-
March 13th, 2009, 06:53 PM
#1
When *almost* everyone fail's .. (Web application security related / IIS)
This was a good read today morning..
The three main actors in this movie were a web application with a security vulnerability, Microsoft’s server class operating systems with an unpatched local privilege escalation vulnerability and the last line of everyone’s defense, the AV vendors.
Here's the brief : virustotal 0 detection - It's unpatched from over 10 months (Published: April 17, 2008 | Updated: October 9, 2008) - Most other security appliances will never pick it up..
Finally, the AV vendors should be more proactive (instead of reactive) and follow exploit research developments so they can add detection for similar exploits early and protect their customers.
Life isn’t easy, thanks to Microsoft!
Source : http://isc.sans.org/diary.html?storyid=6010
Parth Maniar,
CISSP, CISM, CISA, SSCP
*Thank you GOD*
Greater the Difficulty, SWEETER the Victory.
Believe in yourself.
Similar Threads
-
By nightcat in forum The Security Tutorials Forum
Replies: 9
Last Post: May 28th, 2005, 02:47 AM
-
By SDK in forum Miscellaneous Security Discussions
Replies: 4
Last Post: July 22nd, 2004, 11:05 PM
-
By xmaddness in forum Miscellaneous Security Discussions
Replies: 5
Last Post: October 31st, 2002, 01:59 AM
-
By xmaddness in forum Miscellaneous Security Discussions
Replies: 0
Last Post: September 25th, 2002, 08:53 PM
-
By xmaddness in forum Security News
Replies: 1
Last Post: August 15th, 2002, 03:07 AM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|