Domain: cmpxchg8b.com
Stories and comments across the archive that link to cmpxchg8b.com.
Comments · 5
-
Really classic uT doesn't seem to be vulnerable
Just tested the sample exploits against uTorrent 2.2.1 build 25302 - none has worked.
-
Re:Ummm, not at all
-
Sophos is a security firm?
Seriously, they should start thinking about changing business after this.
-
Java 6 u19 Works Fine
I have Java 6 update 19 installed and I get the same error and failed attempt using this link (weird url but it's the one from the TFA): test demo. The author also said the fix wasn't mentioned in the patch notes. Could this vulnerability have been fixed in a previous version and no one actually tested what versions/updates were actually vulnerable before publishing these articles, or did I miss something?
-
Re:How to disable Java?
Replying to myself, I know. I also just read TFA (!) and disabling the Java Platform plugin alone isn't enough!
--------------------
Affected Software
------------------------All versions since Java SE 6 update 10 for Microsoft Windows are believed to be
affected by this vulnerability. Disabling the java plugin is not sufficient to
prevent exploitation, as the toolkit is installed independently.There's a seperate plugin called something like Java Deployment Toolkit which you also need to kill.
To check if you're vulnerable, PoC is here: http://lock.cmpxchg8b.com/bb5eafbc6c6e67e11c4afc88b4e1dd22/testcase.html