| |
 |
 |
 |
|
|
|
|
Date: 22 January 2009
Click here for printable version
Greetings,
This week has seen a large amount of media attention given towards the spread
of the Conficker/Downadup Worm. This worm, while being able to self-propagate
via multiple methods, has been of particular interest because of its ability to
exploit a vulnerability in Windows operating systems.
Of note also, is that the worm uses a large list of common passwords to attempt
to brute force access to user accounts.
We'd also like to take this opportunity to remind everyone about the importance
of choosing strong passwords. Please take a look at our document that covers
the best practices for choosing strong passwords.
Trend Micro also released a critical service pack for their OfficeScan 8.0, to combat a number of vulnerabilities that could allow the execution of arbitrary code with system privileges and a denial of service, as detailed in our (AL-2009.0004) bulletin. At the same time, Cisco announced an update for Cisco Security Manager, to prevent a vulnerability which could allow a root compromise, details of which can be found in our (AL-2009.005) bulletin. Additionally we also saw the release of a new version of QuickTime, to correct a number of vulnerabilities which could allow the execution of arbitrary code and denial of service - more information can be found in our (AL-2009.0006) bulletin.
Regards,
Jonathan
|
|
|
|
 |
|
 |
|
|