 |
 |
 |
 |
 |
|
|
||
 |
Home | Forums | Register | FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read | |  |
 |
 |
 |
 |
 |
|
 |
|
Welcome to the ComputerProblems.org Free Computer Support & Technology Discussion. |
|
|
|
Welcome to ComputerProblems.Org, your source for PC technical help and information!
You are currently viewing our boards as a guest which gives you limited access to view most discussions. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, access our arcade and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact contact support. |
||
 |
||
 |
 |
 |
 |
 |
 |
||
 |
|
 |
 |
|
|
 |
||||
| Mobile Phone News | Yahoo Tech News | Microsoft Security Bulletins | ||
|
Bell Mobility to launch BlackBerry Torch too
The BlackBerry Torch 9800 might be exclusive to one carrier in the U.S., but that hasn’t stopped the floozy of a handset from making the rounds in Canada. Bell Mobility recently announced that they too will be carrying the BlackBerry…
Plex and LG to challenge Apple TV, Boxee, and others
Plex, for those not familiar, is a software company whose former creed was to: “bridge the gap between your Mac and your home theater, doing so with a visually appealing user interface that provides instant access to your media.” Today,…
Samsung Galaxy Tab coming to Sprint in November…
We have heard that Sprint is currently targeting a November release for Samsung’s Galaxy Tab tablet. Pricing for the CDMA device has not yet been disclosed to us. UPDATE: We’re also hearing it is a 3G/4G device!
Net Applications: iOS has over 1% of global browsing share, Android at 0.2%
Net Applications has released their report on global browsing usage numbers for iOS, Android, and Linux. The numbers show that from October of 2009 to August of 2010, both Android and iOS steadily increased their browser usage share, while Linux…
Huawei launches affordable, Android 2.2 Ideos handset
Today in Berlin, Huawei announced the official launch of its affordable, accessible Android 2.2 handset, the Ideos. The Ideos handset comes complete with a 2.8-inch capacitive touchscreen display (320 x 240), 528 MHz processor, 3.2 megapixel autofocus camera (no flash), HSDPA 3G,…
Apple posts iPad 4.2 update page, reminds you what’s coming
Today, Apple posted its iPad 4.2 software update page to remind you of the improvements that the next iteration of iOS will have for your tablet device. For those who don’t know, iOS 4.2 will bring: multitasking, home screen folders,…
Rumor: Samsung Galaxy Tab to retail for €699 and €799 in Europe
Warning: the information we are about to provide you is unconfirmed; please consume with a hefty dose of NaCl. European news and retail outlets are reporting that Samsung’s recently announced Galaxy Tab 7-inch tablet will retail for €699 ($897) and…
Latest Apple iPod touch hits FCC, gets taken apart
Any Apple fans out there waiting to grab the brand new iPod touch hotness? If so, you’re going to be pleased to learn that Apple’s newest iToy has hit the FCC for certification and has been mercilessly torn down. You’ll…
Google refutes Apple’s activation innuendo
During yesterday’s music-event keynote, Apple CEO Steve Jobs informed the crowd that his company was activating around 230,000 iOS devices every day. The figure 230,000 is of particular significance because just last month, Google CEO Eric Schmidt said that the…
Throwback Thursday: Motorola ROKR E1
Way back in September of 2005 — over one year before the launch of the iPhone — Apple and Motorola were jointly pimping a handset called the ROKR E1 (pronounced “rocker”). The ROKR was a candy-bar-style device that had the dubious…
Samsung confirms Honeycomb as name of Android 3.5, more Tab models due
Today, at IFA, Samsung executives confirmed previous rumors and outed Google’s next, next mobile OS’ namesake: Honeycomb (also known as Android 3.5). No features or specific details were given about Android 3.5 other than its code name and the fact that…
Verizon Wireless announces new prepaid data packages for smartphones
We knew it was coming, it was just a matter of when. Today, Verizon Wireless announced that it would be “expanding its portfolio of prepaid offerings to include a new 3G Prepaid data package that lets customers access unlimited data…
Samsung Fascinate poses with DROID X
The unreleased Samsung Fascinate continues to make appearances in the wild. This time, it can be seen posing for several cameos with its Verizon friend — and fellow member of the Android No-Keyboard Club – the DROID X. We’re still hearing that the…
Wind Mobile launching BlackBerry Pearl 3G today?
We’ve just been sent in some visual confirmation of what we already knew: Wind Mobile will be adding the BlackBerry Pearl 3G to its pre-paid handset lineup. What we didn’t know, and our source was kind enough to tip us…
T-Mobile confirms G2 has 800 MHz processor, Android 2.2
T-Mobile’s own website has confirmed that the company’s first HSPA+ device — the HTC G2 – will be rocking Android 2.2 and will be powered by an 800 MHz Scorpion processor. T-Mobile is billing the device as the “fastest smartphone experience…
Samsung makes Galaxy Tab official
It looks like our friends over at Samsung have officially outed their much hyped Samsung Galaxy Tab tablet device. The Galaxy Tab will pack a 1 GHz Cortex A8 processor, HSUPA 5.76 Mbps / HSDPA 7.2 Mbps radio (900, 1900, 2100 MHz),…
Telus to offer BlackBerry Torch 9800 September 24th too
Following this mornings announcement by Rogers, Telus has announced that they too will be carrying the BlackBerry Torch 9800 on September 24th. Telus’ VP of Mobility and Solutions, Brent Jonston, had this to say: “Both business and consumer customers will get an incredible…
Angry Birds public beta coming to Android Market on Friday
The gang over at Talk Android have gotten the scoop from Rovio — makers of Angry Birds – about their immediate plans for Google’s mobile OS. In an email to TA, Rovio writes:
This week, we were planning to run…
T-Mobile’s G2 to be $199 on-contract, $499 off
TmoNews has just gotten word that the unreleased and unannounced HTC G2 will be priced at $199 with a 2-year contract and $499 without on T-Mobile. The intel comes via a screen shot of T-Mobile’s internal TeamLine system. No real surprises here; after all,…
Windows Phone 7 hits RTM stage
Microsoft just dropped us a quick note to let us know that Windows Phone 7 has officially hit release to manufacturing (RTM) stage. As the note states: “The operating system has been finalized and is being delivered to partners around…
Apple seeding iOS 4.1 GM to developers
If you are anxious to get iOS 4.1 onto your device, and are enrolled in Apple’s developer program, you’re in luck. Apple has just updated developer.apple.com with the new iOS 4.1 Gold Master bits; the update weighs in at a hefty 590 MB.…
Apple launches new Apple TV
Today, Apple introduced its next generation Apple TV that focuses on streaming media and HD content. The new box is one-quarter the size of its predecessor and is sleek, black, and fairly nondescript. The device has power, HDMI, optical audio, and ethernet…
iTunes gets social, launches Ping social music discovery service
Today, Apple announced that iTunes 10 would be getting a new icon and new social feature called Ping. Ping was described by Apple’s CEO as “Twitter and Facebook meets iTunes.” The new Ping feature allows you to create a virtual group…
Apple announces new iPod Shuffle, Nano, Touch
Following up on the iOS 4.1 announcement, Apple unveiled three new iPod models to refresh their music player lineup. The iPod Shuffle will go back to its familiar matchbook-like form, complete with buttons and clip, and will hold 2 GB…
Apple makes iOS 4.1 official
At today’s keynote event, Apple announced that iOS 4.1 is coming out of beta and getting official. Additions to the latest iOS code base include bug fixes, HDR photos, and the inclusion of the Game Center. Apple is stating that iOS…
Rogers launching BlackBerry Torch on September 24
Rogers has just announced that they will be carrying the BlackBerry Torch 9800 beginning on September 24th. The device will be available on rogers.com or in-stores for $199 with a 3-year contract. The company quips, “As we approach the launch, you can…
Microsoft officially announces the Arc Touch mouse
In a press release today, Microsoft officially announced its Arc Touch mouse. As the folks in Redmond explain: “The Arc Touch Mouse [is] the first mouse designed to flatten for portability and pop up for comfort. The new mouse features Microsoft’s…
AT&T launching LG Encore feature-phone on September 5th
We’ve just been given word that AT&T will be launching the LG Encore in four days on September 5th. The Encore is a full touchscreen feature-phone that packs a 3-inch display, dual band HSDPA/UMTS, quad band GSM, 3 megapixel camera…
Swype coming to Symbian S60 5th edition devices, beta available
Today, Nokia announced that the ever-efficient Swype keyboard will be coming to Symbian S60 5th edition devices. The software keyboard, which is currently being launched as a limited beta, supports the N97, N97 mini, X6, 5800, and 5230 Nokia handsets.…
Sprint adds 4G coverage to three more cities
Today, Sprint officially announced the additions of Boston, MA; Daytona Beach, FL; and Providence, RI to their list of cities officially blanketed in 4G covered. There isn’t really much else to say about it. Here is a quick statement from Sprint:…
|
Review: mTrip iPhone app uses augmented reality
(AP)
Dubai police chief calls BlackBerry a spy tool
(AP)
Dell's enterprise challenge remains after 3Par
(AP)
Able to unplug from work while you’re on vacation?
(Ben Patterson)
Ben Patterson - Fighting the urge to check your work e-mail while you’re on holiday doesn’t exactly qualify as the worst problem in the world; after all, it’s pretty nice to have a job at all in this tough economy, right? Then again, the pressure to hang onto a job seems to be driving more and more connected workers to stay plugged in even while they’re trying to tune out.
Mobile users still wary of being found, survey says
(Ben Patterson)
Ben Patterson - Feel the need to "check in" on Foursquare or Facebook every time you saunter into a restaurant, browse the goods at your neighborhood grocery store, or cram into a rock concert? Well, if you, you’re still in the minority — and you’re also probably a guy below 40 — according to the latest research.
Summary Box: iPhone app with augmented reality
(AP)
AP - THE APP: Available for the iPhone, mTrip is a travel guide and more. It uses the latest in smart phone technology to help travelers stay on track.
Dell cedes data-storage maker 3Par to HP
(AP)
|
Microsoft Security Advisory (2269637): Insecure Library Loading Could Allow Remote Code Execution - 8/31/2010
Revision Note: V1.1 (August 31, 2010) Added a link to Microsoft Knowledge Base Article 2264107 to provide an automated Microsoft Fix it solution for the workaround, Disable loading of libraries from WebDAV and remote network shares. Advisory Summary:Microsoft is aware that research has been published detailing a remote attack vector for a class of vulnerabilities that affects how applications load external libraries.
Microsoft Security Advisory (977377): Vulnerability in TLS/SSL Could Allow Spoofing - 8/10/2010
Revision Note: V2.0 (August 10, 2010): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-049 to address this issue. For more information about this issue, including download links for an available security update, please review MS10-049. The vulnerability addressed is the TLS/SSL Renegotiation Vulnerability - CVE-2009-3555. For additional information on this advisory, see Microsoft Knowledge Base Article 977377.
Microsoft Security Advisory (2264072): Elevation of Privilege Using Windows Service Isolation Bypass - 8/10/2010
Revision Note: V1.0 (August 10, 2010): Advisory published. Advisory Summary:Microsoft is aware of the potential for attacks that leverage the Windows Service Isolation feature to gain elevation of privilege. This advisory discusses potential attack scenarios and provides suggested actions that can help to protect against this issue. This advisory also offers a non-security update for one of the potential attack scenarios through Windows Telephony Application Programming Interfaces (TAPI).
Microsoft Security Advisory (2286198): Vulnerability in Windows Shell Could Allow Remote Code Execution - 8/2/2010
Revision Note: V2.0 (August 2, 2010): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability.
Microsoft Security Advisory (2219475): Vulnerability in Windows Help and Support Center Could Allow Remote Code Execution - 7/13/2010
Revision Note: V2.0 (July 13, 2010): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-042 to address this issue. For more information about this issue, including download links for an available security update, please review MS10-042. The vulnerability addressed is the Help Center URL Validation Vulnerability - CVE-2010-1885.
Microsoft Security Advisory (2028859): Vulnerability in Canonical Display Driver Could Allow Remote Code Execution - 7/13/2010
Revision Note: V2.0 (July 13, 2010): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-043 to address this issue. For more information about this issue, including download links for an available security update, please review MS10-043. The vulnerability addressed is the Canonical Display Driver Integer Overflow Vulnerability - CVE-2009-3678.
Microsoft Security Advisory (980088): Vulnerability in Internet Explorer Could Allow Information Disclosure - 6/9/2010
Revision Note: V1.2 (June 9, 2010): Added information about MS10-035 and clarified a FAQ entry about the caching vector. Advisory Summary:Microsoft is investigating new public reports of a vulnerability in Internet Explorer. This advisory contains information about which versions of Internet Explorer are vulnerable as well as workarounds and mitigations for this issue.
Microsoft Security Advisory (983438): Vulnerability in Microsoft SharePoint Could Allow Elevation of Privilege - 6/8/2010
Revision Note: V2.0 (June 8, 2010): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-039 to address this issue. For more information about this issue, including download links for an available security update, please review MS10-039. The vulnerability addressed is the Help.aspx XSS Vulnerability - CVE-2010-0817.
Microsoft Security Advisory (973811): Extended Protection for Authentication - 6/8/2010
Revision Note: V1.5 (June 8, 2010): Updated the FAQ with information about six non-security updates enabling .NET Framework to opt in to Extended Protection for Authentication. Advisory Summary:Microsoft is announcing the availability of a new feature, Extended Protection for Authentication, on the Windows platform. This feature enhances the protection and handling of credentials when authenticating network connections using Integrated Windows Authentication (IWA).
Microsoft Security Advisory (981169): Vulnerability in VBScript Could Allow Remote Code Execution - 4/13/2010
Revision Note: V2.0 (April 13, 2010): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-022 to address this issue. For more information about this issue, including download links for an available security update, please review MS10-022. The vulnerability addressed is the VBScript Help Keypress Vulnerability - CVE-2010-0483.
Microsoft Security Advisory (977544): Vulnerability in SMB Could Allow Denial of Service - 4/13/2010
Revision Note: V2.0 (April 13, 2010): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-020 to address this issue. For more information about this issue, including download links for an available security update, please review MS10-020. The vulnerability addressed is the SMB Client Incomplete Response Vulnerability - CVE-2009-3676.
Microsoft Security Advisory (981374): Vulnerability in Internet Explorer Could Allow Remote Code Execution - 3/30/2010
Revision Note: V2.0 (March 30, 2010): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-018 to address this issue. For more information about this issue, including download links for an available security update, please review MS10-018. The vulnerability addressed is the Uninitialized Memory Corruption Vulnerability - CVE-2010-0806.
Microsoft Security Advisory (979682): Vulnerability in Windows Kernel Could Allow Elevation of Privilege - 2/9/2010
Revision Note: V2.0 (February 9, 2010): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS10-015 to address this issue. For more information about this issue, including download links for an available security update, please review MS10-015. The vulnerability addressed is the Windows Kernel Exception Handler Vulnerability - CVE-2010-0232.
Microsoft Security Advisory (979352): Vulnerability in Internet Explorer Could Allow Remote Code Execution - 1/21/2010
Revision Note: V2.0 (January 21, 2010): Advisory updated to reflect publication of security bulletin Advisory Summary:Microsoft has completed the investigation the public reports of this vulnerability. We have issued MS10-002 to address this issue. For more information about this issue, including download links for an available security update, please review MS10-002. The vulnerability addressed is the HTML Object Memory Corruption Vulnerability - CVE-2010-0249.
Microsoft Security Advisory (979267): Vulnerabilities in Adobe Flash Player 6 Provided in Windows XP Could Allow Remote Code Execution - 1/12/2010
Revision Note: V1.0 (January 12, 2010): Advisory published. Advisory Summary:Security Advisory
Microsoft Security Advisory (977981): Vulnerability in Internet Explorer Could Allow Remote Code Execution - 12/8/2009
Revision Note: V2.0 (December 8, 2009): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed investigating public reports of this vulnerability. We have issued Microsoft Security Bulletin MS09-072 to address this issue. For more information about this issue, including download links for an available security update, please review MS09-072. The vulnerability addressed is the HTML Object Memory Corruption Vulnerability - CVE-2009-3672.
Microsoft Security Advisory (974926): Credential Relaying Attacks on Integrated Windows Authentication - 12/8/2009
Revision Note: V1.0 (December 8, 2009): Advisory published. Advisory Summary:This advisory addresses the potential for attacks that affect the handling of credentials using Integrated Windows Authentication (IWA), and the mechanisms Microsoft has made available for customers to help protect against these attacks.
Microsoft Security Advisory (954157): Security Enhancements for the Indeo Codec - 12/8/2009
Revision Note: V1.0 (December 8, 2009): Advisory published. Advisory Summary:Microsoft is announcing the availability of an update that provides security mitigations to the Indeo codec on supported editions of Microsoft Windows 2000, Windows XP, and Windows Server 2003.
Microsoft Security Advisory (975497): Vulnerabilities in SMB Could Allow Remote Code Execution - 10/13/2009
Revision Note: V2.0 (October 13, 2009): Advisory updated to reflect publication of security bulletin. Advisory Summary:Security Advisory
Microsoft Security Advisory (975191): Vulnerabilities in the FTP Service in Internet Information Services - 10/13/2009
Revision Note: V3.0 (October 13, 2009): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this issue. We have released MS09-053 to address this issue. For more information about this issue, including download links for an available security update, please review MS09-053. The vulnerabilities addressed are the IIS FTP Service DoS Vulnerability (CVE-2009-2521) and the IIS FTP Service RCE and DoS Vulnerability (CVE-2009-3023).
Microsoft Security Advisory (973882): Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution - 10/13/2009
Revision Note: V4.0 (October 13, 2009): Advisory revised to add an entry in the Updates related to ATL section to communicate the release of Microsoft Security Bulletin MS09-060, "Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution." Advisory Summary:Security Advisory
Microsoft Security Advisory (967940): Update for Windows Autorun - 8/25/2009
Revision Note: V1.1 (August 25, 2009): Summary revised to notify users of an update to Autorun that restricts AutoPlay functionality to CD-ROM and DVD-ROM media, available for Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008 from Microsoft Knowledge Base Article 971029. Advisory Summary:Microsoft is announcing the availability of an update that corrects a functionality feature that can help customers in keeping their systems protected. The update corrects an issue that prevents the NoDriveTypeAutoRun registry key from functioning as expected.
Microsoft Security Advisory (973472): Vulnerability in Microsoft Office Web Components Control Could Allow Remote Code Execution - 8/11/2009
Revision Note: V2.0 (August 11, 2009): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation of a privately reported vulnerability in Microsoft Office Web Components. We have issued MS09-043 to address this issue. For more information about this issue, including download links for an available security update, please review MS09-043. The vulnerability addressed is the Office Web Components HTML Script Vulnerability - CVE-2009-1136.
Microsoft Security Advisory (972890): Vulnerability in Microsoft Video ActiveX Control Could Allow Remote Code Execution - 7/14/2009
Revision Note: V2.0 (July 14, 2009): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS09-032 to address this issue. For more information about this issue, including download links for an available security update, please review MS09-032. The vulnerability addressed is the Microsoft Video ActiveX Control Vulnerability - CVE-2008-0015.
Microsoft Security Advisory (971778): Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution - 7/14/2009
Revision Note: V2.0 (July 14, 2009): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS09-028 to address this issue. For more information about this issue, including download links for an available security update, please review MS09-028. The vulnerability addressed is the DirectX NULL Byte Overwrite Vulnerability - CVE-2009-1537.
Microsoft Security Advisory (969898): Update Rollup for ActiveX Kill Bits - 6/17/2009
Revision Note: V1.1 (June 17, 2009): Added an entry to Frequently Asked Questions to communicate that for the purpose of automatic updating, this update does not replace the Cumulative Security Update of ActiveX Kill Bits (950760) that is described in Microsoft Security Bulletin MS08-032. Advisory Summary:Microsoft is releasing a new set of ActiveX kill bits with this advisory.
Microsoft Security Advisory (960715): Update Rollup for ActiveX Kill Bits - 6/17/2009
Revision Note: V1.2 (June 17, 2009): Added an entry to Frequently Asked Questions to communicate that for the purpose of automatic updating, this update does not replace the Cumulative Security Update of ActiveX Kill Bits (950760) that is described in Microsoft Security Bulletin MS08-032. Advisory Summary:Microsoft is releasing a new set of ActiveX kill bits with this advisory.
Microsoft Security Advisory (956391): Update Rollup for ActiveX Kill Bits - 6/17/2009
Revision Note: V1.3 (June 17, 2009): Added an entry to Frequently Asked Questions to communicate that for the purpose of automatic updating, this update does not replace the Cumulative Security Update of ActiveX Kill Bits (950760) that is described in Microsoft Security Bulletin MS08-032. Advisory Summary:Microsoft is releasing a new set of ActiveX kill bits with this advisory.
Microsoft Security Advisory (971888): Update for DNS Devolution - 6/9/2009
Revision Note: Advisory published. Advisory Summary:Microsoft is announcing the availability of an update to DNS devolution that can help customers in keeping their systems protected. Customers whose domain name has three or more labels , such as "contoso.co.us", or who do not have a DNS suffix list configured, or for whom the following mitigating factors do not apply may inadvertently be allowing client systems to treat systems outside of the organizational boundary as though they were internal to the organization's boundary.
Microsoft Security Advisory (971492): Vulnerability in Internet Information Services Could Allow Elevation of Privilege - 6/9/2009
Revision Note: V2.0 (June 9, 2009): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS09-020 to address this issue. For more information about this issue, including download links for an available security update, please review MS09-020. The vulnerability addressed is the IIS 5.1 and 6.0 WebDAV Authentication Bypass Vulnerability - CVE-2009-1535.
Microsoft Security Advisory (945713): Vulnerability in Web Proxy Auto-Discovery (WPAD) Could Allow Information Disclosure - 6/9/2009
Revision Note: V2.0 (June 9, 2009): Advisory updated to reflect publication of security bulletin MS09-008 and Microsoft Security Advisory 971888. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS09-008 to address the WPAD issue and have released configuration guidance and updates for DNS devolution in Microsoft Security Advisory 971888. For more information about this issue, including download links for an available security update, please review MS09-008 and Microsoft Security Advisory 971888. The vulnerabilities addressed are the WPAD server registration vulnerabilities in WINS and DNS - CVE-2009-0094 and CVE-2009-0093.
Microsoft Security Advisory (969136): Vulnerability in Microsoft Office PowerPoint Could Allow Remote Code Execution - 5/12/2009
Revision Note: V2.0 (May 12, 2009): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS09-017 to address this issue. For more information about this issue, including download links for an available security update, please review MS09-017. The vulnerability addressed is the Memory Corruption Vulnerability - CVE-2009-0556.
Microsoft Security Advisory (968272): Vulnerability in Microsoft Office Excel Could Allow Remote Code Execution - 4/14/2009
Revision Note: V3.0 (April 14, 2009) Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft is investigating new public reports of a vulnerability in Microsoft Office Excel that could allow remote code execution if a user opens a specially crafted Excel file. At this time, we are aware only of limited and targeted attacks that attempt to use this vulnerability.
Microsoft Security Advisory (960906): Vulnerability in WordPad Text Converter Could Allow Remote Code Execution - 4/14/2009
Revision Note: V2.0 (April 14, 2009): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft is investigating new reports of a vulnerability in the WordPad Text Converter for Word 97 files on Windows 2000 Service Pack 4, Windows XP Service Pack 2, Windows Server 2003 Service Pack 1, and Windows Server 2003 Service Pack 2. Windows XP Service Pack 3, Windows Vista, and Windows Server 2008 are not affected as these operating systems do not contain the vulnerable code.
Microsoft Security Advisory (953818): Blended Threat from Combined Attack Using Apple’s Safari on the Windows Platform - 4/14/2009
Revision Note: V2.0 (April 14, 2009): Added references and links to MS09-014 and MS09-015, which address the issue in this advisory. Advisory Summary:Microsoft has investigated public reports of a blended threat that allows remote code execution on all supported versions of Windows XP and Windows Vista when Apple’s Safari for Windows has been installed. Safari is not installed with Windows XP or Windows Vista by default; it must be installed independently or through the Apple Software Update application. Customers running Safari on Windows should review this advisory.
Microsoft Security Advisory (951306): Vulnerability in Windows Could Allow Elevation of Privilege - 4/14/2009
Revision Note: V3.0 (April 14, 2009): Advisory updated to reflect publication of security bulletin. Advisory Summary:Security Advisory
Microsoft Security Advisory (953839): Update Rollup for ActiveX Kill Bits - 3/11/2009
Revision Note: V1.3 (March 11, 2009): Added an entry to Frequently Asked Questions to communicate that for the purpose of automatic updating, this update does not replace the Cumulative Security Update of ActiveX Kill Bits (950760) that is described in Microsoft Security Bulletin MS08-032. Advisory Summary:Microsoft is releasing a new set of ActiveX kill bits with this advisory.
Microsoft Security Advisory (961040): Vulnerability in SQL Server Could Allow Remote Code Execution - 2/10/2009
Revision Note: V2.0 (February 10, 2009): Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS09-004 to address this issue. For more information about this issue, including download links for an available security update, please review MS09-004. The vulnerability addressed is the Microsoft XML Core Services Vulnerability - CVE-2008-5416.
Microsoft Security Advisory (961509): Research proves feasibility of collision attacks against MD5 - 12/30/2008
Revision Note: Advisory published Advisory Summary:Microsoft is aware that research was published at a security conference proving a successful attack against X.509 digital certificates signed using the MD5 hashing algorithm. This attack method would allow an attacker to generate additional digital certificates with different content that have the same digital signature as an original certificate. The MD5 algorithm had previously shown a vulnerability, but a practical attack had not yet been demonstrated.
Microsoft Security Advisory (961051): Vulnerability in Internet Explorer Could Allow Remote Code Execution - 12/17/2008
Revision Note: December 17, 2008: Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS08-078 to address this issue. For more information about this issue, including download links for an available security update, please review MS08-078. The vulnerability addressed is the Microsoft XML Core Services Vulnerability - CVE-2008-4844.
Microsoft Security Advisory (958963): Exploit Code Published Affecting the Server Service - 10/27/2008
Revision Note: Advisory published Advisory Summary:Security Advisory
Microsoft Security Advisory (955179): Vulnerability in the ActiveX Control for the Snapshot Viewer for Microsoft Access Could Allow Remote Code Execution - 8/12/2008
Revision Note: Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a private report of this vulnerability. We have issued MS08-041 to address this issue. For more information about this issue, including download links for an available security update, please review MS08-041. The vulnerability addressed is the Snapshot Viewer Arbitrary File Download Vulnerability - CVE-2008-2463.
Microsoft Security Advisory (954960): Microsoft Windows Server Update Services (WSUS) Blocked from Deploying Security Updates - 8/12/2008
Revision Note: August 12, 2008: Added entry to the section, Frequently Asked Questions (FAQ) Related to This Security Update to communicate that the re-release of the update to fix a known installation issue with Windows Server 2008 systems is now available via Microsoft Update. Advisory Summary:Microsoft has completed the investigation into public reports of a non-security issue that prevents the distribution of any updates deployed through Microsoft Windows Server Update Services 3.0 or Microsoft Windows Server Update Services 3.0 Service Pack 1 to client systems that have Microsoft Office 2003 installed in their environment. Microsoft confirmed those reports and has released an update to correct this issue under Microsoft Knowledge Base Article 954960. Microsoft encourages customers affected by this issue to review and install this update.
Microsoft Security Advisory (953635): Vulnerability in Microsoft Word Could Allow Remote Code Execution - 8/12/2008
Revision Note: Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS08-042 to address this issue. For more information about this issue, including download links for an available security update, please review MS08-042. The vulnerability addressed is the Word Record Parsing Vulnerability - CVE-2008-2244.
Microsoft Security Advisory (956187): Increased Threat for DNS Spoofing Vulnerability - 7/25/2008
Revision Note: July 25, 2008: Advisory published. Advisory Summary:Microsoft released Microsoft Security Bulletin MS08-037, Vulnerabilities in DNS Could Allow Spoofing (953230), on July 8, 2008, offering security updates to protect customers against Windows Domain Name System (DNS) spoofing attacks. Microsoft released this update in coordination with other DNS vendors who were also similarly impacted. Since the coordinated release of these updates, the threat to DNS systems has increased due to a greater public understanding of the attacks, as well as detailed exploit code being published on the Internet.
Microsoft Security Advisory (954462): Rise in SQL Injection Attacks Exploiting Unverified User Data Input - 6/25/2008
Revision Note: June 25, 2008: Removed erroneous references to form field and cookie value testing from the HP Scrawlr tool description. Advisory Summary:Microsoft is aware of a recent escalation in a class of attacks targeting Web sites that use Microsoft ASP and ASP.NET technologies but do not follow best practices for secure Web application development. These SQL injection attacks do not exploit a specific software vulnerability, but instead target Web sites that do not follow secure coding practices for accessing and manipulating data stored in a relational database. When a SQL injection attack succeeds, an attacker can compromise data stored in these databases and possibly execute remote code. Clients browsing to a compromised server could be forwarded unknowingly to malicious sites that may install malware on the client machine.
Microsoft Security Advisory (954474): System Center Configuration Manager 2007 Blocked from Deploying Security Updates - 6/17/2008
Revision Note: June 17, 2008: Advisory updated to reflect availability of fix. Advisory Summary:Microsoft has completed the investigation into public reports of a non-security issue that affects environments with all supported versions of System Center Configuration Manager 2007 that deploy updates to Systems Management Services (SMS) 2003 clients. Microsoft has confirmed those reports and has released an update to correct this issue under Microsoft Knowledge Base Article 954474. Microsoft encourages customers affected by this issue to review and install this update.
Microsoft Security Advisory (950627): Vulnerability in Microsoft Jet Database Engine Could Allow Remote Code Execution - 5/13/2008
Revision Note: May 13, 2008: Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into public reports of this vulnerability. We have issued Microsoft Security Bulletin MS08-028 to address this issue. For more information about this issue, including download links for an available security update, please review MS08-028: Vulnerability in Microsoft Jet Database Engine Could Allow Remote Code Execution (950749). The vulnerability addressed is the Microsoft Jet Engine MDB File Parsing Stack Overflow Vulnerability - CVE-2007-6026.
Microsoft Security Advisory (932596): Update to Improve Kernel Patch Protection - 4/23/2008
Revision Note: April 23, 2008: Added an FAQ entry about known issues in installing the kernel update Advisory Summary:Security Advisory
Microsoft Security Advisory (947563): Vulnerability in Microsoft Excel Could Allow Remote Code Execution - 3/12/2008
Revision Note: Advisory updated to reflect the correct Excel file formats in the MOICE Workarounds section. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS08-014 to address this issue. For more information about this issue, including download links for an available security update, please review MS08-014. The vulnerability addressed is the Microsoft Excel Vulnerability - CVE-2008-0081.
|
||
 |
 |
 |
All times are GMT -7. The time now is 08:44 AM.
|
|
|
|
|
|
||
|
|
|
|
Powered by vBulletin
Copyright ©2000 - 2010, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.1.0
Copyright ©2000 - 2010, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.1.0
 |
Home |
Register |
Calendar |
Contact Us |
Help |
Search |
|
 |
|
Copyright © 2005 - 2007 ComputerProblems.org. All rights reserved. Design by: ForumSkin.com |
 |