Updates 12/10/13 - WinUpdates, Adobe, WinPatrol, Firefox, SAS

Both MajorGeeks and FileHippo are mirroring copies of Firefox 26 "final":

http://www.majorgeeks.com/files/details/mozilla_firefox_7b02.html

http://filehippo.com/download_firefox/

Typically, these sites "jump the gun" by several hours... the Mozilla/Firefox site is still showing v25.1 as being current...

I would suggest that users wait for the official release --- presumably later today (or tomorrow at the latest) --- and then use FF's internal updater.

Now available via FF's internal updater.

===================================

https://www.mozilla.org/en-US/firefox/26.0/releasenotes/

What’s New

• FIXED                    

                        When displaying a standalone image, Firefox matches the EXIF orientation information contained within the JPEG image                      (298619)                    

• FIXED                    

                        Text Rendering Issues on Windows 7 with Platform Update KB2670838 (MSIE 10 Prerequisite) or on Windows 8.1                      (812695)                    

• FIXED                    

                        Improved page load times due to no longer decoding images that aren't visible                      (847223)                    

• FIXED                    

                        AudioToolbox MP3 backend for OSX                      (914479)                    

• FIXED                                     

  Various security fixes :

Security Fixed in Firefox 26

MFSA 2013-117    Mis-issued ANSSI/DCSSI certificate
MFSA 2013-116    JPEG information leak
MFSA 2013-115    GetElementIC typed array stubs can be generated outside observed typesets
MFSA 2013-114    Use-after-free in synthetic mouse movement
MFSA 2013-113    Trust settings for built-in roots ignored during EV certificate validation
MFSA 2013-112    Linux clipboard information disclosure though selection paste
MFSA 2013-111    Segmentation violation when replacing ordered list elements
MFSA 2013-110    Potential overflow in JavaScript binary search algorithms
MFSA 2013-109    Use-after-free during Table Editing
MFSA 2013-108    Use-after-free in event listeners
MFSA 2013-107    Sandbox restrictions not applied to nested object elements
MFSA 2013-106    Character encoding cross-origin XSS attack
MFSA 2013-105    Application Installation doorhanger persists on navigation
MFSA 2013-104    Miscellaneous memory safety hazards (rv:26.0 / rv:24.2)

Adobe Flash Player 11.9.900.170 has been released.

 These updates address vulnerabilities that could cause a crash and potentially allow an attacker to take control of the affected system.

Direct downloads (no bundled junk) for Windows 7 and earlier:

Internet Explorer - http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_active_x.exe

Plugin-based browsers (Firefox etc) - http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_11_plugin.exe

Uninstaller (if needed) : http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe

(Note:  Users of IE10 on Win8 will receive a proprietary Flash update directly from Microsoft )

Documentation : http://helpx.adobe.com/security/products/flash-player/apsb13-28.html

----------------------------------------------------------------------------

Also:  Adobe AIR 3.9.0.1380 (for those who have/use AIR)   http://get.adobe.com/air/ 

          Adobe Shockwave Player 12.0.7.148 (for those who have/use Shockwave)   http://get.adobe.com/shockwave/

Malicious Software Removal Tool (MSRT, MRT) for December, version 5.7  

http://www.microsoft.com/en-us/download/malicious-software-removal-tool-details.aspx 

WinPatrol 29.2.2013

http://www.winpatrol.com/upgrade.html

Remark:   As of the moment, the WinPatrol changelog does not show any differences from the 29.1.1 release.

SAS (SUPERAntiSpyware): 5.7.1008

• Identifies potentially unwanted programs and securely  removes them.
• Provides  an even easier user interface by putting key tools, such as quarantine  management, scan logs, and repair features in one place.
• Streamlines self-service licensing for an easier path to retrieving and resetting license keys.

Remark:  I may wait a few days until this is available through the internal updater.

On my WIn7x64 Pro SP1, I have 13 updates (9 Windows + 4 Office) totaling 103.8 MEG.  (Not including the MSRT, which I downloaded separately, earlier today.)

This month's MSRT (citied above) adds detection/removal of Win32/Rotbrow :

"This family of trojans install browser addons that claim to protect you from other addons. These addons can make changes to your home page and also install Win32/Sefnit.

These trojans are commonly installed by Win32/Brantall. "

For additional details, see http://blogs.technet.com/b/mmpc/archive/2013/12/10/rotbrow-the-sefnit-distributor.aspx

The following 5 updates are rated CRITICAL:

MS13-096 Vulnerability in Microsoft Graphics Component Could allow Remote Code Execution (2908005)

MS13-097 Cumulative Security Update for Internet Explorer (2898785)

MS13-098 Vulnerability in Windows Could Allow Remote Code Execution (2893294)

MS13-099 Vulnerability in Microsoft Scripting Runtime Object Library Could Allow Remote Code Execution (2909158)

MS13-105 Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution (2915705)

============================================================

The following 6 updates are rated IMPORTANT:

MS13-100 Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2904244)

MS13-101 Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2880430)

MS13-102 Vulnerability in LRPC Client Could Allow Elevation of Privilege (2898715)

MS13-103 Vulnerability in ASP.NET SignalR Could Allow Elevation of Privilege (2905244)

MS13-104 Vulnerability in Microsoft Office Could Allow Information Disclosure (2909976)

MS13-106 Vulnerability in a Microsoft Office Shared Component Could Allow Security Feature Bypass
(2905238)

Users of Sandboxie 4.06 (including myself) are reporting a (minor?) conflict with MS13-097 Cumulative Security Update for Internet Explorer (kb 2898785):  after installing this update, Sandboxie generates a warning message:  SBIE2205 Service not implemented:  NtOpenKeyEx (00000008)

This warning has been confirmed for Sandboxing IE11 on Win7x64 systems.   It might apply to other configurations as well.

Sandboxie BETA Version 4.07.05 suppresses the message, going on the assumption that this particular warning does not impact security.

Those interested can read more here:  http://www.sandboxie.com/phpbb/viewtopic.php?t=17450

BillP has clarified (via FaceBook) that there were no new changes in WP version 29.2 ---

rather, it was a "coding fix" that  hopefully will now correctly implement the changes he intended for version 29.1.1

Hey Ky331,

Sorry to hijack your thread but I haven't been around here in a long time and typed beversoll in the Google search bar and the first thread that popped up for me was a discussion we had way back in 2008 discussing Avast! and their new integrated Spyware protection (among other things).  Just wanted to say hi.  Not sure if you still remember me or not. 

Anyways, I'm coming back to PC forums after being away for quite awhile.  I got into some other forum type stuff and gradually didn't have enough time to stick with the PC forums with work, family, friends and my online communities. 

Also, does the Dell forum no longer have an AV/AS removal forum any longer?  I am not seeing it, but maybe I could be overlooking it.  But I know it use to be here with Bugbatter (I think that was her name) and a few other members offering free virus removal.  Or did Dell remove that forum dedicated to malware removal (call out tech support we will help you for a few hundred dollars). 

I will be posting again, happy to see your still around.  Also, I see Joe53 is still around and Bugbatter.  This is the first thread I found that was new so I thought I would post here.  Anyways, I'm back and will drop in. 

Sorry for the off-topic everyone, but just wanted to say hi to some old friends. 

Or did Dell remove that forum dedicated to malware removal (call out tech support we will help you for a few hundred dollars).

If you need free help, or just want to read security news, come see us at SpywareHammer. ky331 and joe53 are there, too. Joe writes the software reviews at SpywareHammer.

Hi Beversoll -- Welcome back!

Yes, I do remember you... though I can't recall specific threads/conversations we had.

No, Dell terminated the Malware Removal forum a few years back.   All we have here now is the Virus/Spyware DISCUSSION forum.   Those interested in free, one-on-one malware removal assistance can still do so at other sites, such as http://spywarehammer.com/ , where Bugbatter is an adminstrator. 

Hope you have a good time here.

Nice to hear from you again, beversoll. I remember you.

Things around here have definitely changed since 2008, but there are still about a dozen long-time regulars who contribute updates, general info, and answer security -related questions here. Traffic in general has declined, but (IMHO) quality has not.