posted by: Alfred on March 18, 2009 12:53 AM
filed in: PAL Applications - Alerts
tagged: application control, streaming media
March Madness for IT
The official 2009 NCAA basketball tournament bracket is out and office, friends, and family pools are forming all over the nation. End users everywhere are scoping out what apps and sites they can use to facilitate their need/desire to watch live streaming tourney games at work. The NCAA is again streaming every single tourney game live, and even has a High Quality (“HQ”) option this year that consumes even MORE bandwidth. They even have a March Madness on Demand (MMOD) iphone app that allows for live streaming games directly to the iPhone.
Both the normal and HQ streaming options make use of Silverlight and asf streaming – which is a new technique for the 2009 tourney.
Most enterprises are familiar with this time of year and the tourney’s impact on their networks. Many organizations will again implement URL filtering policies limiting or banning http://mmod.ncaa.com – which will block traffic to the March Madness on Demand streaming site. The problem that organizations face this year is that users are more savvy than ever, and options to circumvent simple URL filtering policies are legion.
posted by: Alfred on November 11, 2008 8:50 AM
filed in: Threat Advisories - Advisories
tagged: threat prevention, vulnerability exploit
Microsoft Security Bulletin – November 2008
Microsoft announced their scheduled November security bulletin today at 10am PST which covers 4 Microsoft vulnerabilities. Palo Alto Networks released coverage for the Microsoft vulnerabilities covered in the November security bulletin in content version 94 which was released today at 1pm PST.
Here are the vulnerabilities that were released by Microsoft today:
Microsoft Windows SMB Authenticate by Replay Host Remote Code Execution Vulnerability
Vendor ID: MS08-068
CVE: CVE-2008-4037
Microsoft Internet Explorer MSXML3 Race Condition Memory Corruption Vulnerability
Vendor ID: MS08-069
CVE: CVE-2007-0099
Microsoft MSXML DTD Cross-Domain Scripting Vulnerability
Vendor ID: MS08-069
CVE: CVE-2008-4029
Microsoft MSXML Header Request Vulnerability
Vendor ID: MS08-069
CVE: CVE-2008-4033
Click here to view the Microsoft Security Bulletin for November 2008.
posted by: Alfred on October 22, 2008 5:00 PM
filed in: Threat Advisories - Advisories
tagged: threat prevention, vulnerability exploit
Out-of-Band Microsoft Security Bulletin
Microsoft announced an unscheduled security bulletin today at 10AM PST that they have a critical vulnerability (MS08-067) which affects Windows 2000, XP, 2K3 Server, Vista, and 2K8 operating systems. This vulnerability is a buffer overflow in the Windows Server service. The vulnerability exists in the way the Server service handles Remote Procedure Call (RPC) requests. The vulnerability allows a remote, unauthenticated attacker to send a specially crafted RPC request to take advantage of the vulnerability and gain remote code execution privileges on the victim machine. For systems running Vista and 2K8 Server, the result of the vulnerability exploit would be a system crash instead of remote code execution.
Palo Alto Networks released coverage for this Microsoft vulnerability shortly after Microsoft announced the vulnerability. Palo Alto Networks customers received a signature for this vulnerability in emergency content release version 90.
Click here to view the Microsoft Security Bulletin.
