[olug] DNS exploit VU#800113 - should we be alarmed?

Rob Townley rob.townley at gmail.com
Wed Jul 30 07:53:36 UTC 2008


On Wed, Jul 16, 2008 at 1:57 AM, Phil Brutsche <phil at brutsche.us> wrote:

> Will Langford wrote:
> > Just imagine if windows update was compromised.
>
> It would be a relatively minor problem, just like someone poisoning the
> DNS for, say, mirror.centos.org would be a relatively minor problem.
>
> Update packages for Windows, RPM-based distros and DEB-based distros are
> cryptographically signed with either X.509 certificates or PGP/GPG.
>
> --
>
> Phil Brutsche
> phil at brutsche.us
> _______________________________________________
> OLUG mailing list
> OLUG at olug.org
> http://lists.olug.org/mailman/listinfo/olug
>

Any LinkIn developers on the list?
http://www.theregister.co.uk/2008/07/28/pwning_security_updates/
has a news story of an Argentinian hacker who has created a metasploit
plugin to readily exploit java and OpenOffice update among other programs.
Watch the video.

In addition to iTunes, Mac OS X, Winzip and Java, other programs that
Evilgrade can attack include Winamp, Notebook, OpenOffice, Notepad++,
Speedbit and the Linkedin Toolbar.



More information about the OLUG mailing list