Posts Tagged ‘windows vulnerability’

Duqu Zero-Day Exploit Discovered – Removal Tool Released

Thursday, November 3rd, 2011

If you’ve been bitten by the Duqu bug, here’s a tool that might help you to get rid of it …

If you have been following security news lately you may have already heard about the Duqu rootkit that combines the technology of the Stuxnet rootkit with a backdoor trojan and keylogger. Duqu has been discovered on October 18 and infection reports have started to come in soon thereafter.


Microsoft Releases Out of Band Security Patch

Wednesday, September 29th, 2010

Here’s an important security issue for anyone who runs Microsoft .Net Framework on a Windows Server operating system …

Microsoft today released a new out of band security bulletin addressing a vulnerability in ASP.NET that affects all versions of the Microsoft .Net Framework when used on Windows Server operating systems, or on client systems that run a web server from their computer.

While that excludes the majority of desktop users, it may still affect some that run web servers on their desktop systems. Those users are asked to update immediately once the patch is released.


Microsoft Offers Workaround For Remote DLL Vulnerability

Thursday, August 26th, 2010

This sounds like a pretty serious vulnerability … kind of surprising that Microsoft only came up with a workaround, instead of a patch.

A vulnerability was recently discovered in Microsoft Windows operating systems that exploits the default dll loading behavior. A Microsoft Security Advisory explains that the “issue is caused by specific insecure programming practices that allow so-called binary planting or DLL preloading attacks”.

In simple terms: Applications that do not use qualified paths for external dynamic link libraries use Windows default settings to find those dlls on the system, and one of the first locations to be searched is the program directory, which can be a local or remote directory.