Security Basics mailing list archives
RE: .LNK vulnerbility
From: "faruk" <nagorifaruk () gmail com>
Date: Sat, 24 Jul 2010 22:24:56 +0530
Hi All, Thanks for sharing so below facts. However, I am In need of more support here. I want to know if snort or ISS has type of signature which can detect such type of files presence. Or if there is any history if Virus can originate traffic at firewall level. Thanks in advance. Regards, Faruk Nagori -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Eggleston, Mark Sent: Friday, July 23, 2010 10:57 PM To: Shreyas Zare Cc: security-basics () securityfocus com Subject: RE: .LNK vulnerbility Ah, correct (thank you). Interesting method of distinction on MS' part. -----Original Message----- From: Shreyas Zare [mailto:shreyas () secfence com] Sent: Friday, July 23, 2010 1:22 PM To: Eggleston, Mark Cc: Todd Haverkos; security-basics () securityfocus com Subject: Re: .LNK vulnerbility On Fri, Jul 23, 2010 at 10:28 PM, Eggleston, Mark <meggleston () healthpart com> wrote:
Also MS states XP SP3 impacted (but does NOT mention SP2?) However, bugtraq mentions SP2... Can anyone confirm if XP SP2 is impacted?
Hi, SP2 is not supported by Microsoft any more. If users want to extend support they have recommended to upgrade to SP3. So, SP2 users are left out in cold. Regards, Shreyas Zare Sr. Information Security Researcher Secfence Technologies www.secfence.com This message, together with any attachments, is intended only for the use of the individual or entity to which it is addressed. It may contain information that is confidential and prohibited from disclosure. If you are not the intended recipient, you are hereby notified that any dissemination or copying of this message or any attachment is strictly prohibited. If you have received this message in error, please notify the original sender immediately by telephone or by return e-mail and delete this message along with any attachments, from your computer. ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727 d1 ------------------------------------------------------------------------ ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- .LNK vulnerbility Daniel Hood (Jul 23)
- Re: .LNK vulnerbility Todd Haverkos (Jul 23)
- RE: .LNK vulnerbility Eggleston, Mark (Jul 23)
- Re: .LNK vulnerbility Todd Haverkos (Jul 23)
- Re: .LNK vulnerbility Shreyas Zare (Jul 23)
- RE: .LNK vulnerbility Eggleston, Mark (Jul 23)
- RE: .LNK vulnerbility faruk (Jul 27)
- RE: .LNK vulnerbility Eggleston, Mark (Jul 23)
- Re: .LNK vulnerbility John Koelndorfer (Jul 23)
- Re: .LNK vulnerbility William Warren (Jul 27)
- Re: .LNK vulnerbility Todd Haverkos (Jul 23)
- RE: .LNK vulnerbility David Bobrosky (Jul 23)
- Re: .LNK vulnerbility Todd Haverkos (Jul 23)
- Re: .LNK vulnerbility vijay upadhyaya (Jul 27)
- Re: .LNK vulnerbility Curt Purdy (Jul 28)
- <Possible follow-ups>
- RE: .LNK vulnerbility krymson (Jul 27)