geek scrap » vulnerability http://geekscrap.com there is at least one way to do it Tue, 12 Apr 2011 10:14:14 +0000 en hourly 1 Top 25 vulnerability RSS feeds http://geekscrap.com/2010/02/top-25-vulnerability-rss-feeds/ http://geekscrap.com/2010/02/top-25-vulnerability-rss-feeds/#comments Mon, 15 Feb 2010 08:00:11 +0000 geekscrap http://geekscrap.com/?p=702 One way to receive up-to-date reports about vulnerability issues is subscribing to vulnerability RSS feeds: they update on demand, they don’t rely on your mail subsystem and they don’t fill up your mailbox. The only drawback is that you could miss alerts if you don’t sync your feeds for a long time, but if you’re a IT security manager, you don’t have a life, so how could it happen anyways? ;-)

Here’s the top feeds you should be subscribed to (CVE tags are reported in brackets):

  1. NIST Vulnerability Database.
  2. US Cert Technical Security Alerts [CERT].
  3. SecurityFocus Vulnerabilities [SF-INCIDENTS].
  4. Open Source Vulnerability Database [OSVDB].
  5. IBM Internet Security Systems Threats [ISS].
  6. Vupen Security Advisories [VUPEN].
  7. Secunia Latest Security Advisories (Unofficial) [SECUNIA].
  8. eEye Security Advisories [EEYE].

The above list is also available as OPML file you can import into your feed reader.

Furthermore, you should subscribe to Operating Systems product-centric vulnerability feeds to ensure you receive timely information regarding updated packages and suggested workarounds for your infrastructure. Here’s a comprehensive list, sorted alphabetically:

  1. Apple Security Announce (Mac OS X, iPhone, etc) [APPLE].
  2. Checkpoint’s SmartDefense Service [CHECKPOINT].
  3. Cisco’s Product & Service Security Advisories [CISCO].
  4. Debian Security Advisories [DEBIAN].
  5. Fedora Security Updates [FEDORA].
  6. FreeBSD Security Advisories [FREEBSD].
  7. Gentoo Linux Security Advisories (GLSA) [GENTOO].
  8. Mandriva Security Advisories [MANDRIVA].
  9. Microsoft’s Security Notification Service Comprehensive Edition [MS].
  10. NetBSD Security Advisories [NETBSD].
  11. OpenPKG Security Advisories [OPENPKG].
  12. OpenBSD Errata [OPENBSD].
  13. Red Hat Security Advisories [REDHAT].
  14. Slackware Linux Security Advisories [SLACKWARE].
  15. Solaris SunSolve Alerts [SUNALERT].
  16. SUSE Linux Enterprise Security Advisories (also contains OpenSUSE advisories) [SUSE].
  17. Ubuntu Security Notices [UBUNTU].

OS security advisory feeds are available as OPML file as well.

Have I missed anything? Please report if you find some advisory feed I accidentally missed. Also, if you’re into an Operating System security team and you don’t offer a security announcement feed, please consider making it available.

]]> http://geekscrap.com/2010/02/top-25-vulnerability-rss-feeds/feed/ 1 Windows back-to-the-future bug http://geekscrap.com/2010/01/windows-back-to-the-future-bug/ http://geekscrap.com/2010/01/windows-back-to-the-future-bug/#comments Sun, 24 Jan 2010 00:52:40 +0000 geekscrap http://geekscrap.com/?p=238 According to this advisory written by Tavis Ormandy, Windows has been exposed to a vulnerability for over 15 years! Microsoft will only release a patch for supported products, so if you have any Windows 2000 or earlier in your lab, the only way to fix is disabling DOS and WOWEXEC.

]]> http://geekscrap.com/2010/01/windows-back-to-the-future-bug/feed/ 0