Sunday, July 12, 2009

Tools of the Trade - Microsoft Video ActiveX Control 0day Edition

Cody Pierce of TippingPoint DVLabs recently blogged a detailed technical analysis of the recent Microsoft Video ActiveX Control (msvidctl.dll) 0day, which many are expecting Microsoft to patch early next week.

Microsoft also plans to patch the currently open Directshow vulnerability...


On to the tools....

On July 11th, Sun released Virtual Box v3.0.2. VirtualBox is a general-purpose full virtualizer for x86 hardware. This is a maintenance release of VirtualBox 3.0 which improves stability and performance. Check out the changelog for all the details.

On July 9th, Frederic Raynal & Guillaume Delugre released origami 1.0.0-beta0. Origami is a Ruby framework designed to parse, analyze, edit, manipulate, forge, exploit PDF files. This is NOT a PDF rendering library. It aims at providing a scripting tool to generate and/or analyze malicious PDF files. As well, it can be used to create on-the-fly customized PDFs, or to inject (evil) code into already existing documents.

On July 8th, Gabriel Campana released Fuzzgrind 090622. Fuzzgrind is a fully automatic fuzzing tool, generating test files with the purpose of discovering new execution paths likely to trigger bugs and potentially vulnerabilities. It is based on the concept of symbolic execution.

On July 8th, Drew Yao of Apple Product Security announced the release of CrashWrangler. CrashWrangler is basically Apple's version of the !expoitable tool released by Microsoft. It is a set of tools to determine if a crash is an exploitable security issue, and if a crash is a duplicate of another known crash. The exploitability diagnosis is intended to be used when you have a reproducible test case, but the duplicate detection can be run on any crash log. CrashWrangler supports Mac OS X 10.5 and later. The toolset is free to anyone with a ADC account.

On July 8th, Terence Stenvold released Harald Scan v0.2. Harald Scan is a Bluetooth discovery scanner written in Python. It determines Major and Minor device classes according to the Bluetooth SIG specification and attempts to resolve a device's MAC address to the largest known vendor/MAC address list.

On July 7th, VLC Media Player 1.0 was released. VLC media player is a highly portable multimedia player for various audio and video formats as well as DVDs, VCDs, and various streaming protocols without external codec or program. This major release introduces many new features, new formats and new codecs to the VLC multimedia framework and fixes a very high number of bugs that were present in the 0.9.x or 0.8.6 versions.

On June 27th, Tor-ramdisk 20090627 was released. Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose sole purpose is to securely host a Tor server purely in RAM. Check out the changelog for all the details.

On June 26th, Maxim Bourmistrov released Trafscrambler v0.1. Trafscrambler is an anti-sniffer/IDS NKE (Network Kernel Extension) for Mac OS X. This initial release implements SYN-decoy, Pre/Post connections SYN, TCP reset, and zero window attacks. Author tested this on x86 OS X versions 10.5.6 and 10.5.7. It should work on PPC and older releases as well.

On June 25th, Nmap 4.90 RC1 was released. This release fixed a hanging bug in OS X. Check the changelog for all the details.

On June 25th, CCleaner v2.21.940 was released. CCleaner is a freeware system optimization, privacy and cleaning tool. It removes unused files from your system - allowing Windows to run faster and freeing up valuable hard disk space. Check the version history for all the details.

On June 25th, Tor v2.0.35 was released. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Tor fixes a big bug that was causing Tor relays with dynamic IP addresses to disappear from the network. It also fixes a rare crashbug on fast exit relays. Check out the announcement for all the details.

On June 25th, PHD Virtual released Patch Downloader v6. This tools is a freeware solution to simplify patch downloading for various VMware ESX versions. It ases the pain of downloading patches for various ESX versions from the VMware support site by automating the process for users that cannot use the VMware Update Manager. Now, rather than downloading each patch manually through a Java Download manager, VMware administrators can simply select the version of ESX from the Patch Downloader drop down menu, and select the download location (including folder, drive map, SMB share, etc.).

On June 24th, Kismet-2009-06-R1 was released. Kismet is an 802.11 layer 2 wireless network sniffer. This release drops the "candidate" designation, and is the first full release of the Kismet-Newcore code. It includes a number of UI improvements (better network details, more mouse support, fixed color handling, and nework notes), multiple platform-specific fixes (OS X installation, Nokia ITT bugfixes, and BSD fixes), has improved source handling on Linux, de-cloaked SSID caching, and more. Check out the SVN commit notes for more.

On June 17th, Adobe released Shockwave Player version According to Adobe's Security Bulletin (APSB09-08), this version fixes a vulnerability which could allow an attacker to take control of the affected system.

No comments:

Post a Comment