StoneBlog.stonesoft.com

IE 6&7 have remote a vulnerability that is being exploited in the wild right now. There are no patches available. If you use StoneGate IPS with strict policy and have update package 293 activated && policy refreshed, you should be safe. If you don’t, you’d want to make sure that the fingerprint situation HTTP_SS-Microsoft-Internet-Explorer-Invalid-Pointer-Reference-CVE-2010-0806 is in your inspection policy with action “Terminate”.

written by Olli-Pekka Niemi - 1,305 views \\ tags: cve, Security, security threat, Vulnerability

A malicious office document can expose Internet Explorer to attacks even if the Internet Explorer is not your default browser.   Continue reading »

written by Olli-Pekka Niemi - 1,620 views \\ tags: Add new tag, Security, security threat, Vulnerability

Today Microsoft announced its February Security Bulletins. There are four bulletins available, two of them handles critical vulnerabilities and the other two handles vulnerabilities rated as important. There’s also a very nice summary document of the bulletins available here

An interesting part of the summary is the Exploitability Index. The documentation of the score is available here, but in short:

(1) means that remote code execution (RCE) exploit can be done
(2) means RCE-exploit can be done, but its more difficult and might not work every time or against all targets.
(3) means that RCE is difficult or impossible, but denial of service is still possible

Lets see:

There’s total of 3 number ones and 5 twos.

Continue reading »

written by Olli-Pekka Niemi - 4,642 views \\ tags: Vulnerability