|« Nmap 5.00 Released with Some Amazing New Features||OpenSSH Security Vulnerabilities and Port Knocking »|
It's been an interesting couple of weeks and Blackhat/DefCon are still a little under two weeks away. First, Milw0rm.com shut down, then Milw0rm.com was brought back by str0ke. Now Milw0rm.com is hosting new 0day exploit code for both major web browsers.
A vulnerability in the Microsoft DirectShow MPEG2 ActiveX Control (MS09-028) was recently updated (a patch was released yesterday). This vulnerability is actively being exploited in the wild.
"But I use FireFox!" you say? Well yesterday a 0day for FireFox 3.5 was announced.
As discussed in previous blog entries, we highly recommend using layered security including HIPS, updated AV, firewall, and extensions such as NoScript.