Linksys Camera Security Issue, Trillian, Others
Couple of key security things...
There's a recent security issue/vulnerability for the WVC-54GC. It's a camera.
Source: 10 Dec 08 Security Now Webcast
It involves on OCX exploit - receiving a UDP packet on port 916 causes the router to send all our your private information, logon credentials, usern/pw, wireless networking connection information including WEP and WPA keys in plaintext. Could be exploited to gain access to all of your wireless network assets.
Fix: Update to firmware version 1.25, which came out on Jan 3, 2008.
Moral of the story: Keep your firmware updated!
***
Microsoft:
19 critical vulnerabilities in the most recent Windows Vista security update - it's a Megapack
Windows Search service has some remote code execution vulnerabilities. Personally, I would recommend against downloading/installing this "feature."
By the way, Microsoft releases security patches every second Tuesday of the month. Non-security patches every last Tuesday of the month, except for December.
Recommend download and notify, but not install. On occasion, some releases can conflict with apps - particularly important for corporate applications.
***
If you use Trillian, upgrade to 3.1.12.0. Without it, you may have a trillian Message problem. Trillian's receipt of an IM can cause code to be executed in your machine. The upgrade fixes a handful of problems, including a zero-day problem.
Last edited by mugaliens; 26-December-2008 at 07:36 PM..
Reason: fix missing "against"
|