Posts Tagged ‘vulnerability’

Microsoft Security Bulletins for November 2012 Released

Thursday, November 15th, 2012

If your PC reboots itself in the middle of the night some time this week, then this is probably why …

Today’s Microsoft “Patch Tuesday” brings six security bulletins that patch vulnerabilities in Microsoft Windows, Office, Internet Explorer and the Microsoft .NET Framework. It is the first regular patch day for Microsoft’s newest operating system Windows 8 and Windows RT. Both systems are affected by three of the five bulletins that affect Windows or software built-in to Windows, just like Windows XP and Windows Server 2003 are. Windows Vista and Windows 7, as well as the server based operating systems Windows Server 2008 and 2008 R2, are addressed by all five Windows-related bulletins.

(more…)

Browser Autocomplete Feature May Reveal Personal Data

Tuesday, October 25th, 2011

Privacy-conscious Windows users might want to check this one out …

The autocomplete feature can be pretty handy at times. It helps you log in on your favorite website faster or load a website in your browser without having to enter the full web address. Researchers from Minded Security Labs have released a proof of concept that demonstrates how a third party website can get access to a browser’s autocomplete entries (which means stealing).

(more…)

Another Adobe Reader Zero-Day Vulnerability Emerges

Friday, August 6th, 2010

Dang. Just when I was feeling like I’d taken care of that last Adobe bug …

What is it with Adobe Reader and vulnerabilities? It feels like new security vulnerabilities are found in the software at an accelerated pace this year. Adobe yesterday released a security advisory for Adobe Reader and Acrobat, to announce to the world that critical security vulnerabilities have been found – once again – in Adobe Reader and Adobe Acrobat.

(more…)

Germans warned of Apple vulnerability

Thursday, August 5th, 2010

I guess this warning goes for non-German iPhone users too …

Statement warns iPhone and iPad users to visit only trustworthy websites and avoid PDFs until Apple releases fix

Several Apple devices including the iPhone and iPad have two critical security weaknesses for which no patch exists, the German government warned last night.

(more…)

Microsoft patches Windows folder flaw

Tuesday, August 3rd, 2010

This sounds like it’s a good time to make sure that you have the latest Windows patches installed …

High-profile vulnerability dating back to Windows 2000 fixed by critical update – as reports show malware targeting it

Microsoft has released a “critical” update for its operating systems that patches a high-profile vulnerability dating back to Windows 2000.

(more…)

Adobe / Microsoft to team up on Vulnerability Sharing

Thursday, July 29th, 2010

This sounds helpful … but too bad it won’t actually happen until 2012.

Microsoft has announced that it’s to extend it’s Microsoft Active Protections Program (MAPP) to include vulnerability sharing information from Adobe.

The programme, launched in October 2008 allows sharing of information about security vulnerabilities with security software vendors.  So far 65 companies have signed up to the scheme.

(more…)

Microsoft warn of Windows Shell Critical Vulnerability

Monday, July 19th, 2010

Again? When it comes to vulnerability, Windows seems to lead the pack …

Microsoft have warned of a critical vulnerability in Windows Shell, caused when parsing .lnk shortcuts that can automatically launch a malicious program through use of a specially crafted shortcut.

The vulnerability affects all versions of Windows including XP and Windows 7.   On Windows 7 the exploit can bypass the operating system’s security as it does not require administrative privileges to run.

(more…)