ISC DHCP Server Host Definition Remote Denial Of Service Vulnerability

The database giant repaired critical flaws in Oracle Database, BEA WebLogic and Oracle E-Business Suite.

Microsoft Windows Embedded OpenType Font Engine Heap Overflow Vulnerability

Attackers could exploit the flaw by tricking a user into viewing a website with the malicious code.

Hitachi Web Server Client SSL Certificate Handling Unspecified Vulnerability

[SECURITY] [DSA 1833-1] New dhcp3 packages fix arbitrary code execution

ZDI-09-045: Microsoft DirectShow Quicktime Atom Parsing Memory Corruption Vulnerability

Microsoft Windows Embedded OpenType Font Engine Integer Overflow Vulnerability

When the U.S. and South Korea became victims of cyber attacks last week, logic and not a little evidence pointed to North Korea as the culprit. However, a new report traces the attacks to the U.K., instead.

U.S. And S. Korea Attacks: Source Located In U.K.
Bkis, a Vietnam-based security company, stated on its corporate blog, "In order to locate the source of the attacks, we have fought against C&C servers and have gained control of 2 in 8 of them. After analyzing the logs of these 2 servers, we discovered the IP address of the master server, which is 195.90.118.xxx. This IP is located in UK."

Bkis then sprung another surprise by painting the attacks as being far more powerful than experts first thought.

The blog post continued, "During the past few days, the number of zombies has been estimated to be 50,000 by Symantec and about 20,000 by Government of South Korea. But, by taking control of two C&C servers and analyzing logs on these servers, we count the exact number of zombies that have been querying C&C servers to receive commands. . . . [T]here have been 166,908 zombies from 74 countries around the world that have been used for the attacks."

Novell eDirectory Multiple Vulnerabilities