Forum latest

As "Hacking" moves from the malicious to the profit motitvated....
Written by Daniel   
Friday, 24 August 2007 09:29

 We will need to take care that we are as alert as they are persistent....

 Close the Holes Targeted by the MPack Attack Kit
A practical guide to closing the most dangerous software vulnerabilities that crooks target with ready-made attack kits.
Erik Larkin, PC World
Wednesday, August 22, 2007 11:00 AM PDT
Symantec recently posted details about a new version of MPack, a for-sale Web attack kit that loads up a site with exploits against Windows, QuickTime, and WinZip. The $400 kit was used in the June Italian Job online assault that hijacked tens of thousands of Web sites, most of them in Italy. Crooks can buy MPack and a host of other nefarious programs on a thriving online black market.



In its post, Symantec listed only which holes the new MPack version targets; I followed up with the company to get specifics and links to fixes. All of the vulnerabilities allow an attacker to take over your PC if you view a tainted Web page. And according to Roger Thompson of Exploit Prevent Labs, another popular kit called Icepack attacks the same flaws.

Since thousands of poisoned Web sites actively attack these program vulnerabilities, they are must-close holes--and making sure they're fixed will go a good ways toward keeping you safe online. The first three vulnerabilities listed here affect Windows; if you've been keeping up with Automatic Updates, you should have the patches. To make sure, run Windows Update from the Start menu, or download the patches individually from the listed Microsoft links. The other two attacks hit QuickTime and WinZip, and are meant to catch people who might update Windows but not worry about other programs.
The Must-Close Holes

Microsoft XML Core Services overflow
Critical flaw for Windows XP SP2, Windows 2000 SP4, and Windows Vista
Get the fix from Windows Update, or Microsoft

WebViewFolderIcon overflow
Critical flaw for Windows XP SP1 and SP2, and Windows 2000 SP4
Get the fix from Windows Update, or Microsoft

ANI overflow
Critical flaw for Windows XP SP2, Windows 2000 SP4, Windows Vista, and Windows Server 2003
Get the fix from Windows Update, or Microsoft

WinZip ActiveX overflow
Critical flaw for WinZip 10 prior to build 7245 on Windows (WinZip doesn't specify which versions of Windows)
Get the fix (and instructions) from WinZip

QuickTime overflow
Critical flaw for QuickTime Player 7.1.3 on Windows XP/2000
Get the fix (and instructions) from Apple, or choose Help, Update Existing Software from the QuickTime menu.
Other Threats... MORE

Comment in the Forums 

Don't Click Here Don't Click Here Either