Microsoft Vulnerabilities

January 22nd, 2010 admin
Share/Save/Bookmark

Add To Delicious Digg This post Stumble this post
Fave on Technorati Subscribe Tweet This
Topics:

Microsoft is releasing an out-of-band update for their IE vulnerability. Internet Explorer 6 is affected and is being actively exploited in the wild. The patch will be released on the 21st, today, see Microsoft’s Security Bulletin for additional details. Updated to add : Microsoft Security Bulletin MS10-002 . What version of Internet Explorer do you have installed? ( Poll ) Also in Microsoft news, Security Advisory (979682). There’s a vulnerability in Windows kernel privilege escalation. The vulnerability affects all versions of Windows (NT 3.51 up to Windows 7), on non x64-based systems, unless 16-bit application support is disabled. There’s a workaround for disabling 16-bit support provided in Microsoft’s Security Advisory . Disabling 16-bit applications will mitigate the issue. Then, you’ll be all set. Unless you happen to use a 16-bit…


Originally posted on F-Secure

Related Videos from Youtube

More videos ...

 
  Related Posts
Microsoft Updates and Vulnerabilities
Microsoft Updates and Vulnerabilities
Updates February 9th will bring numerous Microsoft Updates, 13 bulletins addressing 26 vulnerabilities. All versions of Windows are affected. Looks like a busy Tuesday is ahead. See Microsoft’s Security Bulletin Advance Notification for February 2010 for additional details. Vulnerability There’s also a notable Internet Explorer vulnerability... 
Hack of Google, Adobe Conducted Through Zero-Day IE Flaw
Editor’s note: This story has been updated with a link to a Microsoft advisory about the new vulnerability as well as a Microsoft blog post discussing ways for users to reduce their risk of attack. The recent hack attack on Google, Adobe and other companies occurred through exploitation of a zero-day vulnerability that affects many versions... 
New attack targets weakness in Internet Explorer
New attack targets weakness in Internet Explorer
Blueprints showing attackers how to exploit a previously unknown security hole in versions of Microsoft’s Internet Explorer browser recently were published online. The danger here is if IE users browse to a hacked or booby-trapped Web site that uses the exploit, that site could install malicious software. Microsoft has not yet issued an advisory... 
Windows 2K Server Patch Update
Microsoft just released a patch to address the License Logging Server Heap Overflow Vulnerability (CVE-2009-2523). This vulnerability affects the License Logging Service (LLS), a feature which according to Microsoft is “designed to help customers manage licenses for Microsoft server products that are licensed in the Server Client Access License... 
Microsoft warns of Windows 7 security hole
Microsoft warns of Windows 7 security hole
Microsoft has confirmed reports of a security flaw in its Windows operating system that hackers could use to temporarily destabilize Windows 7 PCs. The software giant also acknowledged that blueprints for exploiting the flaw are now available online. At issue is a so-called “denial-of-service” vulnerability in the component of Windows... 
Hack of Adobe Conducted Via Zero-Day IE Flaw
The recent hack attack on Adobe occurred through exploitation of a zero-day vulnerability that affects all versions of Internet Explorer, according to a security researcher with a leading anti-virus firm. Microsoft learned about the vulnerability only Wednesday evening and is planning to release an announcement about the vulnerability later today,... 
Critical updates for Adobe Flash, Microsoft Windows
Critical updates for Adobe Flash, Microsoft Windows
Microsoft released six software updates on Tuesday to fix at least a dozen security vulnerabilities in Windows, Internet Explorer, Windows Server and Microsoft Office. More than half of the flaws earned a “critical” rating, meaning criminals could exploit them to break into vulnerable systems without any help from users. Separately,... 
Microsoft plugs 15 holes in Windows, Office
Microsoft plugs 15 holes in Windows, Office
Microsoft on Tuesday released software updates to fix at least 15 security flaws in Windows, Windows Server and Microsoft Office. One of the patches addresses a flaw so serious that users could find their Windows PCs compromised just by visiting booby-trapped Web sites. Richie Lai, director of vulnerability research for patch management firm Qualys,... 
F-Secure’s Exploit Shield blocks the "Aurora" exploit
Microsoft recently announced a new vulnerability in certain versions of its Internet Explorer web browser. If exploited, the vulnerability (CVE 2010-0249) can allow remote code execution. Announcement of this vulnerability follows on the heels of last week’s targeted zero-day attacks against a number of companies. Since we are talking about... 
To IE or Not to IE : That is the Question
To IE or Not to IE : That is the Question
Internet Explorer’s latest vulnerability is causing Germany and France to advise against its use . That’s a bit overkill, though, we do recommend using another browser by default. We’re curious, how many of our readers have tried the option of turning off Internet Explorer 8 in Windows 7? Our commenting system is back online,... 
  Related Tweets from Twitter
  Related News from Digg
Leave a comment | Trackback
No comments yet.

Spam Protection by WP-SpamFree

TOP