www.fusspils.net

It's official! 802.11n standard finalized after a mere seven years

Monday, 14 September 2009 09:02 Fusspils

Remember when the Wi-Fi Alliance finalized the 802.11 draft-n spec some two and a half years ago? Of course you don't -- as long as your media players, laptops, and the like can connect to each other (and to the cloud) without a hiccup you probably don't care about IEEE's paper trail. The standard, which saw no major changes between then and now (meaning that all your draft-n devices should work fine with the finalized standard) theoretically connects at 300Mbps, or about six times the peak speed of 802.11g. But you already know that, since you've been using it for years now. The final standard is set to be published mid-October.

Source

Last Updated on Monday, 14 September 2009 09:04

Remote DOS Windows Vista/7

Wednesday, 09 September 2009 19:31 Fusspils

Back to the days of knocking each other off the network with nuke programs. A new exploit for Win Vista/Win 7 allows an attacker to blue screen a victims machine running the new file sharing protocol. Details....

I. VULNERABILITY
-------------------------
Windows Vista/7 : SMB2.0 NEGOTIATE PROTOCOL REQUEST Remote B.S.O.D.

II. BACKGROUND
-------------------------
Windows vista and newer Windows comes with a new SMB version named SMB2.
See: http://en.wikipedia.org/wiki/Windows_Vista_networking_technologies#Server_Message_Block_2.0
for more details.

V. BUSINESS IMPACT
-------------------------
An attacker can remotly crash any Vista/Windows 7 machine with SMB enable.
Windows Xp, 2k, are NOT affected as they dont have this driver.

VI. SYSTEMS AFFECTED
-------------------------
Windows Vista/7 All (64b/32b|SP1/SP2 fully updated) and possibly Win Server 2008
as it use the same SMB2.0 driver (but not tested).

VII. SOLUTION
-------------------------
Vendor contacted, but no patch available for the moment.
Close SMB feature and ports, until a patch is provided.

Source

Last Updated on Wednesday, 09 September 2009 19:35

Error occured in the step: Moving messages

Monday, 31 August 2009 20:04 Fusspils

This one had me stumped for a short time. I was trying to export some old mailboxes to be archived using the Exchange Management Shell - Example

Export-Mailbox -Identity This e-mail address is being protected from spambots. You need JavaScript enabled to view it -PSTFolderPath C:\PSTFiles\john.pst

It was failing with error message -

Error occurred in the step: Moving messages. Failed to copy messages to t
he destination mailbox store with error:
MAPI or an unspecified service provider.
ID no: 00000000-0000-00000000, error code: -1056749164

Turns out that even if you are an Exchange admin you still need to give yourself permissions to the users mailbox either through the GUI - Right click users mailbox, Manage full access permission or at the Exchange Management Shell -

Add-mailboxpermission -identity <mailbox you are importing to> -accessrights fullaccess -user <who you are logged in as when running the exchange managment shell>

Skype Trojan

Monday, 31 August 2009 23:16 Fusspils

TrendLabs researchers were alerted of a newly released Proof-of-Concept (PoC) that listens and records voice calls carried out via Skype. Trend Micro detects this as TROJ_SPAYKE.C. Skype is a popular application used for making voice over IP (VoIP) calls.

Upon execution, the DLL component (also detected as TROJ_SPAYKE.C) intercepts Skype traffic and hooks the send and recv APIs. This is done before Skype encrypts the traffic it sends to other users. This enables the Trojan to save all gathered information as audio files, which could then be sent to a malicious user