Tag: vulnerability
It is nothing short of ironic that game password stealing malware is being associated with an exploit designed to target a vulnerability in DirectX. But Microsoft officially confirmed that malicious code designed to harvest account credentials for online games had been detected bundled with exploits targeting the DirectShow vulnerability impacting Windows 2000 Service Pack 4, Windows XP, and Windows Server 2003.
The flaw is Critical, the company warned in May 2009, when it revealed that users executing malicious QuickTime media files were at risk of remote code execution.
“Users, upon visiting a specially constructed web page that invokes the vulnerable media plug-in, will encounter exploit shellcode, which further execute and download additional malware to the infected machines. Intending to bypass antimalware protection, malware binaries are encrypted in the download data stream. New dog, same old tricks. To wrap up the attack scene, under the cover of the new exploits are the old long-lived online-game password stealers: PWS:Win32/Wowsteal.AP (drops PWS:Win32/Wowsteal.AP.dll); TrojanDropper:Win32/Dozmot.C (drops PWS:Win32/Dozmot.C and VirTool:WinNT/Dozmot.A); and TrojanSpy:Win32/Lydra.AE,” revealed Microsoft’s Lena Lin, Cristian Craioveanu, Josh Phillips and Patrick Nolan. Read More»
Posted in Computer | No Comments »
Concomitantly with this month’s security bulletin releases, Microsoft has also made available for download the June 2009 Security Release ISO Image. The ISO image is designed as a package containing all the patches released by Microsoft on June 9th, 2009, but only those plugging vulnerabilities in Windows client and server operating systems. June 2009 was synonymous with the release of no less than 10 new security bulletins. No less than six bulletins impact Windows, Microsoft explained.
“This month’s release addresses 31 total vulnerabilities with 15 rated as “1” on our Exploitability Index, meaning there is a high likelihood that reliable exploit code may be developed in the next 30 days,” stated Jerry Bryant, Sr. security program manager lead.
As it is traditional, Microsoft is offering all security patches designed to resolve vulnerabilities in Windows platforms in a single package. The June 2009 Security Release ISO Image comes to compensate the lack of Windows Server Update Services in IT environments that require security update to be downloaded in multiple individual language versions and then deployed. Read More»
Posted in Windows Vista, Windows XP | 1 Comment »
Many Pctipsbox readers use Firefox because it suffers from fewer security holes than IE and most people don’t need .NET features so I’m publishing in my free column today the following steps to remove Assistant 1.0 from Firefox:
Step 1. Check whether the .NET Framework Assistant is installed. You may or may not have Assistant 1.0, even if you installed .NET Framework 3.5 SP1, so check this first. In Firefox, pull down the Tools menu and select Add-ons. In the Add-ons dialog box that appears, if you don’t see .NET Framework Assistant, the add-on is not installed. In that case, you don’t need to do anything further (except close the dialog box).
Step 2. Remove or disable the add-on. If you do find the extension, I recommend that you remove it to reduce your vulnerability to possible security flaws. Choose one of the options shown below.
• Best option: Install the Microsoft fix. On May 6, with little publicity, Microsoft posted an update for .NET Framework 3.5 SP1. Installing this update enables Firefox’s Uninstall button for the add-on. To install the official update, visit Microsoft’s download page. Read More»
Posted in Firefox | 1 Comment »
December 11, 2008 by
Jason On December 9, Microsoft made available for download the last bouquet of security updates for 2008. the company released no less than eight security bulletins, six of them Critical and two rated as Important. Hot on the heels of the last round of patches for the year hitting Windows Update, the December 2008 Security Release ISO Image went live on the Microsoft Download Center. Via the Security Release ISO Image for the current month, the software giant is providing a single package for all the security updates designed for its Windows client and server operating systems, including Windows Vista Service Pack 1 and Windows XP Service Pack 3.
“As far as vulnerability counts go, this is the largest patch release since Microsoft started the ‘Patch Tuesday’ program back in late 2003. The release contains eight bulletins covering 28 vulnerabilities,” Symantec’s Robert Keith revealed.
“Of those issues, 23 are rated ‘Critical’ and affect Word, Outlook, Internet Explorer, Visual Basic ActiveX controls, GDI, Windows Search, and Excel. All of the ‘Critical’ issues this month require some sort of user interaction, whether visiting a Web page that contains malicious content or viewing a malicious file. The remaining issues affect GDI, Windows Search, SharePoint, and Windows Explorer; they range in importance from ‘Important’ to ‘Moderate.’” Read More»
Posted in Windows Vista, Windows XP | 1 Comment »
November 18, 2008 by
Jason
The exploit for a vulnerability affecting the Server Service on all supported versions of Windows has been included in a commercial malware kit, available for sale. MS08-067 is labeled with a maximum severity rating of Critical, and the security bulletin is designed to patch vulnerable Windows operating systems, which could allow for remote code execution via a successful attack involving a specially crafted, malicious RPC request. The vulnerability affects the latest Windows client and server operating systems, including Windows 7, Windows Vista Service Pack 1 and Windows XP Service Pack 3.
“Probably the most widely reported topic in the Chinese Security community this month will be the availability of a commercial MS08-067 attack pack, customized for Chinese users. On October 26th, 2008, exploit code was posted on to a well-known public repository site. In a few days, malware kit author, WolfTeeth, was quick to sell a MS08-067 port scanning tool with attack capability to his ‘customers,’ using free code from the Internet,” revealed Haowei Ren and Geok Meng Ong, from the McAfee Avert Labs.
The security issue is rated Critical on Windows Server 2004, Windows XP (including SP3), and Windows Server 2003, and just Important on Windows Vista (SP1) and Windows Server 2008. Microsoft made available MS08-067 as an out-of-band release in October 2008. During the same month the company issued the first security patch for Windows 7, designed for the pre-Beta Build 6801 Milestone 3 release. Read More»
Posted in Windows 7 | No Comments »
You invested in dead bolts and alarm systems to protect your business from theft of merchandise and equipment. But a cyber thief does not need access through the front door to steal the information you store on your PCs. Client credit card and bank account numbers, employee data and other confidential files are all at risk in a cyber attack.
Implementing sound security measures can greatly reduce your vulnerability to phishing (a type of Internet-based scam designed to steal your identity), spyware, and other malicious software used to steal or otherwise compromise business data. The good news is that built-in security features in Windows Vista Ultimate make it much easier to safeguard your PCs. Here are three you should know about: Read More»
Posted in Windows Vista | No Comments »
February 06, 2008 by
Jason Microsoft’s Internet Explorer is without a doubt the main vector of attacks, when it comes down to web-based threats. Its ubiquity, as well as its intimate integration into the Windows platform, makes it an excellent avenue for attacks. With IE6, Microsoft has gained an ill reputation for failing dramatically to protect end users. From IE6, which undoubtedly is an apex of insecurity compared to alternative browsers, the Redmond company moved to Windows Vista and Internet Explorer 7 under User Account Control, virtually cutting the browser from the critical areas of the operating system. Web-based attacks coming via IE7 in Protect Mode will not be able to write themselves to disk without specific user permission, because the browser runs with the very least possible privileges. Read More»
Posted in Internet | No Comments »
January 17, 2008 by
Jason Microsoft has confirmed that the Office suite is once again under fire at the beginning of 2008. However, it seems that attacks only target the Excel component in a variety of Office versions. Concomitantly with revealing that a Critical, Zero-Day vulnerability is being actively exploited in the wild, the Redmond company provided assurance that users of the latest versions of the Office System are not at any risk from attack. Office Excel 2007, Excel 2008 for Mac, Office Excel 2003 Service Pack 3 as well as users that have installed Microsoft Office Isolated Conversion Environment (MOICE) are not affected by the vulnerability.
A member of the Microsoft Security Response Center revealed that: “a targeted attack exploiting a vulnerability in Microsoft Office Excel. Our investigation has shown that this vulnerability affects Microsoft Office Excel 2003 Service Pack 2, Microsoft Office Excel Viewer 2003, Microsoft Office Excel 2002, Microsoft Office Excel 2000 and Microsoft Excel 2004 for Mac. Microsoft Office Excel 2003 Service Pack 3, Microsoft Office Excel 2007 and Microsoft Excel 2008 for Mac are not affected as they do not contain the vulnerable code.” Read More»
Posted in Office | No Comments »
December 28, 2007 by
Jason Microsoft has stepped up its security vulnerability research and defense, making available a new online hotspot designed to offer a “deep” insight into the threats associated with the company’s software products. Deep and not quite. Jonathan Ness, the head of the Microsoft SWI Defense team of software security engineers, revealed that IT professionals and security researchers would be able to access information related to security vulnerabilities, as well as the necessary mitigations and workarounds to dodge exploits, but also data about active attacks, along with extended guidance. At the same time, the Redmond company will attempt to divulge as little information as possible. The contradiction comes as Microsoft has to protect the end users from the risks associated with reverse engineering. Read More»
Posted in Computer | No Comments »
December 21, 2007 by
Jason
Microsoft has patched a patch released for Internet Explorer. It might not sound good, but it’s true. And it all began with the Redmond company’s monthly patch cycle. On December 11th, 2007, Microsoft made available Security Bulletin MS07-069 Cumulative Security Update for Internet Explorer (942615). As it is a tradition with offering and implementing security updates into Internet Explorer, the company releases a complete set of patches for all the supported versions of the browser, every month. Each security bulleting not only plugs the latest security holes, but also deals with previous vulnerabilities. Read More»
Posted in Internet, Windows XP | No Comments »
Loading ...
