Peaches

Nov25 MS08-067 Vulnerability: Botnets Reloaded by JM Hipolito (Technical Communications) "After last month’s ruckus made by Microsoft’s out-of-band patch, another threat leveraging the MS08-067 vulnerability was recently reported to have been causing more trouble in the wild. A worm detected by Trend Micro as WORM_DOWNAD.A was found to use the MS08-067 vulnerability to propagate via networks. Trend Micro researchers also noticed high traffic on the affected system’s port 445 upon successful exploitation, after which it connects to a certain IP address to download a copy of itself. The d

24 November 2008, 12:57 Buffer overflow in Vista's TCP/IP stack "Researchers at Austrian firewall maker phion AG have discovered a local vulnerability in Windows Vista's TCP/IP stack that may be exploited to obtain complete control of the operating system. Phion's security advisory says that calling the Windows CreateIpForwardEntry2 API function with a cunningly chosen parameter causes a kernel memory area to be overwritten, so that the system crashes with the dreaded blue screen. The same effect can reportedly be achieved by issuing the command route add and inputting a net mask with more th

Low-Price Apple Netbook Coming Next Year Gregg Keizer, Computerworld Monday, November 24, 2008 1:40 PM PST "Apple Inc. will roll out a lower-priced and lighter-weight laptop in the first half of 2009 to compete in the growing "netbook" category, an analyst said today. The slipping economy will force Apple to address a glaring omission in its line-up: the lack of a lower-priced laptop, said Ezra Gottheil, an analyst with Technology Business Research Inc. "Apple is facing the possibility that as the economic news gets worse, that they're increasingly pricing themselves out of an important mark

Nov 24 2008 Highly critical Critical BoF vulnerability found in ffdshow affecting all internet browsers 4:01 pm under Bkis Security Advisories ffdshow is a DirectShow filter and VFW codec for many audio and video formats, such as DivX, Xvid and H.264. It is the most popular audio and video decoder on Windows. Besides a stand-alone setup package, ffdshow is often included in almost all codec pack software such as K-lite Codec Pack, XP Codec Pack, Vista Codec Package, Codec Pack All in one,… In Oct 2008, SVRT-Bkis has detected a serious buffer overflow vulnerability in ffdshow which affects

November 22, 2008 4:15 PM PST Kernel vulnerability found in Vista Posted by David Meyer A flaw in Vista's networking has been found that can crash the system, but no fix is expected until the next service pack A flaw has been found in Windows Vista that could allow rootkits to be hidden or denial-of-service attacks to be executed on computers using the operating system. The vulnerability was found by Thomas Unterleitner of Austrian security company Phion and was announced Friday. Unterleitner told ZDNet UK on Friday that Phion told Microsoft about the flaw in October but that he understood

Microsoft Yanks Fake Security Software Gregg Keizer, Computerworld Saturday, November 22, 2008 1:48 PM PST "Microsoft said that the anti-malware tool it pushes to Windows users as part of Patch Tuesday removed fake security software from nearly a million PCs during nine days this month. In a post to the company's malware protection center blog on Wednesday, three of Microsoft's security researchers spelled out the impact this month's edition of the Malicious Software Removal Tool (MSRT) has had on phony security software. In the period from Nov. 11 to Nov. 19, said Scott Wu, Scott Molenkamp

Ladies beware of the following scam ... I know I am going shopping again today.

That's great! One of my favorite tunes from the King. Here is is performing it. Blue Christmas Thanks I enjoyed that.

Nope, I would not use that button ... only a select few. #1. would be snoring.

Solved and fixed ...

finally a remote control for the ladies .

Christmas is on the horizon ... how about Blue Christmas by Elvis Prestley. http://www.angelfire.com/il2/surfin/BlueChristmas.html

Symantec Sees Spike in Dangerous Microsoft Attacks Robert McMillan, IDG News Service Friday, November 21, 2008 4:20 PM PST "Symantec is warning of a sharp jump in online attacks that appear to be targeting a recently patched bug in Microsoft's Windows operating system, an analysis that some other security companies disputed Friday. Symantec raised its Threat Con security alert level from one to two because of the attacks, with two denoting "increased alertness." But other vendors, including Arbor Networks and McAfee, said they were seeing no such activity. The attacks spotted by Symantec targe

Internet Explorer 8 Will Ship In 2009 Microsoft has put to rest speculation that its next browser will drop before year's end. By Paul McDougall InformationWeek November 21, 2008 11:40 AM "Computer users hoping to get their hands on a final version of Microsoft's Internet Explorer 8 Web browser are going to have to wait a bit longer. Though speculation has pegged IE8's release for sometime this year, a Microsoft executive has confirmed that the browser will not ship until 2009. Twitters Evan Williams and Current TVs Joel Hyatt talked at the Web 2.0 Summit about the current state of me

Useless Information * The ''sixth sick sheik's sixth sheep's sick'' is said to be the toughest tongue twister in the English language. * 23% of all photocopier faults worldwide are caused by people sitting on them and photocopying their buttocks. * A pregnant goldfish is called a twit. * It is physically impossible for pigs to look up into the sky. * A duck's quack doesn't echo, and no one knows why. * My husband and I divorced over religious differences. He thought he was God and I didn't. * I'm not a complete idiot -- Some parts are just missing. * Consciousness: That annoying time betwe

Symantec Backup Exec for Windows Servers Multiple Vulnerabilities Moderately critical Some vulnerabilities have been reported in Symantec Backup Exec for Windows Servers, which can be exploited by malicious people to bypass certain security restrictions and by malicious users to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. Solution: Apply patches. Backup Exec for Windows Servers version 12.5 build 2213: http://support.veritas.com/docs/314380 Backup Exec for Windows Servers version 12.0 build 1364: http://support.veritas.com/docs/314497 Backup Exec for Window

November 19, 2008 5:57 PM PST iTunes customers angry over copy protection moves at Apple Posted by Elinor Mills "Want to watch a high-definition show from iTunes on an older external display? Good luck! Some Mac users are teed off that they are getting error messages saying the iTunes movie they rented or bought can't be played on their display because it is not HDCP (High Digital Content Protection) authorized. And some people are complaining they are only able to play certain standard definition iTunes content on their laptop or via an HDMI connection. As a result, some Apple forum parti

Researchers Find Vulnerability in Windows Vista Jeremy Kirk, IDG News Service Thursday, November 20, 2008 7:40 AM PST "An Austrian security vendor has found a vulnerability in Windows Vista that it says could possibly allow an attacker to run unauthorized code on a PC. The problem is rooted in the Device IO Control, which handles internal device communication. Researchers at Phion have found two different ways to cause a buffer overflow that could corrupt the memory of the operating system's kernel. In one of the scenarios, a person would already have to have administrative rights to the PC. I

Nov18 PayPal Spam Warns of Fraud, Installs Worm Instead "A new fake PayPal email message is being spammed — this time, it is not the typical PayPal phishing email that everyone is accustomed to. Instead of including links asking for the recipient’s personal information, this spammed message asks users to open a .ZIP attachment. It informs recipients that their PayPal accounts were hacked, and that some fraudulent activity may have occurred. As part of security measures, “PayPal†is asking users to review the “report†in the .ZIP file and then contact the company if anything unusual i

Thanks to gamers, the desktop supercomputer arrives Nvidia's graphics processing power produces a (relatively) inexpensive HPC, the Tesla Personal Supercomputer November 18, 2008 (Computerworld) AUSTIN -- "The definition of a personal supercomputer goes something like this: It's inexpensive, can sit on a desk, plugs into a wall socket and is at least within jumping distance of the Top500 supercomputing list. By that measure, Nvidia Corp.'s new computer is one of the first arrivals in this emerging product category. Nvidia today unveiled a workstation it calls the Tesla Personal Supercomputer

Hosting firm takedown bags 500,000 bots The shutdown of McColo knocks out a record number of bots, says researcher By Gregg Keizer November 18, 2008 (Computerworld) "The shutdown last week of a U.S.-based Web hosting company crippled more than 500,000 bots, or compromised computers, which are no longer able to receive commands from criminals, a security researcher said today. Although the infected PCs are still operational, the previously-planted malware that tells them what to do can't receive instructions because of the shutdown last week of McColo Corp. "Half a million bots are either off

Spam Drop Could Boost Trojan Attacks John E. Dunn, Techworld.com Monday, November 17, 2008 8:03 AM PST "The dramatic fall in spam traffic reported last week after alleged rogue ISP McColo was taken offline will only be a temporary reprieve and could actually generate a new wave of Trojans, experts have warned. ISPs disagree on the global percentage drop caused by the shuttering of California-based McColo last week, with estimates given by those contacted by Techworld ranging from 50 to 80 percent, but even the lower figure is still an unprecedented fall in such a short space of time. It appear

My reply button is missing in the pm's unless I used the quote feature first.

AVG slaps Trojan label on Adobe Flash Third false alarm follows upgrade offer By John Leyden "AVG, the popular anti-virus package, has falsely identified Adobe Flash as potentially malicious. The snafu comes just days after AVG slapped a bogus Trojan warning on a core Windows component. Users on AVG forums complained on Friday that Adobe Flash was detected by AVG's scanner as malicious, following a recent update. The gaffe follows an even more glaring screw-up when user32.dll, a core Windows component, was identified as a banking Trojan following a signature update issued on Sunday. Users who

PDF Malware Hits Acrobat Reader Flaw Megan Burger, PC Advisor Saturday, November 15, 2008 3:05 PM PST "PC Tools is reporting an increase in PDF-based malware, some of which can evade antivirus software. According to a PC Tools blog posting, the security vendor's user community is seeing a slew of rigged PDF files attacking various buffer overflow vulnerabilities in the Adobe Acrobat Reader software. The PDF malware attacks target the newest publicly known Adobe Acrobat Reader vulnerability. Adobe issued a patch last week. On some occasions users are duped into downloading malicious files that