remote code

Thu
13
Nov
Brandon Dimmel's picture

MS Patches 20 Year Old Exploit; XP Still Vulnerable

Microsoft has patched a security vulnerability that somehow evaded detection for roughly twenty years. The bug has reportedly existed in every single version of the Windows operating system since Windows 95. According to reports, the bug can allow a ... hacker to execute code remotely when a user visits a malicious website. IBM security expert Robert Freeman says the bug is related to a flaw in VBScript, which first debuted with Internet Explorer 3.0 in the late 1990s. Freeman says that the bug remains invulnerable to Microsoft's anti-exploitation tools, otherwise known as the Enhanced ... (view more)

Wed
11
Dec
Dennis Faas's picture

Microsoft Issues Five 'Critical' Security Fixes

Microsoft has issued eleven security bulletins as part of its final Patch Tuesday of 2013. One of those bulletins addresses a zero-day flaw found in Windows XP, while another fixes a remote code execution vulnerability in the firm's web browser, ... Internet Explorer. In total, Microsoft's December Patch Tuesday includes five patches rated "critical", Microsoft's most alarming security classification. Windows XP TIFF Vulnerability Finally Addressed The first critical fix, MS13-096, addresses a TIFF image file vulnerability exploited via Word, Microsoft's word processing application. The good news ... (view more)

Tue
12
Nov
Dennis Faas's picture

Microsoft: No Zero-Day TIFF Fix This Patch Tuesday

Microsoft will be issuing Patch Tuesday fixes for several "critical" security problems today. Unfortunately, the firm says the list of fixes doesn't include a patch for a recently reported zero-day flaw affecting Windows and the Microsoft Office ... software suite. The November 2013 Patch Tuesday lineup includes a total of eight bulletins, three of which are marked "critical" -- Microsoft's highest security rating. These flaws involve serious security issues affecting some of Microsoft's most popular products, including the Windows operating system and Internet Explorer, the firm's web browser. ... (view more)

Wed
09
May
Dennis Faas's picture

Microsoft Fixes 'Critical' Bugs in Windows, Office

Microsoft's most recent security update includes fixes for a total of 22 flaws affecting the Windows operating system (OS), the Microsoft Office program suite, and the .Net Framework. The 22 fixes are spread across seven security bulletins, three of ... which Microsoft has ranked 'critical,' the company's highest security rating. Another four have been rated 'important,' which is one step down from 'critical.' Remote Code Execution Flaws Rampant All but two of the security bulletins address issues related to remote code execution vulnerabilities. Problems like these can put a computer system at ... (view more)

Wed
14
Mar
Dennis Faas's picture

Microsoft Fixes Major PC Flaw with Security Update

Microsoft says it has fixed only one 'critical' security flaw this Patch Tuesday. However, it appears to be a highly significant vulnerability. For those not familiar with the terminology, 'critical' vulnerabilities are those rated to be most in ... need of addressing. Flaw Could Allow Remote Code Execution The 'critical' security flaw is a remote code execution vulnerability in Microsoft's Remote Desktop Protocol (RDP). Every version of Windows is reportedly left vulnerable by the problem. So long as the vulnerability remains unpatched, Microsoft says, a hacker who is able to convince a computer ... (view more)

Mon
13
Feb
Dennis Faas's picture

Microsoft Patch Tuesday Fixes 21 Security Flaws

Microsoft says that it will patch more than twenty security problems this Valentine's Day (February 14), coinciding with its regular "Patch Tuesday." Microsoft will be offering fixes for a wide range of flaws affecting the company's Internet ... Explorer (IE) web browser, every version of its Windows operating system (OS), as well as Microsoft Office. The total of 21 fixes will be spread across nine different security bulletins, four of which Microsoft has labeled "critical," which is the company's highest security warning. The rest of the bulletins are all marked "important," which is ... (view more)

Fri
10
Dec
Dennis Faas's picture

Patch Your PC: 40 MS Windows Fixes Due Tuesday

Microsoft will yet again release a gargantuan list of security bulletins for flaws found in its Windows operating system, Internet Explorer browser, and MS Office applications suite. In total, 17 security bulletins will address a mind-boggling 40 ... flaws and will be released this coming Tuesday, December 14th. While this isn't the largest release to date, it is a significant number and users of all MS Windows need to patch their PCs in order to steer clear of online threats. Remote Code Execution Threats Plague MS Windows Thankfully, just two of the bulletins have been rated "critical," ... (view more)

Wed
19
May
Dennis Faas's picture

Microsoft Warns of 'Unlikely' Windows 7 Aero Flaw

A new security flaw in Microsoft's very popular Windows 7 operating system (OS) could open users up to a remote code execution and denial-of-service attack, Microsoft said in a security advisory on Tuesday evening. The vulnerability affects only ... 64-bit versions of Windows Server 2008 R2 and Windows 7. The flaw affects the Canonical Display Driver, or CDD.DLL, used in the Windows Graphics Device Interface (GDI) and DirectX drawing. The vulnerability is tied to the graphics system's desktop composition process. (Source: zdnet.com ) Microsoft: Remote Code Attack "Unlikely" Luckily, it ... (view more)

Wed
15
Apr
Dennis Faas's picture

23 Security Fixes Just Released: Experts Astounded

Microsoft's Patch Tuesday came and went yesterday, bringing 23 fixes for a number of issues with its popular Office programs Excel and Word. At least several of these have been marked critical and most users should certainly consider the download. ... (Source: theregister.co.uk ) The most critical of the patches fixes an Excel flaw that could potentially allow a hacker to take remote control of an unpatched system. If an unprotected user opens a malicious and specially crafted Excel file, they could find their computer controlled by someone else effectively exploiting something called an ... (view more)

Thu
12
Jun
Dennis Faas's picture

Microsoft Unleashes Host of 'Critical' Updates

Microsoft recently released another whack of updates to its software, and many will want to take notice. Of the ten listed vulnerabilities within this June offering are three deemed "critical", another three considered "important" and one ... "moderate". The patch released Tuesday includes three major fixes, including: A vulnerability in Bluetooth Stack that could allow a hacker to make a remote code execution A Cumulative Security Update for Internet Explorer Like the Bluetooth issue, there's also a fix that patches holes in DirectX which could allow someone to make a remote code execution A ... (view more)

Subscribe to RSS - remote code