Archive for October, 2007
F-Secure reporting E-mails containing malicious PDF files have been putting computers at risk since Friday. Malicious PDF file called report.pdf, debt.2007.pdf, overdraft.2007.10.26.pdf, or similar, has been massively spammed through e-mail. The PDF is spiced with exploit that downloads ms32.exe, which in turn downloads more components.
This exploit take advantage over unspecified vulnerability in Adobe Acrobat and Reader 8.1 on Windows allows remote attackers to execute arbitrary code via a crafted PDF file, related to the mailto: option and Internet Explorer 7 on Windows XP.The e-mails sent in bulk looked like credit card statements, when such PDF files are viewed on vulnerable machines, they start downloading software from servers in Malaysia or Sweden, which are now being cleaned. This could cause a serious threat as PDF attachments are typically not filtered at e-mail gateways.
Adobe has release patch for this flaw and was made available few days ago but many users have not updated the program. Adobe strongly recommends upgrading to Adobe Reader 8.1.1 or Acrobat 8.1.1 by utilizing the product’s automatic update facility.
To fix this security threat manually, carefully follow the instruction below : -
- Exit Adobe Reader or Acrobat.
- Open RegEdit. On Windows, go to Start > Run, type in regedit and click OK.
- Choose File > Export.
- Select Local Disk C for the Save in: location.
- Type backup for File Name.
- Choose All for the Export Range.
- Click Save.
- Navigate to the appropriate registry key:
NOTE: When editing the key values for Adobe Reader and Acrobat 7.0.9, Regedit will launch a Edit Binary Value window. Be sure to edit the values below using the right panel of the window.Acrobat:
HKEY_LOCAL_MACHINE\SOFTWARE\Adobe\Adobe Acrobat\7.0\FeatureLockDown\cDefaultLaunchURLPermsReader:
HKEY_LOCAL_MACHINE\SOFTWARE\Adobe\Acrobat Reader\7.0\FeatureLockDown\cDefaultLaunchURLPerms - If tSchemePerms is set as follows:
version:1|shell:3|hcp:3|ms-help:3|ms-its:3|ms-
itss:3|its:3|mk:3|mhtml:3|help:3|disk:3|afp:3|disks:3|telnet:3|ssh:3|acrobat:2|mailto:2|file:2 - To Disable mailto (recommended)
Modify tSchemePerms by setting the mailto: value to 3:
version:1|shell:3|hcp:3|ms-help:3|ms-its:3|ms-
itss:3|its:3|mk:3|mhtml:3|help:3|disk:3|afp:3|disks:3|telnet:3|ssh:3|acrobat:2|mailto:3|file:2 - To set mailto to prompt
Modify tSchemePerms by removing the mailto: value:
version:1|shell:3|hcp:3|ms-help:3|ms-its:3|ms-
itss:3|its:3|mk:3|mhtml:3|help:3|disk:3|afp:3|disks:3|telnet:3|ssh:3|acrobat:2|file:2 - Close RegEdit.
- Restart the application.
Daily transfer of files through networks or internet is not secure anymore when the communication line is hijacked or even worse someone is sniffing your transfers. WinSCP has the features to stop this from happening in file transfer. Its main function is the secure file transfer between a local and a remote computer. Beyond this, WinSCP offers basic file manager functionality. It uses Secure Shell (SSH) and supports, in addition to Secure FTP, also legacy SCP protocol.
WinSCP supports three transfer protocols, SFTP, FTP, SCP. SSH File Transfer Protocol(SFTP) is designed to work over any reliable data stream, its basic functionally is similar to old FTP, while having better designed advanced functionality but unfortunately not all SFTP server implementation takes advantage of the advanced features, yet. Secure Copy Protocol (SCP) is an older protocol but almost universally supported on Unix-like platforms as part of an SSH protocol suite. SCP is mostly used with SSH-1 and a descendant of the ancient RCP.
Like any other Ftp client, WinSCP offers command lines execution styles, commands can be read from a script file specified by /script switch, from standard input or passed from the command-line using the /command switch. WinSCP also can be executed in console mode however, WinSCP is a genuine GUI windows application and for this to be possible winscp.com is provided for this purpose.
To improve ease of use, you can choose two different interface, Norton Commander Interface or Windows Explorer look a like interface. Both offer the same flexibility of drag and drop with same transfer method. If you are a new WinSCP user, you may want to select the Explorer-like interface as it should be familiar to any Windows user.
If you use different transfer settings for different tasks regularly, you will find transfer settings presets useful. You can set up a list of named settings, from which you can easily select the one suitable for the current task, or have WinSCP select it automatically. You can configure the presets in Preferences. You will also find the presets useful when you use drag&drop for transferring files and you have opted not to use transfer options dialog. The Transfer toolbar gives you chance to select different transfer settings from presets, before you initiate the transfer.
If you’re having trouble using WinSCP try to find a solution in support Forum if some feature of WinSCP is not working for you or it is disabled, you may be using inappropriate transfer protocol.
Yup we heard the news that Singapore get themselves a new superjumbo Airbus A380 and nominated as the largest passenger airliner in the world. The aircraft was known as the Airbus A3XX during much of its development phase, but the nickname Superjumbo has since become associated with it. A380 made its first commercial flight on 25 October 2007 from Singapore to Sydney with Singapore Airlines. Its upper deck extends along the entire length of the fuselage and this allow for a cabin with 50 percent more floor space. This new airbus comes in two flavour, The A380-800 is for passenger, and The A380-800F is planned freighting model.
The new Airbus is was originally designed to carry 555 passengers and 853 passengers (538 on the main deck and 315 on the upper deck) for the three class airliner. Future variants may include an A380-900 stretch seating about 656 passengers (or up to 960 passengers in an all economy configuration) and an extended range version with the same passenger capacity as the A380. Stronger wing used on design approach sacrifices some fuel efficiency on the A380 passenger model but coupled with the advances in technology will provide lower operating costs per passenger than all current variants of Boeing 747. A380’s wingtip fences similar to those found on the A310 and A320 to improve performance.
Airbus used similar cockpit layout, procedures and handling characteristics to those of other Airbus aircraft, to reduce crew training costs. The A380 features an improved glass cockpit, and fly-by-wire flight controls linked to side-sticks The improved cockpit displays feature eight 15-by-20 cm (6-by-8-inch) liquid crystal displays, all of which are physically identical and interchangeable. These comprise two Primary Flight Displays, two navigation displays, one engine parameter display, one system display and two Multi-Function Displays. These MFDs are new with the A380, and provide an easy-to-use interface to the flight management system—replacing three multifunction control and display units. They include QWERTY keyboards and trackballs, interfacing with a graphical “point-and-click” display navigation system.
On october 18 Mozilla released its latest Firefox update. Latest version is 2.0.0.8 supposed to fixed major security flaw in the mozilla firefox browsers. This latest version fixed : -
- URIs with invalid %-encoding mishandled by Windows[click for more info]
- XPCNativeWrapper pollution using Script object[click for more info]
- Possible file stealing through sftp protocol[click for more info]
- XUL pages can hide the window titlebar[click for more info]
- File input focus stealing vulnerability[click for more info]
- Browser digest authentication request splitting[click for more info]
- onUnload Tailgating[click for more info]
- Crashes with evidence of memory corruption[click for more info]
Now Firefox 2.0.0.8 is compatible with Mac OS X 10.5 and made available in 2 new languages Georgian (ka) and Romanian (ro) and beta for kurdish. For more info please refer to the release notes.
Recent Comments