AusTech News » Security

CCleaner v2.14.750

Juzman — Wed, 03 Dec 2008 21:33:44 +0000

CCleaner is a freeware system optimization and privacy tool. It removes unused files from your system – allowing Windows to run faster and freeing up valuable hard disk space. It also cleans traces of your online activities such as your Internet history. But the best part is that it’s fast (normally taking less than a second to run) and contains NO Spyware or Adware!

Fully tried and tested with Windows 98/NT4/ME/2000/XP/2003/Vista. It’s currently partially compatible with 64bit XP and Vista, there are a few non-critical issues which are still being worked on.

Download: CCleaner v2.14.750 | Other Builds
View: What’s New | CCleaner Homepage
Source: MSFN

Job website’s data bungle

Juzman — Mon, 25 Jun 2007 05:32:01 +0000

News Digital Media's CareerOne online employment website has launched an internal investigation into how confidential client information accidentally become publicly accessible on the internet.

The material is part of CareerOne's customer relationship management database, described by the company as "old client information".

The details include comments about clients made by CareerOne account executives, some of which are highly unflattering. In one case, a client is referred to as a "retard" and in another a client is called a "lazy good for nothing".

Every file on the master page shows the "last modified" time and date as being at "00:45:52 GMT" on Monday, May 28, 2007, suggesting that they have appeared in this visible state for almost a month.

CareerOne was not aware of the security breach until this morning when they were informed. The web page was subsequently taken down.

View: Full Story
Source: SMH

Windows Server 2003 Service Pack 2

Juzman — Tue, 13 Mar 2007 19:07:26 +0000

Microsoft Windows Server 2003 Service Pack 2 (SP2) is a cumulative service pack that includes the latest updates and provides enhancements to security and stability. In addition, it adds new features and updates to existing Windows Server 2003 features and utilities.

SP2 can be installed directly on the following operating systems:

- Windows Server 2003 Editions (all 32-bit x86)
– Windows Small Business Server 2003 – Please read Knowledge Base Article 932600 before installing SP2
– Windows Server 2003 R2 Editions
– Windows Storage Server 2003 R2 Editions
– Windows Small Business Server 2003 R2
– Windows Server 2003, x64 Editions
– Windows Server 2003 R2, x64 Editions
– Windows Server 2003 Compute Cluster Edition with Service Pack 1
– Windows Server 2003 Storage Server R2, x64 Editions
– Windows XP Professional, x64 Edition

x86 Download: Update Package | ISO-9660 CD Image File
Source: Update Package | ISO-9660 CD Image File

x64 Download: Update Package | ISO-9660 CD Image File
Source: Update Package | ISO-9660 CD Image File

Itanium-based Systems Download: Update Package | ISO-9660 CD Image File
Source: Update Package | ISO-9660 CD Image File

MUI Packs Download: x86 | x64
Source: x86 | x64

View: Release Notes | Windows Server 2003 Service Pack 2 Technical Library
Source: Flexbeta

Comodo Firewall Pro v2.4.16.174 Final

Juzman — Fri, 19 Jan 2007 11:23:00 +0000

As Internet access becomes vital to all business organizations, network security and privacy affects everyone. Comodo, a leading global provider of trust and assurance services for the Internet, provides the highest level of protection for networks and home users alike.

Comodo Firewall is one of the smartest firewalls you can ever see. While providing answers to firewall questions, users usually do not understand the complex questions which involve complicated connection details like IP addresses, Ports, Application paths etc.

Download: Comodo Firewall Pro v2.4.16.174 Final
View: Comodo Home Page
View: Screenshot
Source: In-House

Critical Windows Bug Exploit Code Goes Public

Juzman — Wed, 17 Jan 2007 21:56:23 +0000

Code that exploits a critical Windows vulnerability disclosed and patched last week has been posted to a public mailing list, raising the risk of an attack, security vendors said Wednesday. The exploit code, which appeared on the Bugtraq list Tuesday, targets a flaw in Windows’ Vector Markup Language rendering that was patched Jan. 9 in Microsoft’s monthly security update. VML, an extension of XML that defines Web images in vector graphics format, had been patched before this month; in September 2006, for example, Microsoft issued a fix outside its normally-scheduled cycle.

View: Full Story
Source: InformationWeek via MSFN

IE ‘unsafe’ for 284 days last year

Juzman — Fri, 05 Jan 2007 21:42:57 +0000

Using IE6 was “unsafe” 284 days last year even for users who patched their systems as soon as Microsoft released fixes. An analysis by the Washington Post’s Stuart Krebs revealed that exploit code for critical unpatched flaws in IE6 was available for three-quarters of the time last year.

Even worse, for at least 98 days last year no patches were available for flaws that were been actively exploited by hackers to steal personal data. Firefox users, by comparison, were exposed to critical, unpatched flaws that were actively exploited for just nine days last year. This single period of exposure compares to multiple overlapping periods of vulnerability faced by IE6 users.

View: Full Story
Source: The Register via Neowin

Teen Exposes Google Security Flaw, Partially Fixed Overnight

Juzman — Tue, 02 Jan 2007 23:03:43 +0000

Acting very quickly, Google fixed the security hole on Jan. 1 after being notified of its existence on Dec. 30. According to reports online, however, the flaw was only partly corrected. The flaw can exploit, either via a website or by manually inserting code into a user’s web browser, users who have logged into Gmail, Blogger or other Google services with their Google accounts. An attacker could potentially send malicious messages with viruses or malware to people on an exposed contact list.

The vulnerability was discovered by 16-year-old Haochi Chen of Columbus, Ohio. He was tinkering with an undocumented feature of the Google Video service that allows a user to e-mail videos to anyone in their Gmail contact list. According to Chen, Google responded to his alert within 30 hours after he reported the flaw to them. Google patched the problem on Monday morning. According to ZDNet’s Googling Google blog, the vulnerability was “only partially fixed. The author of the blog, Garret Rogers wrote: “I recommend you log out of Gmail when you are not using it until the problems are solved.”

View: Googling Google
Source: CBC News

NOD32 v2.70.23

Juzman — Wed, 20 Dec 2006 16:33:34 +0000

NOD32 Antivirus System provides well balanced, state-of-the-art protection against threats endangering your PC and enterprise systems running various platforms from Microsoft Windows 95 / 98 / ME / NT / 2000 / 2003 / XP, through a number of UNIX/Linux, Novell, MS DOS operating systems to Microsoft Exchange Server, Lotus Domino and other mail servers.

Viruses, worms, trojans and other malware are kept out of striking distance of your valuable data. Advanced detection methods implemented in the software even provide protection against the future threats from most of the new worms and viruses. The fourth generation of the NOD32 Antivirus System features a fully integrated software suite characterized by an unprecedented detection track record, the fastest scanning rates and extremely low utilization of system resources.

Download: NOD32 v2.70.23 (Shareware)
View: NOD32 Homepage

NOD32 v2.70.16 Final

Juzman — Tue, 21 Nov 2006 06:02:52 +0000

This release introduces the following major changes:
- Support for Microsoft Windows Vista (32-bit and 64-bit)
- Enhanced rootkit detection and removal (Anti-Stealth)
- Improved classification of spyware and adware
- Improved removal of malware

Download: NOD32 v2.70.16 Final (Shareware)
View: NOD32 Homepage

Internet Explorer 7 “mhtml:” Redirection Information Disclosure

Juzman — Thu, 19 Oct 2006 06:55:16 +0000

A vulnerability has been discovered in Internet Explorer, which can be exploited by malicious people to disclose potentially sensitive information. The vulnerability is caused due to an error in the handling of redirections for URLs with the “mhtml:” URI handler. This can be exploited to access documents served from another web site.

Secunia has confirmed the vulnerability on a fully patched system with Internet Explorer 7.0 and Microsoft Windows XP SP2. Other versions may also be affected. Secunia has constructed a test, which is available here.

Solution: Disable active scripting support.

View: Test your browser
Source: Secunia via MSFN