Microsoft Windows Insecurely Loads Dynamic Libraries (TA10-238A)
http://jvnrss.ise.chuo-u.ac.jp/jtg/trn/en/JVNTR-2010-23.html
JVNRSS based Status Tracking Notes: Due to the way Microsoft Windows loads dynamically linked libraries (DLLs), an application may load an attacker-supplied DLL instead of the legitimate one, resulting in the execution of arbitrary code.JVNRSS Feasibility Study Teamjvn@jvn.jpJVNTR-2010-232011-03-13T15:53+00:002010-09-12T03:51+00:002011-03-13T15:53+00:00Microsoft Security Bulletin Summary for March 2011
http://www.microsoft.com/technet/security/bulletin/ms11-mar.mspx
Security Update (MS11-015, CVE-2011-003) released.
Security Update (MS11-016, CVE-2010-3146) released.
Security Update (MS11-017, CVE-2011-0029) released.
Microsoftms11-marhttp://www.us-cert.gov/cas/techalerts/TA10-238A.htmlhttp://www.microsoft.com/technet/security/bulletin/ms11-015.mspxhttp://www.microsoft.com/technet/security/bulletin/ms11-016.mspxhttp://www.microsoft.com/technet/security/bulletin/ms11-017.mspxhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0032http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3146http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-00292011-03-08T13:28-06:002011-03-08T13:28-06:002011-03-08T13:28-06:00Microsoft Security Bulletin Summary for February 2011
http://www.microsoft.com/technet/security/bulletin/ms11-feb.mspx
Security Update (MS11-003, CVE-2011-0038) released.
Microsoftms11-febhttp://www.us-cert.gov/cas/techalerts/TA10-238A.htmlhttp://www.microsoft.com/technet/security/bulletin/ms11-003.mspxhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-00382011-02-08T12:16-06:002011-02-08T12:16-06:002011-02-08T12:16-06:00Microsoft Security Bulletin Summary for January 2011
http://www.microsoft.com/technet/security/bulletin/ms11-jan.mspx
Security Update (MS11-001, CVE-2010-3145) released.
Microsoftms11-janhttp://www.us-cert.gov/cas/techalerts/TA10-238A.htmlhttp://www.microsoft.com/technet/security/bulletin/ms11-001.mspxhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-31452011-01-12T12:07-06:002011-01-12T12:07-06:002011-01-12T12:07-06:00Microsoft Security Bulletin Summary for December 2010
http://www.microsoft.com/technet/security/bulletin/ms10-dec.mspx
Security Update (MS10-093, CVE-2010-3967) released.
Security Update (MS10-094, CVE-2010-3965) released.
Security Update (MS10-095, CVE-2010-3966) released.
Security Update (MS10-096, CVE-2010-3147) released.
Security Update (MS10-097, CVE-2010-3144) released.
Microsoftms10-dechttp://www.us-cert.gov/cas/techalerts/TA10-238A.htmlhttp://www.microsoft.com/technet/security/bulletin/ms10-093.mspxhttp://www.microsoft.com/technet/security/bulletin/ms10-094.mspxhttp://www.microsoft.com/technet/security/bulletin/ms10-095.mspxhttp://www.microsoft.com/technet/security/bulletin/ms10-096.mspxhttp://www.microsoft.com/technet/security/bulletin/ms10-097.mspxhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3967http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3965http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3966http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3147http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-31442010-12-14T13:13-06:002010-12-14T13:13-06:002010-12-14T13:13-06:00Security update available for Adobe Flash Player
http://www.adobe.com/support/security/bulletins/apsb10-26.html
Security Update (CVE-2010-3976) released.: Flash Player 10.1.102.64/9.0.289.0
AdobeAPSB10-26http://www.us-cert.gov/cas/techalerts/TA10-238A.htmlhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-39762010-11-042010-11-042010-11-04Unsafe library loading vulnerabilities
http://www.mozilla.org/security/announce/2010/mfsa2010-71.html
Security Update (CVE-2010-3181,CVE-2010-3182) released.: Firefox 3.6.11/3.5.14, Thunderbird 3.1.5/3.0.9
Mozilla FoundationMFSA 2010-71http://www.us-cert.gov/cas/techalerts/TA10-238A.htmlhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3181http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-31822010-10-202010-10-202010-10-20Security update available for InDesign
http://www.adobe.com/support/security/bulletins/apsb10-24.html
Security Update (CVE-2010-3153) released.: InDesign CS5 7.0.3/CS4 6.0.6, InDesign Server CS5 7.0.3, InCopy CS5 7.0.3/CS4 6.0.6
AdobeAPSB10-24http://www.us-cert.gov/cas/techalerts/TA10-238A.htmlhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-31532010-10-182010-10-182010-10-18About the security content of QuickTime 7.6.8
http://support.apple.com/kb/HT4339
Security Update (CVE-2010-1819) released.: QuickTime 7.6.8
AppleHT4339http://www.us-cert.gov/cas/techalerts/TA10-238A.htmlhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-18192010-09-152010-09-152010-09-15Windows XP DLL loading vulnerability
http://www.mozilla.org/security/announce/2010/mfsa2010-52.html
Security Update (CVE-2010-3131) released.: Firefox 3.6.9/3.5.12, Thunderbird 3.1.3/3.0.7
Mozilla FoundationMFSA 2010-52http://www.us-cert.gov/cas/techalerts/TA10-238A.htmlhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-31312010-09-072010-09-072010-09-07Insecure Loading of Dynamic Link Libraries in Windows Applications
http://www.us-cert.gov/current/archive/2010/09/03/archive.html#insecure_loading_of_dynamic_link
US-CERT Current Activity
Public notification for "Workaround (Fix it 50522) ".
US-CERThttp://www.us-cert.gov/cas/techalerts/TA10-238A.html2010-08-25T12:01-04:002010-08-25T12:01-04:002010-08-25T12:01-04:00Insecure Library Loading Could Allow Remote Code Execution
http://www.microsoft.com/technet/security/advisory/2269637.mspx?jvntrev=1
Fix it (Disable loading of libraries from WebDAV and remote network shares) released.
MicrosoftMicrosoft Security Advisory (2269637)http://www.us-cert.gov/cas/techalerts/TA10-238A.html2010-08-23T18:19-06:002010-08-23T18:19-06:002010-08-23T18:19-06:00Microsoft Windows Insecurely Loads Dynamic Libraries
http://www.us-cert.gov/cas/techalerts/TA10-238A.html
Technical Cyber Security Alert publised via US-CERT Mailing List.
Public notification for "Microsoft Windows based applications may insecurely load dynamic libraries"
US-CERTTA10-238Ahttp://www.us-cert.gov/cas/techalerts/TA10-238A.html2010-08-26T16:40-04:002010-08-26T16:40-04:002010-08-26T16:40-04:00Insecure Loading of Dynamic Link Libraries in Windows Applications
http://www.us-cert.gov/current/archive/2010/08/25/archive.html#insecure_loading_of_dynamic_link
US-CERT Current Activity
Public notification for "Security Advisory (VU#707943) ".
US-CERThttp://www.us-cert.gov/cas/techalerts/TA10-238A.html2010-08-25T12:01-04:002010-08-25T12:01-04:002010-08-25T12:01-04:00Better, Faster, Stronger: DLLHijackAuditKit v2
http://blog.metasploit.com/2010/08/better-faster-stronger.html
DLLHijackAuditKit V2 released.
Metasploit Projecthttp://www.us-cert.gov/cas/techalerts/TA10-238A.html2010-08-24T23:44-07:002010-08-24T23:44-07:002010-08-24T23:44-07:00DLL Hijacking - Vulnerable Applications
http://www.exploit-db.com/dll-hijacking-vulnerable-applications/
Public notification for "Microsoft Windows based applications may insecurely load dynamic libraries"
Exploit-Databasehttp://www.us-cert.gov/cas/techalerts/TA10-238A.html2010-08-252010-08-252010-08-25Insecure Library Loading Could Allow Remote Code Execution
http://www.microsoft.com/technet/security/advisory/2269637.mspx
Security Advisory (2269637) published.
MicrosoftMicrosoft Security Advisory (2269637)http://www.us-cert.gov/cas/techalerts/TA10-238A.html2010-08-23T18:19-06:002010-08-23T18:19-06:002010-08-23T18:19-06:00Exploiting DLL Hijacking Flaws
http://blog.metasploit.com/2010/08/exploiting-dll-hijacking-flaws.html
DLLHijackAuditKit released.
Metasploit Projecthttp://www.us-cert.gov/cas/techalerts/TA10-238A.html2010-08-22T22:48-07:002010-08-22T22:48-07:002010-08-22T22:48-07:00DLL hijacking vulnerabilities
http://isc.sans.edu/diary.html?storyid=9445
Vulnerability information and Audit tool have been circulated in-the-wild.
SANS Internet Storm Centerhttp://www.us-cert.gov/cas/techalerts/TA10-238A.html2010-08-232010-08-232010-08-23Remote Binary Planting in Apple iTunes for Windows
http://www.acrossecurity.com/aspr/ASPR-2010-08-18-1-PUB.txt
Security Advisory (CVE-2010-1795) published.
ACROSASPR #2010-08-18-1-PUBhttp://www.us-cert.gov/cas/techalerts/TA10-238A.htmlhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-17952010-08-18T15:05+00:002010-08-18T15:05+00:002010-08-18T15:05+00:00About the security content of iTunes 9.1
http://support.apple.com/kb/HT4105
Security Update (CVE-2010-1795) released.: iTunes 9.1
AppleHT4105http://www.us-cert.gov/cas/techalerts/TA10-238A.htmlhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-17952010-08-122010-08-122010-08-12Remote Binary Planting in VMware Tools for Windows
http://www.acrossecurity.com/aspr/ASPR-2010-04-12-1-PUB.txt
Security Advisory (CVE-2010-1141) published.
ACROSASPR #2010-04-12-1-PUBhttp://www.us-cert.gov/cas/techalerts/TA10-238A.htmlhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-11412010-04-12T16:51+00:002010-04-12T16:51+00:002010-04-12T16:51+00:00VMware hosted products, vCenter Server and ESX patches resolve multiple security issues
http://www.vmware.com/security/advisories/VMSA-2010-0007.html
Security Update (CVE-2010-1141) released.
VMwareVMSA-2010-0007http://www.us-cert.gov/cas/techalerts/TA10-238A.htmlhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-11412010-03-302010-03-302010-03-30Automatic Detection of Vulnerable Dynamic Component Loadings
http://www.cs.ucdavis.edu/research/tech-reports/2010/CSE-2010-2.pdf
Technical report posted to Web site.
University of California, Davis campusCSE-2010-2.pdfhttp://www.us-cert.gov/cas/techalerts/TA10-238A.html2010-01-312010-01-312010-01-31Dynamic-Link Library Search Order
http://msdn.microsoft.com/en-us/library/ms682586%28VS.85%29.aspx?jvntrev=2
Windows XP SP2 SafeDllSearchMode (DLL search mode is enabled by default) released.
Microsofthttp://www.us-cert.gov/cas/techalerts/TA10-238A.html2001-11-162001-11-162001-11-16Dynamic-Link Library Search Order
http://msdn.microsoft.com/en-us/library/ms682586%28VS.85%29.aspx?jvntrev=1
Windows 2000 SP4 SafeDllSearchMode (Safe DLL search mode is disabled by default) released.
Microsofthttp://www.us-cert.gov/cas/techalerts/TA10-238A.html2001-11-162001-11-162001-11-16Dynamic-Link Library Search Order
http://msdn.microsoft.com/en-us/library/ms682586%28VS.85%29.aspx
Windows XP SafeDllSearchMode (Safe DLL search mode is disabled by default) released.
Microsofthttp://www.us-cert.gov/cas/techalerts/TA10-238A.html2001-11-162001-11-162001-11-16Double clicking on MS Office documents from Windows Explorer may execute arbitrary programs in some cases
http://www.guninski.com/officedll.html
Vulnerability proof-of-concept code posted to Web site.
Georgi GuninskiGeorgi Guninski security advisory #21, 2000 http://www.us-cert.gov/cas/techalerts/TA10-238A.html2000-09-182000-09-182000-09-18