Some program Vulnebilities Detected!!

Just got done looking at some of my security sites and according to SecuriTeam there are are several programs that have vulnerabilities. here are the Ones that I’ve found:

Google chrome is vulnerable to URI Obfuscation vulnerability.
An attacker can easily perform malicious redirection by manipulating the browser functionality. The link can not be traversed properly in status address bar.This could facilitate the impersonation of legitimate web sites in order to steal sensitive information from unsuspecting users. The URI specified with @ character with or without NULL character causes the vulnerability.

[ad#ad2-right]iPhone Configuration Web Utility for Windows Directory Traversal
iPhone Configuration Web Utility lets “you easily create, sign and distribute configuration profiles using a web browser”. A vulnerability in iPhone Configuration Web Utility allows remote attackers to access files that reside outside the bounding root directory of the program’s files folder.

Streamripper Multiple Buffer Overflows
Streamripper “records Shoutcast and Live365 MP3 streams to a hard disk, creating separate files for each track. Runs under Unix and Windows.” Secunia Research has discovered some vulnerabilities in Streamripper, which can be exploited by malicious people to compromise a user’s system.

Amaya URL Bar Stack Overflow Vulnerability
A vulnerability in Amaya browser allows remote attackers to cause it to overflow an internal buffer which in turn can be leveraged to execute arbitrary code.

These are the ones that I found and wanted to let you know about these so you can make your system even more secure.   if I find any others I’ll let you know!!!

Vista has a new Vulnebility!

According to Techworld.com,  Vista has a new Vulnerability that could let a hacker infect a Vista machine with a rootkit.  The talk from them is quite intriguing.   I will quote it to better let you know what the Vulnerability is:

The vulnerability could allow a hacker to install a rootkit, a small piece of malicious software that is very difficult to detect and remove from a computer, Unterleitner said.

[ad#ad2-left]Phion notified Microsoft about the problem on 22 October. Microsoft indicated to Phion that it would issue a patch with Vista’s next service pack. Microsoft released a beta version of Vista’s second service pack to testers last month. Vista’s Service Pack 2 is due for release by June 2009.
[via Techworld.com]

The way they could do this is through the Device IO Control which in turn could corrupt the Kernel of Windows Vista.  Now we all know that Microsoft will release a patch quicker than 6 months away.  According to this article, people are already looking for the exploit and want to know more about it.  I would be willing to bet they will have a patch out sooner than later.  Probably January or Febuary, which will be a big deal because no one will expect it.  I would also imagine hackers will start trying to figure out how they could install software as quick as possible before Microsoft pushes out the patch.   So what can you do to protect yourself, Get a firewall, a Antivirus and learn how to protect yourself to prevent yourself from getting a computer virus.

5 ways to improve your chance of getting hired.

Having seen the economy this week, I’ve come to the conclusion that it is time to redo all the important essentials and get all my ducks in the order as they say.   I’ve been thinking of how best to be ready in case the dreaded day comes when my employer no longer needs my assistance and what could I do to be prepared.

[ad]

  • Get Someone to Critique your Resume — This is the most important step because this is the first place employers look when they want to hire someone.  So how do you get it critiqued?   Here are some good links to help you start off with:  Careerbuilder Critique, Mind of Root Peer Critique(Last until Oct 30, 2008).
  • Have your Resume Ready to upload to Resume sites —  You should always register at all the important resume sites just in case.  The Sites that I recommend are : Monster, Career BuilderHot jobs, Dice, US jobs, Best Jobs USA, Computer Jobs, and Nation Job.
  • Use your website as a place to put your Resume Have your resume available in case some contacts you and tells you they know someone who is looking to hire people.  Have this resume hidden and only give it out to people you know.   This is also known as networking.
  • Network as much as possible —  There are sites out there that have made it easier to network.  Sites like linkedin.com, this site is great because of the 6 degrees of possibility as I call it.  You know someone, they know someone, and then you will both know the same one!!   This also will greatly increase your chance of an employer finding you.
  • For those who want to be Self employed —  I wanted to say that most people who want to be self employed know just how hard it is to begin with.  So I’ve got some interesting links to help start you on your way.   First link is Technibble.com Computer Business Kit,  This has Maintenance Sales Letter, Work Order, Marketing Analysis and Payment Overdue Letter. It is also a good idea to have an MP3 Advertisement that you can give to podcast and throw them the link to it.  You will need to market yourself to the public in ways that no one has thought of.   You will on an occasion have to spend money in order to get money, it’s always been that way but it seems to work.

These are some great tips that will greatly improve your chances of landing that job or becoming even more chance of you making money.   If you have any tips or want to suggest ways to improve upon these tips please email me.   If you like what you see discuss it on the blog or click on my ads to help offset the cost of this blog.