Microsoft Video ActiveX Control Vulnerability
Microsoft is recommending setting the kill bit for an ActiveX control object, MPEG2TuneRequest, to avoid an in the wild zero day exploit that allows for remote code execution when a web site containing...
View ArticleWho’s Being Promiscuous in Your Active Directory?
I’m always a fan of more queries and peaks at what is going on in my AD domain, especially at what is happening on the workstations. I was working on some WMI queries to get information about network...
View Article2008 Server to the Core
One of my favorite websites in the days of Windows 2000 Server was a project from a group of system managers from the Department of Electrical Engineering at the Swiss Federal Institute of Technology;...
View ArticleServer 2008 R2: Active Directory Functional Levels
Windows Server 2008 R2 was released in August, and it introduced new functional levels for Active Directory. This article takes a look back at the different functional levels of the past and what is...
View ArticleMore COFEE Please, on Second Thought…
The forensics tool provided to law enforcement officials created by Microsoft called COFEE (Computer Online Forensic Evidence Extractor) has been leaked on torrents last week, and this has caused...
View ArticleFrom Promiscuous to Port Scanning with Powershell
It’s been a while since my last post regarding Powershell which showed how to scan hosts for network interfaces in promiscuous mode. This time around, we’ll scan for some well known ports in our Active...
View ArticleRegular or Decaf? Tool launched to combat COFEE
About a month ago, there was much news about the release of COFEE into the torrent wild. I even gave my two cents about the much hyped forensics toolkit which is provided to law enforcement for the...
View ArticleThe “Aurora” IE Exploit Used Against Google in Action
The big news hit earlier this week, the attack vector that allowed bad actors presumably from China into the networks of Google, Juniper, Adobe, and some 30 other firms was an Internet Explorer zero...
View ArticleFebruary’s Patch Tuesday
Today is patch Tuesday for February 2010, and it marks a fairly busy patch cycle for Microsoft, who released thirteen updates today. In late January, there was an out-of-band release for two critical...
View ArticleMicrosoft’s Google Attack Patch?
Noted journalist and friend of the blog George V. Hulme shared the picture below from CNBC, perhaps the most amusing way seen thus far of describing the patch for the 'Aurora bug' that famously...
View ArticlePress F1 for Help, pwned.
Microsoft published security advisory 981169 yesterday in response to the zero day vulnerability reported a few days prior. The vulnerability is in the help system and can be triggered by luring an...
View ArticleClik here to view.
March’s Patch Tuesday
Today is patch Tuesday for March 2010, and Microsoft has released two security bulletins for this round of updates, neither of which are deemed critical. The second bulletin addresses seven different...
View ArticleIEPeers – A New Internet Explorer Zero Day Vulnerability
We posted an aside yesterday referencing Microsoft's recent blog post for new security advisory 981374 referencing a new zero day vulnerability in Internet Explorer versions 6 and 7. New details have...
View ArticleMay’s Patch Tuesday
After a busy April patch month, May’s patch Tuesday proves to be much quieter with two updates released by Microsoft. Although deemed critical, read the details below to see how your environment may or...
View Article
