Windows SMB2 'SRV2.SYS' Remote Denial of Service Exploit (and screen shots on Windows 2008 SP2)

There’s a simple exploit code on SMB2 protocol (implemented in the newer OSes of Microsoft) that can easily remote BSDO a Windows server or client. SRV2.SYS fails to handle malformed SMB headers for the NEGOTIATE PROTOCOL REQUEST functionality. The NEGOTIATE PROTOCOL REQUEST is the first … “Windows SMB2 'SRV2.SYS' Remote Denial of Service Exploit (and screen shots on Windows 2008 SP2)”

Read More

openVPN easyrsa batch em "build-key"

We were deploying a solution for our customer, Pizza Hut/KFC Malaysia which deploy pfSense as a VPN gateway and firewall to a little under 300 outlets in Malaysia. Each outlet has a unique “storeID” which is then required to run OpenVPN daemon at the background … “openVPN easyrsa batch em "build-key"”

Read More

Immunet – Antivirus Cloud Computing

Immunet, a startup by Symantec senior execs take Antivirus to the cloud. Immunet attempts to aggregate the results and “opinions” of threats from people using this service. This means, if Bob gets an infection from Saudi Arabia, Immunet alongside your antivirus will then update everyone … “Immunet – Antivirus Cloud Computing”

Read More

My views on free VS. premiere security products.. and Microsoft’s Antivirus?

It’s interesting how one AV product suppress the other in just a matter of months. Look at the graphs produced by those so called independent testers. A sample here. Its a big war of AV companies out there. My problem is, it’s sickening to know … “My views on free VS. premiere security products.. and Microsoft’s Antivirus?”

Read More

Possible new breed of mass spreading worms ? New vulnerabilities found in MS products.

Microsoft Office OWC10.Spreadsheet ActiveX BorderAround() Heap Corruption Vulnerability The specific vulnerability exists in the OWC10.Spreadsheet.10 ActiveX control installed by Microsoft Office. By accessing specific methods in a certain order heap corruption occurs leading to remote code execution. If exploited, complete control of the affected system … “Possible new breed of mass spreading worms ? New vulnerabilities found in MS products.”

Read More

Logging on to Windows 2008 domain as an administrator on Windows 7 domain computer

This has probably been blogged a thousand times but let me be the 1001th ..blogger ;). Thought I’d share this from Windows 7 perspective instead. So, here’s the rundown: I got myself W2008 R2 and Windows 7 RTM up and running, joined the domain and … “Logging on to Windows 2008 domain as an administrator on Windows 7 domain computer”

Read More

My first Windows 7 BSOD

This happened when i was extracting a 7zip file and launching Google Chrome around the same time. I noticed that Kaspersky had reported some antiphishing around this same time when i was accessing a website. Case: Win 7 64 bit RTM, Kaspersky Internet Security 2010, Google … “My first Windows 7 BSOD”

Read More

Check Point SSL Network Extender and Windows 7

If you use an older version of SSL Network Extender (SNEX) and you run the new Windows 7 (Beta, RC or RTM) on 64bit architecture you may get errors through both ActiveX and Java stating it failed to load. This is confirmed by Check Point … “Check Point SSL Network Extender and Windows 7”

Read More