bug

Fri
18
Mar
Dennis Faas's picture

MS Releases Lock-Down Fix for Critical MHTML Bug

Hackers are actively exploiting a bug that involves both Windows and Internet Explorer. Google believes the hackers may be targeting specific users. The bug involves MHTML, which is a special format designed to combine all the different files of a ... web page, such as the coding for the text and layout, the image files and video files, into a single file. It was originally developed as a way for a user to save an entire webpage to their desktop without winding up with a messy collection of files, but can also be used as a web link. The vulnerability involves the way that Internet Explorer and ... (view more)

Tue
01
Mar
Dennis Faas's picture

Google Restores Lost Gmails

Google has restored access to email for around 40,000 customers whose accounts were mistakenly wiped clean this past Sunday. It says the delay in sorting the problem was because it had to restore from a physical back-up. The problem began on Sunday ... afternoon when some customers found either they were unable to access their Gmail accounts, or that the accounts appeared as if they were open. That is to say, there were no messages whatsoever in the archive, except for a welcome message from Google. Google said it was working on the problem and noted that in cases where users were unable to log- ... (view more)

Fri
18
Feb
Dennis Faas's picture

Microsoft Confirms Zero Day Exploit, Downplays Risk

Microsoft says it's unlikely that hackers will successfully exploit a recently discovered security bug in Windows. The company says that if the bug is abused, it would likely result in a denial of service attack instead. As noted on Wednesday, the ... problem involves system files related to Windows network file and printer sharing. Hackers are often particularly interested in exploiting such system files as they are a potential entry point between a networked computer and the outside world (via the Internet). Denial of Service Risk to Windows In this case, the Windows exploit appears to have two ... (view more)

Wed
16
Feb
Dennis Faas's picture

Security Researcher Reveals New Windows Zero-Day Flaw

A new zero-day security flaw has been found in Windows that could allow a hacker remote access to a PC. A security researcher recently disclosed the bug, which Microsoft is currently investigating. The programming code for the security flaw has been ... posted publically and is related to a Windows system file called "mrxsmb.sys". The file is related to Windows Server Message Block (SMB) protocol, used for network communications. Bug Rated Critical by Security Experts In short, the affected file is associated with file and printer sharing features within the Windows operating system (OS). ... (view more)

Fri
31
Dec
Dennis Faas's picture

MS Outlook, Word Users: Get A Patch Or Get A Virus

Microsoft has revealed that hackers have attempted to exploit a bug in Microsoft Word. The bug was fixed in a security update last month, but the company is also concerned that some users may not have installed the update. The bug involves the way ... MS Word handles rich text format (.RTF) files. This is a format used for text documents that have a very limited degree of formatting information compared to full-blown MS Word documents. The format is most commonly used as a way of moving documents from one word processor to another without altering the text's formatting. RTF Flaw Causes Memory ... (view more)

Tue
02
Nov
Dennis Faas's picture

Adobe Releases Critical Security Advisory

Adobe has revealed that there is a critical zero day bug in its Flash Player, Acrobat and Adobe Reader applications. As well as potentially causing a crash, the bug could allow an attacker to remotely take control of a computer. A zero day bug means ... big trouble for a software developer. It occurs where hackers have discovered a security hole in a program and are actively sharing ways to exploit it before developers know it exists. The term " Zero day " refers to the start of the period during which hackers are able to exploit the bug before the developers produce and distribute a ... (view more)

Fri
13
Aug
Dennis Faas's picture

Microsoft Says Latest Bugs Genuine, But No Need To Panic

Microsoft has confirmed it's investigating yet another large-scale bug affecting all supported editions of Windows. At the same time, it's ruled out issuing an emergency patch for the kernel-related issue that emerged just last week. On Tuesday, ... Microsoft issued a record-breaking monthly Patch Tuesday update containing a record 14 security bulletins. When that was announced, it looked as if it would be network administrators who'd be in for a particularly busy time, while Microsoft security staff could at least have some breathing room. That turned out not to be the case. Bogus Color Data ... (view more)

Wed
07
Jul
Dennis Faas's picture

Microsoft Investigates 'Moderately Critical' Windows XP Bug

Microsoft is currently investigating the emergence of a new critical bug affecting users of Windows 2000 and Windows XP. The Redmond-based firm made the announcement via Twitter on Tuesday, and says the issue can be found in the dynamic link library ... (.DLL) file "mfc42.dll." Security firm Secunia posted a detailed report, which they say is based on a third party proof-of-concept exploit. It's suggested that the vulnerability can be exploited via PowerZip version 7.2 Build 4010, among other utilities that use the mfc42.dll file. (Source: pcmag.com ) Bug Affects Moderately Popular ... (view more)

Fri
02
Jul
Dennis Faas's picture

XP Help Flaw Attacks Explode, Still No Permanent Fix

Microsoft says more than 10,000 computers have been attacked through a bug in the Windows XP help system. Strangely, it has resisted criticizing the security researcher who publicized the security flaw. The bug involves the way XP directs web ... browsers towards help pages, having first checked the page against a "whitelist" to make sure it is legitimate. It's possible for hackers to exploit the flaw by fooling the computer during this checking process. The result is that the browser can be relocated to a page containing malicious software. Microsoft hasn't yet found a permanent solution to the ... (view more)

Fri
22
Jan
Dennis Faas's picture

Critical IE Fix Released; MS Knew of Flaw Months Ago

Microsoft has admitted it knew about the latest Internet Explorer zero-day flaw more than three months ago, news that's likely to prompt criticism about the way the firm prioritizes security issues. The bug, which involves an invalid pointer ... reference, was first reported to Microsoft by Israeli security expert Eyal Gruner on August 26. He says that because it was so easy to discover the vulnerability, he expected less scrupulous people would also find it and develop ways to exploit it. MS Confirmed Flaw in September Microsoft says it received this warning and confirmed it in early September. ... (view more)

Pages

Subscribe to RSS - bug