flaw

Fri
13
Jan
Dennis Faas's picture

Windows Media Player Fix 'Critical', Says Microsoft

Patch Tuesday for January 2012 was released this week by Microsoft and includes seven updates designed to fix eight Windows security vulnerabilities. One patch in particular fixes a serious Windows Media Player exploit. The flaw could allow a hacker ... to take remote control of a PC running Windows. For those who don't follow Microsoft security news, Patch Tuesday refers to the second Tuesday of every month -- the day on which the Redmond-based firm normally releases a series of software updates intended to fix known problems in its various programs. The majority of patches are usually for ... (view more)

Wed
02
Feb
Dennis Faas's picture

New Flaw Affects All Windows, IE Users

Microsoft has issued a formal warning that all versions of the Windows operating system (OS) are vulnerable to a new exploit. The vulnerability could allow attackers access to sensitive data (such as passwords) after a user unknowingly clicks on a ... malicious web link. The flaw is related to the way online content is viewed via the web browser Internet Explorer (IE). According to the Wall Street Journal, Microsoft late last week admitted that the vulnerability exists and that it affects every version of Windows, from Windows XP to Vista, Windows 7 and even Windows Server. Malicious Web Link ... (view more)

Fri
24
Dec
Dennis Faas's picture

Microsoft Reveals Advanced Workaround for New IE Flaw

Yesterday we reported on a new critical flaw in Microsoft's Internet Explorer (IE) that allows hackers to circumvent the operating system and take control of MS Windows. In most instances, a Trojan is deployed on affected systems and spyware is ... installed. The flaw affects users of Windows XP through Windows 7. Microsoft recently acknowledged the vulnerability's existence, and has provided a limited workaround for the issue. Internet Explorer Flaw "Not Serious Enough" to Warrant Emergency Patch The Internet Explorer flaw was discovered earlier this month by a French security company ... (view more)

Thu
23
Dec
Dennis Faas's picture

New Internet Explorer Vulnerability Found

A new Internet Explorer (IE) security vulnerability has been found. The flaw, which is related to Internet Explorer's HTML engine, allows hackers to infiltrate systems running Windows XP, Vista and Windows 7. The issue was first discovered early in ... December by French security company Vupen . The company says this flaw could be exploited with the processing of a CSS (or Cascading Style Sheets) file intended for use by web designers. Rigged Website Key to Attack Those running Internet Explorer could find themselves under attack if they're (knowingly or unknowingly) directed to a specially- ... (view more)

Fri
17
Sep
Dennis Faas's picture

Apple Update Fixes Critical QuickTime Flaw

Apple has patched two critical code execution holes in its QuickTime multimedia player for Windows. At least one of these vulnerabilities has already been exploited by hackers, meaning the fix comes not a moment too soon. An Estimated Several ... Hundred Applications at Risk We first reported the QuickTime flaw over two weeks ago, when it was discovered that the exploit made at least forty (and perhaps several hundred) Windows applications vulnerable to attack. One flaw, called CVE-2010-1818, is associated with QuickTime's ActiveX control. It can be exploited if a hacker can trick a victim to ... (view more)

Tue
31
Aug
Dennis Faas's picture

All Windows Users at Risk of Quicktime Flaw

Shortly after announcing a severe iTunes flaw that affects over 40 Windows applications just last week, it now appears Apple's popular media player, QuickTime, also includes a flaw that could be exploited by hackers to execute malicious code on PCs ... using the Windows operating system (OS). Even systems running more recent versions of the OS, Windows Vista and Windows 7, are vulnerable. "At present the security vulnerability seems to be with users that run Internet Explorer. Given the relative ease with which [the exploit was demonstrated], the chance for drive-by [download] attacks to ... (view more)

Thu
29
Jul
Dennis Faas's picture

Free Toolset Fixes Windows Shortcut Flaw

Two third-party software companies have come together to release temporary fix for a highly contagious and critical zero-day flaw which affects all versions of the Windows operating system (OS). The security flaw, which Microsoft says it knows about ... and is working on a permanent patch towards, makes users of Windows 2000 through Windows 7 vulnerable to attack if they open a desktop folder packing an infected .LNK file extension. Microsoft Temp Fix Not Popular Microsoft last week released its own temporary solution in the form of a workaround, but few users were very fond of a solution that ... (view more)

Fri
23
Jul
Dennis Faas's picture

Experts Fear Windows Shortcut Flaw to be Widespread

A serious security flaw affecting Windows shortcuts could pose a significant risk to critical global infrastructure, says a new report from security research firm Sophos. Power grids and manufacturing plants could soon be targeted by a flaw that ... researchers say has already been exploited by hackers. "Early versions of the malware have been programmed to seek out SCADA software (Supervisory Control And Data Acquisition) by Siemens Corporation, which is used in managing industrial infrastructures, such as power grids and manufacturing plants," said Sophos. Security Firms Fear Growing Threat ... (view more)

Wed
21
Jul
Dennis Faas's picture

New 'Windows Shortcut Flaw' High Risk, Affects All Users

A new Windows zero-day flaw has gone public. Known as the "Windows Shortcut flaw", the exploit affects all versions of Microsoft Windows. What's important to note is that merely opening or viewing an infected USB stick can infect a computer -- even ... on systems where Windows Autoplay is disabled. The flaw affects files which have the file extension .LNK, otherwise known as a "Windows Shortcut" file. Shortcut files are essentially copies of program icons and tell Windows where the original program is located. For example, normally one would have to click Start -> Programs ... (view more)

Tue
13
Jul
Dennis Faas's picture

Patch Tuesday to Address XP Help Bug, Plus Vital Win7 Fixes

Microsoft will next week unveil a series of security bulletins meant to address five security flaws. The fixes are part of the company's monthly Patch Tuesday release, and will most importantly fix a critical Windows XP Help Bug flaw in Windows' ... Help and Support Center. The series of fixes include four patches for the five vulnerabilities, three of which have been dubbed "critical" by Microsoft -- the company's highest level of alert. Each of these critical issues involve holes that, if exploited, could allow a hacker to launch a remote code execution attack upon an unsuspecting user's PC. ... (view more)

Pages

Subscribe to RSS - flaw