Explore a comprehensive Black Hat EU 2005 conference talk that delves into the vulnerabilities of patch management software and other malicious techniques. Learn about the intricacies of Windows 2000 patching, Microsoft's security bulletins, and the challenges faced in patch management projects. Gain insights into topics such as shifting drift, provisioning, XML parsing, and party patches. Understand the complexities of patch Tuesday, WSUS, SMS, and potential denial of service attacks. Presented by Chris Farrow, a CISSP and GSEC certified expert, this 1 hour and 33 minutes session provides valuable information for cybersecurity professionals and IT administrators looking to enhance their knowledge of system vulnerabilities and patch management strategies.
Injecting Trojans via Patch Management Software & Other Evil Deeds
Overview
Syllabus
Introduction
Agenda
Background Info
Disclaimer
Patch Management
Windows 2000
Win2K
Complexity
Shifting Drift
Provisioning
Patching
Microsoft Patch
Security Bulletins
General Information
XML
Party Patches
Patch Tuesday
Patch Management Project
Patch Management Problems
The System
WSUS
SMS
Communications
Denial of Service
Taught by
Black Hat
