This section lists the latest news and blogs found via the daylife API (and for older items, the technorati API), which mention or otherwise discuss this vulnerability.
from: TaoSecurity
My 22nd Snort Report titled Snort vs. Microsoft Security Bulletin MS08-068 has been posted. From the article:Welcome to the 22nd edition of the Snort Report! On Nov. 11, 2008, Microsoft published Microsoft Security Bulletin MS08-068 -- Important Vulnerability in SMB Could Allow Remote
from: HackeR
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::SearchSecurity ... ::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::The MS08-068 patch: Better late than neverMicrosoft says it has been trying to speed up the process of issuingpatches, but its MS08-068 patch is an example
from: Chris Mosby at myITforum.com
Microsoft Security Bulletin Minor Revisions - Issued: December 10, ... * MS08-071 - Critical * MS08-069 - Critical * MS08-068 - Important Bulletin Information
from: DP's Security Bits
Issued: December 10, 2008 Summary The following bulletins have undergone a minor revision increment. Please see the appropriate bulletin for more details. * MS08-075 - Critical * MS08-071 - Critical * MS08-069 - Critical * MS08-068 - Important Bulletin Information: * MS08-075
from: BlueBadger.com - An Apple, iPod, and Microsoft Resource Center
In the last week, the issue of whether your PC is secure or not has popped up all over the Web. Microsoft systems are infamous for needing service packs to fix security holes. How Microsoft hasn’t found all the holes in their browsers or their OS’s defies logic
from: Security Researchs - Security Researchs , Advisories , Coding , Projects , Reversing
hello again to all our patient readers it’s been a long time since we wrote our last post’s ?! ... because we saw MS08-067 - MS08-068 - MS08-006 and MS08-006 and etc . and as you know too publishing real
from: Microsoft Patch Watch
Posted by Memisyazici Aras on Nov 25 <rant> <snip:: />MS08-068 is that security update. It addresses the SMBRelay issue (discovered in 2001) does so in a way that doesn’t have the negative… Read the rest of the post
from: Thoughts of a Technocrat
Via CGISecuirty.net -Austin, Texas, November 19th, 2008 -- The Metasploit Project announced today the free, world-wide availability of version 3 ... , MS08-067, MS08-068, and many more.
from: Blade Watch
Network world A former Microsoft employee who’s now CTO for a patch management firm says an update issued by Microsoft on Tuesday closes a ... team at Microsoft and was a security director for the vendor, says the MS08-068 patch that Microsoft
from: InsanIT.net
You might have thought that with Microsoft’s “Patch Tuesday” fix of the seven year bug, things would be over ... The MS08-068 patch addresses this attack only in the case where the attacker connects back to the victim,” says
from: Thoughts of a Technocrat
Via Metasploit Blog -Today, Microsoft released bulletin MS08-068, which addresses a well-known flaw in the SMB authentication protocol ... is implemented and works as follows. ... The MS08-068 patch addresses this attack only in the case
from: Superimposing Nothing Nowhere
HD Moore already did some great analysis on how the MS08-068 patch affected the SMB Relay attacks within Metasploit. The answer? You can't attack the source workstation/server if MS08-068 has been applied. This ONLY affects Squirtle if your evil agent attempts to communicate back to the victim. It should not impact
from: Chris Linfoot
Microsoft bashing seems to have become far too easy these days with posts like "Microsoft admits to wasting 2 hours a week on upgrades alone! ... t have been able to communicate with an Exchange 2000 server. In fact the MS08-068 patch doesn't ... write-up here. The MS08-068 patch addresses this attack only in the case where the attacker
from: HEXALE (security. reverse engineering. stuff.)
Ok, this is kind of a lame post because I'm gonna give you links to posts made by other people, but oh well, I felt like sharing what I'd found and I'm posting links and not reposting anything, so it should be fine :).I was looking for information about how MS08-068 tried to prevent the smbrelay attack
from: Security4all - Dedicated to digital security, enterprise 2.0 and presentation skills
We have seen the Internet Storm Center posts part 1, part 2 and part 3 providing us details on the Acrobat Reader exploitation of this last week. The payload is a Javascript object embedded in the PDF document. After de-obfuscation, the exploit code looks like:var nm = 12;for(i = 0; i < 18; i++){ nm = nm + "9"; }for(i = 0; i < 276; i++){
from: SecurityProNews - Internet Security News
If you've ever forgotten an appointment, anniversary, or birthday, you know that being late by even a little bit can be terribly awkward ... bulletin MS08-068 addresses a flaw in the Microsoft Server Message Blog protocol, and in a post ... from customers about MS08-068 and its relationship to an issue that was first discussed in 2001, called
from: Related News & Stories - MashGet
Microsoft has offered an explanation as to why it took the company seven years to issue a patch for a known vulnerability. The flaw, which lies in the Microsoft Server Message Block (SMB) protocol, was addressed Tuesday in Microsoft security bulletin MS08-068. The flaw could enable an SMB Relay attack, which would
from: Data Harm blog about Data Protection & Security
Anytime Microsoft releases a critical update for their operating Systems they are usually released on a Tuesday, hence the name Patch Tuesday ... and notification is given under Microsoft Security Bulletin MS08-068 & MS08-069. Share and Enjoy: Digg
from: Superimposing Nothing Nowhere
I just gave a talk to everyone here at DeepSec 08. Other than the weather being a bit cold and wet Vienna is awesome ... . :P On Nov 11th MSRC posted some information on MS08-068 implementing some changes to the NTLM protocol
from: Windows Connected
November 2008 Microsoft Security Bulletin Summary Published 11-11-2008 by Josh Phillips with no comments Today Microsoft issued two security ... ) CVE-2008-4037 1 - Consistent exploit code likely Exploit code is currently public
from: Daily cyber threats and internet security news
Critical Windows, Office Flaws Fixed In November’s MS Patch Tuesday Microsoft’s scheduled batch of patches for November fixes at least four documented vulnerabilities affecting Windows, Internet Explorer and Office users. The company released two security bulletins — one rated critical,
from: MVP Jubo Security Blog
On November 11th Microsoft released another few security updates ... Services Could Allow Remote Code Execution (955218) Important: MS08-068 - Vulnerability in SMB ... : November 2008 Bulletin Release and for a more details regarding the MS08-068 SMB Credential issue, see
from: IntelliAdmin.com
Microsoft has recently released patch MS08-068 - Another SMB remote code execution bug. It allows anyone who exploits the flaw to take control of that computer. If you have not gotten the patch yet
from: ReadersZone
On November 11, 2008 Microsoft has releases the security patch for MS08-068. Microsoft has taken more then seven and half years to patch a security vulnerability in their Windows operating system
from: Ken’sTechnology Blog
Microsoft released only two patches for their products on this November’s Patch Tuesday. The Microsoft Security Bulletins MS08-069 and MS08-068 patched two vulnerability with the status critical and important. The vulnerability rated as critical could allow remote code execution
from: Quasi.Tumblr.
“Tuesday, Schultze again tested the flaw and confirmed that the “MS08-068 patch does address the SMBRelay attack” written by hacker Sir Dystic, from Cult of the Dead Cow, in March 2001.”
from: Bytes & Badz
One of the two patches released by Microsoft for the month of November addresses a vulnerability first reported in 2001 by Josh Buchbinder, better known as Sir Dystic from the Cult of the Dead Cow (cDc). He found a vulnerability in Microsoft operating systems which enables an attacker to gain complete access to a user's computer
from: Website Technology | Blog of Freelance Webdesigner from India, Dibin Samuel.
Microsoft has fixed a critical error with it one patch released on Tuesday. And fixed 4 flaws with two patches ... via Microsoft Update or via the individual bulletins detailed below. MS08-068: Important
from: SouthAsiaFair
n November 11, 2008, Microsoft Inc. released two security bulletins where they have provided necessary information and patches for two of their program bugs. One bulletin, talking about the vulnerability known as MS08-068 has been rated “important” and the other vulnerability, MS08-069, has been rated “critical.” The MS08-068
from: ARP-Cache
Microsoft released two security updates for its Windows operating system Tuesday to patch flaws that could give attackers new ways to install ... MS08-068 update fixes a less-critical bug in the Windows SMB (Server Message Block) software used
