Posts Tagged Patch Management

PatchMan: Adobe Reader in “protected mode”

Posted by Lars Krogh in Hints on 21/07/2010

patchman-adobe-reader-in-protected-mode

I use Foxit Reader to view PDF’s simply because of the many vulnerabilities in Adobe Reader.

Adobe has now announced, that Adobe Reader will be available in “protected mode” in the next major release (Protected mode has also been used in applications like Internet Explorer, Google Chrome and Microsoft Office 2010). In “protected mode” Adobe Reader will display the PDF file on the PC in a “very restricted manner” inside a sandbox.

Read more on The Adobe Reader and Acrobat Security Initiative here
Read more on Adobe Reader Protected here

, ,

No Comments

PatchMan: iTunes 9.2.1 is out – update now!

Posted by Lars Krogh in Hints on 21/07/2010

patchman-itunes-9-2-1-is-out-update-now

I love my iPod and with it follows iTunes. The latest vulnerability in iTunes was reported to Apple by Clint Ruoho of Laconic Security and it has been fixed in version 9.2.1.

This is a buffer overflow in the handling of “itpc:” URLs. Accessing a malicious site through this protocol could lead to remote code execution (itpc URLs are used iTunes to access podcast feeds).

Read more here
Download the updated version here

, , ,

No Comments

PatchMan: Security Update for Adobe Reader

Posted by Lars Krogh in Hints on 01/07/2010

patchman-security-update-for-adobe-reader

Looks like Adobe has released a 9.3.3 (.msp) to Adobe Reader
I found it here

Remember to disable Javascript in Adobe Reader afterwards

Here is a vbscript that does that:

‘Disable Javascript in Adobe Reader
Dim Wsh,objReg
Const HKCU=&H80000001
strComputer=”.”
Set Wsh=WScript.CreateObject(“WScript.Shell”)
Set objReg=GetObject(“winmgmts:{impersonationLevel=impersonate}!\\” & strComputer & “\root\default:StdRegProv”)
strKeyPath=”Software\Adobe\Acrobat Reader\9.0\JSPrefs”
objReg.CreateKey HKCU,strKeyPath
strKeyPath=”Software\Adobe\Acrobat Reader\9.0\JSPrefs”
dwValue=0
strValueName=”bEnableJS”
objReg.SetDWORDValue HKCU,strKeyPath,strValueName,dwValue

, ,

No Comments

PatchMan: Adobe warns of critical flaw

Posted by Lars Krogh in Hints on 07/06/2010

patchman-adobe-warns-of-critical-flaw

in Flash, Acrobat & Reader – read the post here

… in other words, patch your third-party software!

Tips: Need help to find the third-party software with a variabiliy - try PSI from Secunia (Free-of-charge/Personal use)

, , ,

No Comments

Apps: Install Adobe Reader Update 9.3.2

Posted by Lars Krogh in Hints on 10/05/2010

apps-install-adobe-reader-update-9-3-2

You can install and patch Adobe Reader in one line …

start /w msiexec /i AcroRead.msi TRANSFORMS=AcroRead.mst /update AdbeRdrUpd932_all_incr.msp ALLUSERS=2 DISABLE_CACHE=1 DISABLE_BROWSER_INTEGRATION=YES SUPPRESS_APP_LAUNCH=YES REBOOT=ReallySuppress /qn /Liv %temp%\AcroRead_932.log

Prerequisites …

Extract AcroRead.msi, create a transform file using Adobe Customization Wizard 9 and name it AcroRead.mst. Download the 9.3.2 update from here and place it all in same folder.

,

No Comments

PatchMan: Adobe and Apple under fire

Posted by Lars Krogh in Hints on 17/04/2010

patchman-adobe-and-apple-under-fire

Check out the Marc Maiffret Q&A at CNET News

And you think Apple is taking it seriously too now?
Maiffret: Oh yeah. It’s even a little scarier with them because they try to market themselves as more secure than the PC, that you don’t have to worry about viruses, etc. Anytime there’s been a hacking contest, within a few hours someone’s found a new Apple vulnerability. If they were taking it seriously, they wouldn’t claim to be more secure than Microsoft because they are very much

Quote:

And you think Apple is taking it (Security) seriously too now?

Maiffret: Oh yeah. It’s even a little scarier with them because they try to market themselves as more secure than the PC, that you don’t have to worry about viruses, etc. Anytime there’s been a hacking contest, within a few hours someone’s found a new Apple vulnerability. If they were taking it seriously, they wouldn’t claim to be more secure than Microsoft because they are very much not.

, ,

No Comments

PatchMan: Remember to patch your third-party software

Posted by Lars Krogh in Hints on 15/04/2010

patchman-remember-to-patch-your-third-party-software

Remember to patch your third-party software!
Did you patch Adobe Reader yesterday?
If not -> patch all Adobe Reader 9.3.1 and earlier versions now

If you have deployed 9.3 then you can get the MSPs here
9.3.1 MSP will patch Adobe 9.3.0
9.3.2 MSP will patch Adobe 9.3.0 and 9.3.1

Need to deploy Adobe Reader 9.3? -> get the Adobe Customization Wizard 9 here

No Comments

Security: MSRC on Twitter

Posted by Lars Krogh in Hints on 08/04/2010

security-msrc-on-twitter

Did you know that The Microsoft Security Response Center (MSRC) is on Twitter?

They tweet here

, ,

No Comments

PatchMan: Microsoft Security Advisory (981169)

Posted by Lars Krogh in Hints on 02/03/2010

patchman-microsoft-security-advisory-981169

Okay … check this workarround from Microsoft.

Quote: Do not press the F1 key when prompted by a Web site…

If a malicious Web site attempts to persuade a user into pressing the F1 key, what do you think the user will do?… my guess is hitting F1

No Comments

PatchMan: MS10-015 may cause blue screen

Posted by Lars Krogh in Hints on 14/02/2010

patchman-ms10-015-may-cause-blue-screen

If MS10-015 causes you a bluescreen – it’s time to check to see if data about you or your organization has been stolen (Best to rebuild the machine from scratch instead of try to repair it).

Microsoft has a blog post about the issue.

Here’s a quick fix to get the computer to boot again:

Boot from your Windows XP CD and start the recovery console

  • Type command: CHDIR $NtUninstallKB977165$\spuninst
  • Type command: BATCH spuninst.txt
  • Type command: systemroot
  • Type command: exit (reboot)

,

No Comments