Three of the bulletins are particularly severe and require immediate attention. One of these critical updates (MS10-006) addresses two vulnerabilities in the SMB networking service protocol that might easily lend itself to drive-by attacks on unpatched systems.
"Highest on our list for patching are MS10-006 SMB client and MS10-013 DirectShow, which affect all versions of Windows and have a low exploit ability index", he said. "Next are MS10-007 Shell URI handling, which is critical for Windows 2000, XP and 2003 and MS10-008, an update to the ActiveX Killbit settings, applicable to all platforms."
Zlo... da li neko uopste moze vise da nabroji sve kriticne propuste u SMB-u (#@*&@#
Ljude u Microsoftu koji su odgovorni za SMB treba poslati na security rehab... ovo je stvarno sramota, u klasi Adobe Flash/PDF-a.
A i DirectShow vuln-ovi... kada multimedijalni stack biva security issue, covek stvarno treba da se zapita ko je to pisao :)
http://www.digicortex.net/node/1 Videos: http://www.digicortex.net/node/17 Gallery: http://www.digicortex.net/node/25
PowerMonkey - Redyce CPU Power Waste and gain performance! - https://github.com/psyq321/PowerMonkey