Nothing is sacred anymore, no lines of communications are safe. After yesterday’s Microsoft Security Bulletins for February 2007, even RTF is dead. RTF, or “Rich Text Format”, was once considered to be safe, a lot safer than Word documents, but now we know that RTF files are an infection vector, just like Word docs, PDF [...]
The “things” I’m talking about are vulnerabilities in AIX’s r-commands and Solaris’ telnet daemon. In case you missed them you can read details here: IBM AIX r-commands buffer overflow vulnerability, a brief writeup by CA. This is vulnerability CVE-2007-0670, by the way. Solaris Telnet 0day or Embarrassment from the SecuriTeam blog. Yeah, it’s really 2007 [...]
After many months of arduous labor by various folks here at Arbor, I’m pleased to bring you ATLAS, which is short-form for the Active Threat Level Analysis System. It’s been a long road, but our baby can finally walk! ATLAS is a multi-phase project, the first phase of which includes the release of a public [...]