More Fun with ActiveX

Today brings us yet another ActiveX COM vulnerability, this bug is deemed "extremely criticial" by Secunia.com and pretty much everyone else.

The bug hunter was kind enough to submit a POC along with his disclosure.

Here is the link to the POC

I have tested the code against IE 6 SP2 installed on a fully patched XP SP2 and it is vulnerable. Symantec catches the shell code in the POC and labels the dumped content as a "Trojan Horse". This of course can be easily bypassed with a proper payload.

I hope MS is well on their way to a Critical Patch push, else we could all be in for some fun.

So if you have been living under a rock for the last two days, on vacation, or otherwise completely out of the loop, RSA Signature Forgery has been the hot topic. The Matasano Team has been covering it, with the help of Nate Lawson from Cryptography Research.

Part 1 - New Attack
Part 2 - Public Key Difficulties

This is the first two parts of what the team is calling an N part series, hopefully

N = ( Dead Horse ) - 1

Thanks to the Matasano Team and Nate for providing the in depth coverage.

PCI Standards Updated to v 1.1

PCI DSS v 1.1 Documentation

With the formation of the PCI Security Standards Council, comes the latest release of the PCI Data Security Standard.

Highlights include requirements for application code reviews, improved log retention, and improved physical security.

The PCI Security Council is making a valiant attempt to keep its standard on the cutting edge, with clear and concise requirements and no legalese that is rampant in most compliance documents.