the WMF exploit. I have not tested it, it seems to come from a knowledgable source though. As I’m writing this though, the thought strikes me that a really nasty trick would be a claimed fix that actually exploited the vulnerability. It pays to check up on the source of ANY third-party fix for Windows (or any other operating system or software suite…) Anyway, this seems to be a good source though. He’s the primary author of IDA Pro (Interactive Disassembler Pro).
-
Cleaning up after WMF exploit third party boot disc
At this point, I needed to rename or delete some files that windows would not let me touch. I had this winlogon.exe running from a suspect directory c:\windows\inet20001 and windows wouldn’t let me kill it, or remove it’s start entry in the registry. So, I booted my image from a dsl linux cd and opted for command line only. Once booted, I navigated to mount the windows partition and cd’d to /mnt/hda1/windows/inet20001
-
Lawsuit against 180solutions, eXact, Direct Revenue
Things are going to be interesting. A lawsuit has been filed against the three listed above, everyone’s favorites…. 180solutions, Direct Revenue, and eXact Advertising. This is coming from the Sunbelt Blog who received a tip. The suit has been filed in California, the defendants want to move the suit to Federal Court.
-
Disinfecting a PC… part 3
Picking up from last time… AVG was failing to install with a peculiar registry error. (Which I didn’t see much reference to online.) OK, so here is another fruit of the online search (so many bugs to identify…)
jawa32.exe is listed as spyware.seekseek in sarc’s database.
OK – let’s see if we can kill of some of these suspects… it’s time for a couple cycles of ctrl-alt-del to remove running processes that look suspect, followed by msconfig – disabling of processes running at boot, reboot, repeat.
-
apt-get introduction
For those of you new to linux and using a debian based distribution… here is a good introduction to the world of apt-get. Apt-get is a tool for installing software, updating software, uninstalling software and even for doing complete distribution upgrades.
-
Sony releases XCP remover
Sony has had a busy day… they’ve released software to remove the XCP DRM program that was the start of all the recent SONY DRM rootkit controversy. Of course, the original DRM software had multiple problems in it’s concept AND implementation, the uninstallers and patches since have also had problems. Today I’ve seen reports that Sony’s uninstaller for the SunnComm MediaMax DRM software (the OTHER approach sony uses for copy protection) has some serious problems.
-
Microsoft Fined $32 Million
Microsoft has been fined $32 million by South Korea’s fair trade commision. They are calling for Microsoft to either remove the Media Player and Instant Messenger from Windows, or include competing software. Microsoft has said that such changes may require it to “delay offering new versions in South Korea”, or withdraw Windows from the South Korea market entirely.
-
The perils of Metadata in documents
Loose lips sink ships, so the old saying goes. These days documents are emailed back and forth and many times, revisions are made to “polite the text” up or “sanitize” or “redact sensitive information”. With many file formats though, the metadata about the revisions (or even the old versions of the data itself) are still there. The Security Fix has a great article on the topic today.