Daremedy.com Forum

Virus and Antivirus Information :: RE: AVG - a FREE anti-virus program

Author: samiroyeee
Posted: Sun Aug 05, 2007 3:23 am (GMT -4)
Topic Replies: 6

Alot people refer to to Norton, but I have find the software very inaccesable

there are more better software in then Norton

if I am wrong please correct me .

Virus and Antivirus Information :: Microsoft Security Bulletins - July

Author: dietnkzg
Subject: Microsoft Security Bulletins - July
Posted: Sun Jul 15, 2007 12:04 am (GMT -4)
Topic Replies: 0

Microsoft Security Bulletins for July 2007
http://www.microsoft.com/technet/security/bulletin/ms07-jul.mspx

With the release of the bulletins for July 2007, this bulletin summary replaces the bulletin advance notification originally issued July 5, 2007. For more information about the bulletin advance notification service, see Microsoft Security Bulletin Advance Notification.

Critical Security Bulletins (3)
===========================

MS07-036 Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (936542)
http://www.microsoft.com/technet/security/Bulletin/ms07-036.mspx

- Affected Software:
- Excel 2000 Service Pack 3
- Excel 2003 Service Pack 2
- Excel 2003 Viewer
- Excel 2007
- Microsoft Office 2004 for Mac
- Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats

- Impact: Remote Code Execution
- Version Number: 2.0, Updated & Re-released: 12 Jul-07

MS07-039 Vulnerability in Windows Active Directory Could Allow Remote Code Execution (926122)
http://www.microsoft.com/technet/security/Bulletin/ms07-039.mspx

- Affected Software:
- Microsoft Windows 2000 Service Pack 4
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 1
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista
- Windows Vista x64

- Impact: Remote Code Execution
- Version Number: 1.0

MS07-040 Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212)
http://www.microsoft.com/technet/security/Bulletin/ms07-040.mspx

- Affected Software:
- Microsoft Windows 2000 Server Service Pack 4
- Windows Server 2003 Service Pack 1
- Windows Server 2003 Service Pack 2
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Vista
- Windows Vista x64

- Impact: Remote Code Execution
- Originally posted: July 10, 2007
- Updated: July 12, 2007
- Version: 1.1
- Reason for Revision: Bulletin Updated: Corrected Windows Vista severity rating in the "Affected Software" table to Important. Corrected several instances in the file manifest tables incorrectly referencing a version of Mscordacwks.dll that is not installed on the system. Added an additional FAQ explaining why customers installing .NET Framework 3.0 should update .NET Framework 2.0 on their system. Added an additional FAQ for ASP.NET Web application developers.

Important Security Bulletins (2)
============================

MS07-037 Vulnerability in Microsoft Office Publisher Could Allow Remote Code Execution (936548)
http://www.microsoft.com/technet/security/Bulletin/ms07-037.mspx

- Affected Software:
- Publisher 2007

- Impact: Remote Code Execution
- Version Number: 1.0

MS07-041 Vulnerability in Microsoft Internet Information Services Could Allow Remote Code Execution (939373)
http://www.microsoft.com/technet/security/Bulletin/ms07-041.mspx

- Affected Software:
- Windows XP Professional Service Pack 2

- Impact: Remote Code Execution
- Version Number: 1.0

Moderate Security Bulletins (1)
===========================

MS07-038 Vulnerability in Windows Vista Firewall Could Allow Information Disclosure (935807)
http://www.microsoft.com/technet/security/Bulletin/ms07-038.mspx

- Affected Software:
- Windows Vista
- Windows Vista x64 Edition

- Impact: Information Disclosure
- Version Number: 1.1; Updated: July 12, 2007 [Minor content revision]

Microsoft Windows Malicious Software Removal Tool:
==================================================
Microsoft has released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.

Note that this tool will not be distributed using Software Update Services (SUS).

Non-Security, High-Priority Updates on MU, WU, WSUS and SUS:
============================================================
For this month:

* Microsoft has released four non-security, high-priority updates on Microsoft Update (MU) and Windows Server Update Services (WSUS).

* Microsoft has released one non-security, high-priority update for Windows on Windows Update (WU) and Software Update Services (SUS).

Note that this information pertains only to non-security, high-priority updates on Microsoft Update, Windows Update, Windows Server Update Services, and Software Update Services released on the same day as the Security Bulletin Summary. Information will not be provided about non-security updates released on other days.
_________________
^ Credit to all original scanners/cappers and that whole deal.

Virus and Antivirus Information :: Microsoft Security Bulletins - June

Author: dietnkzg
Subject: Microsoft Security Bulletins - June
Posted: Sun Jul 15, 2007 12:03 am (GMT -4)
Topic Replies: 0

Microsoft Security Bulletin Summary for June 2007
http://www.microsoft.com/technet/security/bulletin/ms07-jun.mspx

With the release of the bulletins for June 2007, this bulletin summary replaces the bulletin advance notification originally issued June 7, 2007. For more information about the bulletin advance notification service, see http://www.microsoft.com/technet/security/Bulletin/advance.mspx

Critical Security Bulletins (4)
===========================

MS07-031 - Vulnerability in the Windows Schannel Security Package Could Allow Remote Code Execution (935840)
http://www.microsoft.com/technet/security/Bulletin/ms07-031.mspx

- Affected Software:
- Microsoft Windows 2000 Service Pack 4
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 1
- Windows Server 2003 Service Pack 2
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Windows Server 2003 x64 Edition Service Pack 2

MS07-033 - Cumulative Security Update for Internet Explorer (933566)
http://www.microsoft.com/technet/security/Bulletin/ms07-033.mspx

- Affected Software:
- Microsoft Windows 2000 Service Pack 4
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 1
- Windows Server 2003 Service Pack 2
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Vista
- Windows Vista x64 Edition

MS07-034 - Cumulative Security Update for Outlook Express and Windows Mail (929123)
http://www.microsoft.com/technet/security/Bulletin/ms07-034.mspx

- Affected Software:
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 1
- Windows Server 2003 Service Pack 2
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Vista
- Windows Vista x64 Edition

MS07-035 - Vulnerability in Win 32 API Could Allow Remote Code Execution (935839)
http://www.microsoft.com/technet/security/Bulletin/ms07-035.mspx

- Affected Software:
- Microsoft Windows 2000 Service Pack 4
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 1
- Windows Server 2003 Service Pack 2
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Windows Server 2003 x64 Edition Service Pack 2

Important Security Bulletins (1)
============================

MS07-030 - Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (927051)
http://www.microsoft.com/technet/security/Bulletin/ms07-030.mspx

- Affected Software:
- Microsoft Visio 2002 Service Pack 2
- Microsoft Visio 2003 Service Pack 2

Moderate Security Bulletins (1)
===========================

MS07-032 - Vulnerability in Windows Vista Could Allow Information Disclosure (931213)
http://www.microsoft.com/technet/security/Bulletin/ms07-032.mspx

- Affected Software:
- Windows Vista
- Windows Vista x64 Edition

===========================

Microsoft Windows Malicious Software Removal Tool:
==================================================
Microsoft has released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.

Note that this tool will not be distributed using Software Update Services (SUS).

Non-Security, High-Priority Updates on MU, WU, WSUS and SUS:
============================================================
* Microsoft has released released seven non-security, high-priority updates on Microsoft Update (MU) and Windows Server Update Services (WSUS).

* Microsoft has not released any non-security, high-priority updates for Windows on Windows Update (WU) and Software Update Services (SUS).

Support:

Technical support is available from Microsoft Product Support Services at 1-866-PC SAFETY (1-866-727-2338). There is no charge for support calls associated with security updates. International customers can get support from their local Microsoft subsidiaries. Phone numbers for international support can be found at: http://support.microsoft.com/common/international.aspx
_________________
^ Credit to all original scanners/cappers and that whole deal.

Virus and Antivirus Information :: Harry Potter worm - New USB based Worm spreading

Author: dietnkzg
Subject: Harry Potter worm - New USB based Worm spreading
Posted: Sun Jul 15, 2007 12:02 am (GMT -4)
Topic Replies: 0

http://www.sophos.com/pressoffice/news/art...hairy.html
http://www.sophos.com/virusinfo/analyses/w32hairya.html

Quote:
With just weeks remaining until the release of the last ever Harry Potter novel, and the imminent premiere of the fifth movie in the franchise, Sophos has warned of a new computer worm exploiting Potter-mania around the world. The W32/Hairy-A worm can automatically infect a PC when users plug-in USB drives, which carry a file posing as a copy of the eagerly anticipated novel, "Harry Potter and the Deathly Hallows". If the users have allowed USB drives to 'auto-run' they will see a file called HarryPotter-TheDeathlyHallows.doc. Inside this Word document file is the simple phrase "Harry Potter is dead." The worm then looks for other removable drives to infect.

Quote:

With just weeks remaining until the release of the last ever Harry Potter novel, and the imminent premiere of the fifth movie in the franchise, Sophos has warned of a new computer worm exploiting Potter-mania around the world. The W32/Hairy-A worm can automatically infect a PC when users plug-in USB drives, which carry a file posing as a copy of the eagerly anticipated novel, "Harry Potter and the Deathly Hallows". If the users have allowed USB drives to 'auto-run' they will see a file called HarryPotter-TheDeathlyHallows.doc. Inside this Word document file is the simple phrase "Harry Potter is dead." The worm then looks for other removable drives to infect.

_________________
^ Credit to all original scanners/cappers and that whole deal.

Virus and Antivirus Information :: New Storm Worm - Warns of Virus, Spyware, Malware

Author: dietnkzg
Subject: New Storm Worm - Warns of Virus, Spyware, Malware
Posted: Sun Jul 15, 2007 12:01 am (GMT -4)
Topic Replies: 0

http://isc.sans.org/diary.html?storyid=3117
http://www.auscert.org.au/render.html?it=7813
_________________
^ Credit to all original scanners/cappers and that whole deal.

Virus and Antivirus Information :: Hotlan Trojan - Attacks free email account to generate spam

Author: dietnkzg
Subject: Hotlan Trojan - Attacks free email account to generate spam
Posted: Sun Jul 15, 2007 12:01 am (GMT -4)
Topic Replies: 0

Hotlan Trojan defeats captcha

Quote:
A new Trojan horse that sends spam through Hotmail and Yahoo email accounts has antivirus companies worried that the commonly used "captcha" system, used to prove new members are real people, may have been compromised. Captcha systems typically use a selection of alphanumeric characters that have been distorted and presented in a graphic with other elements designed to confuse character-recognition software. The idea is that, as only a person can read it and type in the correct sequence, spam bots and other malware can be stopped from automatically setting up accounts. The new threat was highlighted on Thursday by BitDefender Labs, which has dubbed it Trojan.Spammer.HotLan.A.

Quote:

A new Trojan horse that sends spam through Hotmail and Yahoo email accounts has antivirus companies worried that the commonly used "captcha" system, used to prove new members are real people, may have been compromised. Captcha systems typically use a selection of alphanumeric characters that have been distorted and presented in a graphic with other elements designed to confuse character-recognition software. The idea is that, as only a person can read it and type in the correct sequence, spam bots and other malware can be stopped from automatically setting up accounts. The new threat was highlighted on Thursday by BitDefender Labs, which has dubbed it Trojan.Spammer.HotLan.A.

McAfee

Quote:
This is a spam trojan which downloads a remote script to log into various free webmail accounts, in order to send spam. The script then tries to contact a second site, which contains details about the spam emails to send. At the time of writing, this second site returned nothing. This trojan does not install itself to the local system - once a system is rebooted, it will not restart itself.

_________________
^ Credit to all original scanners/cappers and that whole deal.

Virus and Antivirus Information :: Hackers gain shell-level access on iPhone

Author: dietnkzg
Subject: Hackers gain shell-level access on iPhone
Posted: Sat Jul 14, 2007 11:59 pm (GMT -4)
Topic Replies: 0

http://blogs.techrepublic.com.com/tech-news/?p=775
http://www.engadget.com/2007/07/06/iphone-hacked-for-shell-access
_________________
^ Credit to all original scanners/cappers and that whole deal.

Virus and Antivirus Information :: Sun Java Web Start JNLP File Processing Buffer Overflow

Author: dietnkzg
Subject: Sun Java Web Start JNLP File Processing Buffer Overflow
Posted: Sat Jul 14, 2007 11:58 pm (GMT -4)
Topic Replies: 0

Quote:
Secunia Advisory: SA25981 Release Date: 2007-07-10 Last Update: 2007-07-11 Critical: Highly critical Impact: System access Where: From remote Solution Status: Vendor Patch Software: Java Web Start 1.x Sun Java JDK 1.5.x Sun Java JDK 1.6.x Sun Java JRE 1.5.x / 5.x Sun Java JRE 1.6.x / 6.x CVE reference: CVE-2007-3655 (Secunia mirror) Description: A vulnerability has been reported in Sun Java Web Start, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error within the Java Web Start component (javaws.exe) when processing JNLP files. This can be exploited to cause a stack-based buffer overflow via a specially crafted JNLP file with an overly long codebase attribute. Successful exploitation allows execution of arbitrary code e.g. when a user visits a malicious website. The vulnerability is reported in the following versions: * JRE and JDK 6 Update 1 and earlier * JRE and JDK 5 Update 11, and earlier Solution: Apply updates. JRE/JDK 5 Update 12: http://java.sun.com/javase/downloads/index_jdk5.jsp JRE/JDK 6 Update 2: http://java.sun.com/javase/downloads/index.jsp

Quote:

Secunia Advisory: SA25981
Release Date: 2007-07-10
Last Update: 2007-07-11

Critical: Highly critical
Impact: System access
Where: From remote
Solution Status: Vendor Patch

Software: Java Web Start 1.x
Sun Java JDK 1.5.x
Sun Java JDK 1.6.x
Sun Java JRE 1.5.x / 5.x
Sun Java JRE 1.6.x / 6.x

CVE reference: CVE-2007-3655 (Secunia mirror)

Description:
A vulnerability has been reported in Sun Java Web Start, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to a boundary error within the Java Web Start component (javaws.exe) when processing JNLP files. This can be exploited to cause a stack-based buffer overflow via a specially crafted JNLP file with an overly long codebase attribute.

Successful exploitation allows execution of arbitrary code e.g. when a user visits a malicious website.

The vulnerability is reported in the following versions:
* JRE and JDK 6 Update 1 and earlier
* JRE and JDK 5 Update 11, and earlier

Solution:
Apply updates.

JRE/JDK 5 Update 12:
http://java.sun.com/javase/downloads/index_jdk5.jsp

JRE/JDK 6 Update 2:
http://java.sun.com/javase/downloads/index.jsp

http://secunia.com/advisories/25981/
_________________
^ Credit to all original scanners/cappers and that whole deal.

Virus and Antivirus Information :: Microsoft Security Bulletins - May

Author: dietnkzg
Subject: Microsoft Security Bulletins - May
Posted: Tue Jun 05, 2007 12:51 pm (GMT -4)
Topic Replies: 0

Quote:
http://www.microsoft.com/technet/security/bulletin/ms07-may.mspx Critical Bulletins (7): MS07-023 - Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (934233) http://support.microsoft.com/kb/934233 MS07-024 - Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (934232) http://support.microsoft.com/kb/934232 MS07-025 - Vulnerability in Microsoft Office Could Allow Remote Code Execution (934873) http://support.microsoft.com/kb/934873 MS07-026 - Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (931832) http://support.microsoft.com/kb/931832 MS07-027 - Cumulative Security Update for Internet Explorer (931768) [NB: Includes IE7 and Hotfixes] http://support.microsoft.com/kb/931768 MS07-028 - Vulnerability in CAPICOM Could Allow Remote Code Execution (931906) http://support.microsoft.com/kb/931906 MS07-029 - Vulnerability in RPC on Windows DNS Server Could Allow Remote Code Execution (935966) http://support.microsoft.com/kb/935966 Microsoft Windows Malicious Software Removal Tool Microsoft has released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center. Non-Security, High-Priority Updates on MU, WU, WSUS and SUS Microsoft is also releasing High-Priority NON-SECURITY updates today on WU, MU, SUS and WSUS. For complete details on non-security updates being released today please review the following KB Article: http://support.microsoft.com/?id=894199 Support: Technical support is available from Microsoft Product Support Services at 1-866-PC SAFETY (1-866-727-2338). There is no charge for support calls associated with security updates. International customers can get support from their local Microsoft subsidiaries. Phone numbers for international support can be found at: http://support.microsoft.com/common/international.aspx � 2007 Microsoft Corporation. All rights reserved.

Quote:

http://www.microsoft.com/technet/security/bulletin/ms07-may.mspx

Critical Bulletins (7):

http://support.microsoft.com/kb/934233

http://support.microsoft.com/kb/934232

http://support.microsoft.com/kb/934873

http://support.microsoft.com/kb/931832

http://support.microsoft.com/kb/931768

http://support.microsoft.com/kb/931906

http://support.microsoft.com/kb/935966

Microsoft Windows Malicious Software Removal Tool

Microsoft has released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.

Non-Security, High-Priority Updates on MU, WU, WSUS and SUS

Microsoft is also releasing High-Priority NON-SECURITY updates today on WU, MU, SUS and WSUS. For complete details on non-security updates being released today please review the following KB Article: http://support.microsoft.com/?id=894199

Support:

Technical support is available from Microsoft Product Support Services at 1-866-PC SAFETY (1-866-727-2338). There is no charge for support calls associated with security updates. International customers can get support from their local Microsoft subsidiaries. Phone numbers for international support can be found at: http://support.microsoft.com/common/international.aspx

� 2007 Microsoft Corporation. All rights reserved.

_________________
^ Credit to all original scanners/cappers and that whole deal.

Virus and Antivirus Information :: Microsoft Security Bulletins - April

Author: dietnkzg
Subject: Microsoft Security Bulletins - April
Posted: Tue Jun 05, 2007 12:51 pm (GMT -4)
Topic Replies: 0

Quote:
http://www.microsoft.com/technet/security/bulletin/ms07-apr.mspx Published: 03 April 2007 Revised: 10 April 2007 Version 2.0 An end-user version of this information is available at http://www.microsoft.com/athome/security/u...00704.mspx Critical Bulletins (5): � MS07-017 Vulnerabilities in GDI Could Allow Remote Code Execution (925902) [Originally Released: 03 April 2007] http://support.microsoft.com/kb/925902 http://www.microsoft.com/technet/security/Bulletin/MS07-017.mspx :hand: Microsoft Knowledge Base Article 925902 documents the currently known issues that customers may experience when they install this security update. The article also documents recommended solutions for these issues. For more information, see Microsoft Knowledge Base Article 925902 (http://support.microsoft.com/kb/925902/), as well as this Microsoft Security Response Center blog entry: http://blogs.technet.com/msrc/archive/2007...dated.aspx � MS07-018 Vulnerabilities in Microsoft Content Management Server Could Allow Remote Code Execution (925939) http://www.microsoft.com/technet/security/bulletin/ms07-018.mspx � MS07-019 Vulnerability in Universal Plug and Play Could Allow Remote Code Execution (931261) http://www.microsoft.com/technet/security/bulletin/ms07-019.mspx � MS07-020 Vulnerability in Microsoft Agent Could Allow Remote Code Execution (932168) http://www.microsoft.com/technet/security/bulletin/ms07-020.mspx � MS07-021 Vulnerabilities in CSRSS Could Allow Remote Code Execution (930178) http://www.microsoft.com/technet/security/bulletin/ms07-021.mspx Important Bulletins (1): � MS07-022 Vulnerability in Windows Kernel Could Allow Elevation of Privilege (931784) http://www.microsoft.com/technet/security/bulletin/ms07-022.mspx Microsoft Windows Malicious Software Removal Tool Microsoft has released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center. Non-Security, High-Priority Updates on MU, WU, WSUS and SUS Microsoft is also releasing High-Priority NON-SECURITY updates today on WU, MU, SUS and WSUS. For complete details on non-security updates being released today please review the following KB Article: http://support.microsoft.com/?id=894199 Support: Technical support is available from Microsoft Product Support Services at 1-866-PC SAFETY (1-866-727-2338). There is no charge for support calls associated with security updates. International customers can get support from their local Microsoft subsidiaries. Phone numbers for international support can be found at: http://support.microsoft.com/common/international.aspx � 2007 Microsoft Corporation. All rights reserved.

Quote:

http://www.microsoft.com/technet/security/bulletin/ms07-apr.mspx

Published: 03 April 2007
Revised: 10 April 2007
Version 2.0

An end-user version of this information is available at http://www.microsoft.com/athome/security/u...00704.mspx

Critical Bulletins (5):

MS07-017 Vulnerabilities in GDI Could Allow Remote Code Execution (925902)

http://support.microsoft.com/kb/925902

http://www.microsoft.com/technet/security/Bulletin/MS07-017.mspx

http://support.microsoft.com/kb/925902/

http://blogs.technet.com/msrc/archive/2007...dated.aspx

MS07-018 Vulnerabilities in Microsoft Content Management Server Could Allow Remote Code Execution (925939)

http://www.microsoft.com/technet/security/bulletin/ms07-018.mspx

MS07-019 Vulnerability in Universal Plug and Play Could Allow Remote Code Execution (931261)

http://www.microsoft.com/technet/security/bulletin/ms07-019.mspx

MS07-020 Vulnerability in Microsoft Agent Could Allow Remote Code Execution (932168)

http://www.microsoft.com/technet/security/bulletin/ms07-020.mspx

MS07-021 Vulnerabilities in CSRSS Could Allow Remote Code Execution (930178)

http://www.microsoft.com/technet/security/bulletin/ms07-021.mspx

Important Bulletins (1):

MS07-022 Vulnerability in Windows Kernel Could Allow Elevation of Privilege (931784)

http://www.microsoft.com/technet/security/bulletin/ms07-022.mspx

_________________
^ Credit to all original scanners/cappers and that whole deal.

Virus and Antivirus Information :: Microsoft Security Bulletins - March

Author: dietnkzg
Subject: Microsoft Security Bulletins - March
Posted: Tue Jun 05, 2007 12:50 pm (GMT -4)
Topic Replies: 0

Quote:
http://www.microsoft.com/technet/security/bulletin/ms07-mar.mspx Security Updates � Microsoft has not released any security bulletins on March 13, 2007. Microsoft Windows Malicious Software Removal Tool Microsoft has released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center. Non-Security, High-Priority Updates on MU, WU, WSUS and SUS � Microsoft has released two non-security, high-priority updates on Microsoft Update (MU) and Windows Server Update Services (WSUS). � Microsoft has released four non-security, high-priority updates for Windows on Windows Update (WU) and Software Update Services (SUS).

Quote:

http://www.microsoft.com/technet/security/bulletin/ms07-mar.mspx

Security Updates

� Microsoft has not released any security bulletins on March 13, 2007.

Microsoft Windows Malicious Software Removal Tool

Microsoft has released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.

Non-Security, High-Priority Updates on MU, WU, WSUS and SUS

� Microsoft has released two non-security, high-priority updates on Microsoft Update (MU) and Windows Server Update Services (WSUS).

� Microsoft has released four non-security, high-priority updates for Windows on Windows Update (WU) and Software Update Services (SUS).

_________________
^ Credit to all original scanners/cappers and that whole deal.

Virus and Antivirus Information :: Microsoft Security Bulletins - February

Author: dietnkzg
Subject: Microsoft Security Bulletins - February
Posted: Tue Jun 05, 2007 12:48 pm (GMT -4)
Topic Replies: 0

Quote:
http://www.microsoft.com/technet/security/bulletin/ms07-Feb.mspx An end-user version of this information is available at http://www.microsoft.com/athome/security/u...00702.mspx 6 Critical Bulletins: � MS07-008 - Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution (928843) � MS07-009 - Vulnerability in Microsoft Data Access Components Could Allow Remote Code Execution(927779) � MS07-010 - Vulnerability in Microsoft Malware Protection Engine Could Allow Remote Code Execution (932135) [ MS07-010 applies to Windows Defender, including Vista, and Windows Live OneCare] � MS07-014 - Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (929434) � MS07-015 - Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (932554) � MS07-016 - Cumulative Security Update for Internet Explorer (928090) [ MS07-016 applies to IE7 running in WinXP SP2, WinXP Pro x64, Win2K03 SP1, and Win2K03 x64 but not Vista] 6 Important Bulletins: � MS07-005 - Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (923723) � MS07-006 - Vulnerability in Windows Shell Could Allow Elevation of Privilege (928255) � MS07-007 - Vulnerability in Windows Image Acquisition Service Could Allow Elevation of Privilege (927802) � MS07-011 - Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution (926436) � MS07-012 - Vulnerability in Microsoft MFC Could Allow Remote Code Execution (924667) � MS07-013 - Vulnerability in Microsoft RichEdit Could Allow Remote Code Execution (918118) Support: Technical support is available from Microsoft Product Support Services at 1-866-PC SAFETY (1-866-727-2338). There is no charge for support calls associated with security updates. International customers can get support from their local Microsoft subsidiaries. Phone numbers for international support can be found at: http://support.microsoft.com/common/international.aspx � 2007 Microsoft Corporation. All rights reserved.

Quote:

http://www.microsoft.com/technet/security/bulletin/ms07-Feb.mspx

An end-user version of this information is available at http://www.microsoft.com/athome/security/u...00702.mspx

6 Critical Bulletins:

� MS07-008 - Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution (928843)

� MS07-009 - Vulnerability in Microsoft Data Access Components Could Allow Remote Code Execution(927779)

� MS07-010 - Vulnerability in Microsoft Malware Protection Engine Could Allow Remote Code Execution (932135)

[ MS07-010 applies to Windows Defender, including Vista, and Windows Live OneCare]� MS07-014 - Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (929434)

� MS07-015 - Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (932554)

� MS07-016 - Cumulative Security Update for Internet Explorer (928090)

not

6 Important Bulletins:

� MS07-005 - Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (923723)

� MS07-006 - Vulnerability in Windows Shell Could Allow Elevation of Privilege (928255)

� MS07-007 - Vulnerability in Windows Image Acquisition Service Could Allow Elevation of Privilege (927802)

� MS07-011 - Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution (926436)

� MS07-012 - Vulnerability in Microsoft MFC Could Allow Remote Code Execution (924667)

� MS07-013 - Vulnerability in Microsoft RichEdit Could Allow Remote Code Execution (918118)

Support:

Technical support is available from Microsoft Product Support Services at 1-866-PC SAFETY (1-866-727-2338). There is no charge for support calls associated with security updates. International customers can get support from their local Microsoft subsidiaries. Phone numbers for international support can be found at: http://support.microsoft.com/common/international.aspx

� 2007 Microsoft Corporation. All rights reserved.

_________________
^ Credit to all original scanners/cappers and that whole deal.

Virus and Antivirus Information :: Mozilla Firefox Firebug Extension "console.log()"

Author: dietnkzg
Subject: Mozilla Firefox Firebug Extension "console.log()"
Posted: Mon Jun 04, 2007 6:59 pm (GMT -4)
Topic Replies: 0

Quote:
Two vulnerabilities have been reported in the Firebug extension for Mozilla Firefox, which can be exploited by malicious people to compromise a vulnerable system. 1) Input passed to the "console.log()" function is not properly sanitised and can be exploited to e.g. execute arbitrary script code within the "chrome:" context by tricking a user into visiting a malicious website. 2) Results of the "toString" method when processing function objects are not properly sanitised before being used. This can be exploited to e.g. execute arbitrary script code within the "chrome:" context by overriding the "toString" method with a specially crafted function. http://secunia.com/advisories/24743/

Quote:

Two vulnerabilities have been reported in the Firebug extension for Mozilla Firefox, which can be exploited by malicious people to compromise a vulnerable system.

1) Input passed to the "console.log()" function is not properly sanitised and can be exploited to e.g. execute arbitrary script code within the "chrome:" context by tricking a user into visiting a malicious website.

2) Results of the "toString" method when processing function objects are not properly sanitised before being used. This can be exploited to e.g. execute arbitrary script code within the "chrome:" context by overriding the "toString" method with a specially crafted function.

http://secunia.com/advisories/24743/

_________________
^ Credit to all original scanners/cappers and that whole deal.

Virus and Antivirus Information :: Windows Vista CSRSS Privilege Escalation Vulnerability

Author: dietnkzg
Subject: Windows Vista CSRSS Privilege Escalation Vulnerability
Posted: Mon Jun 04, 2007 6:58 pm (GMT -4)
Topic Replies: 0

Quote:
eEye Digital Security has reported a vulnerability in Windows Vista, which can be exploited by malicious, local users to gain escalated privileges. The vulnerability is caused due to incorrect marshaling of system resources in the Client/Server Run-time Subsystem (CSRSS) when handling connections during the startup and stopping of processes. This can be exploited to execute arbitrary code with SYSTEM privileges by establishing and closing multiple connections to the subsystem's "ApiPort". http://secunia.com/advisories/24823/

Quote:

eEye Digital Security has reported a vulnerability in Windows Vista, which can be exploited by malicious, local users to gain escalated privileges.

The vulnerability is caused due to incorrect marshaling of system resources in the Client/Server Run-time Subsystem (CSRSS) when handling connections during the startup and stopping of processes. This can be exploited to execute arbitrary code with SYSTEM privileges by establishing and closing multiple connections to the subsystem's "ApiPort".

http://secunia.com/advisories/24823/

_________________
^ Credit to all original scanners/cappers and that whole deal.

Virus and Antivirus Information :: Opera Unspecified Flash Player Plug-In Vulnerability

Author: dietnkzg
Subject: Opera Unspecified Flash Player Plug-In Vulnerability
Posted: Mon Jun 04, 2007 6:57 pm (GMT -4)
Topic Replies: 0

Quote:
A vulnerability with an unknown impact has been reported in Opera. The vulnerability is caused due to an unspecified error when using the Adobe Flash Player plug-in. The vulnerability is reported in Opera versions prior to 9.20 running on Linux, Solaris, or FreeBSD and using the Adobe Flash Player version 7 or 9.

http://secunia.com/advisories/24877/
_________________
^ Credit to all original scanners/cappers and that whole deal.