X hits on this document





12 / 13

a routine set of patches through Windows Update." Arak said the high number of restarts in a short time period clogged Skype's network, causing a flood of log−in requests. These, combined with the lack of peer−to−peer (P2P) network resources, "prompted a chain reaction that had a critical impact." While Skype's P2P network does have the ability to fix itself for just such problems, Arak said the outage revealed a software bug within the network resource allocation algorithm that prevented the self−healing function from properly working. This bug was not, he said, created via malicious activity. Source: http://www.eweek.com/article2/0,1895,2173171,00.asp

34. August 20, ComputerWorld First exploit appears for Patch Tuesday vulnerability. A security researcher has published the first exploit against one of the 14 vulnerabilities patched last week by Microsoft Corp., security company Symantec Corp. has warned customers. In a posting to the Full Disclosures security mailing list, Alla Bezroutchko, a senior security engineer at Brussels−based Scanit NV/SA, spelled out JavaScript code that crashes Internet Explorer 6.0 on Windows 2000 and Windows XP Service Pack 2. Bezroutchko's proof of concept exploits the critical bug in XML Core Services that was patched by MS07−042. That update, one of six rated "critical" by Microsoft, affected every currently supported version of Windows, including the new Vista operating system. Symantec warned users of its DeepSight threat−alert network to expect Bezroutchko's crude exploit to be polished soon. "The current proof of concept will crash Internet Explorer; however, it is likely that this code will be modified to produce a code−execution exploit in the near future," read the Symantec warning. Source: http://www.computerworld.com/action/article.do?command=viewA rticleBasic&articleId=9031601&intsrc=hm_list

Internet Alert Dashboard

To report cyber infrastructure incidents or to request information, please contact US−CERT at soc@us−cert.gov or visit their Website: www.us−cert.gov.

Information on IT information sharing and analysis can be found at the IT ISAC (Information Sharing and Analysis Center) Website: https://www.it−isac.org/.

[Return to top


Commercial Facilities/Real Estate, Monument &Icons Sector

Nothing to report. [Return to top]

General Sector

Nothing to report. [Return to top]


Document info
Document views39
Page views39
Page last viewedMon Jan 16 19:57:53 UTC 2017