Microsoft patched a new vulnerability in Vista
Microsoft has just fixed another serious flaw in Vista that has emerged since the end of Christmas. This delay is similar to the process of handling mouse pointer vulnerabilities, which became the focus of security in April 2007 after helping hackers break into the system.
The new vulnerability concerns how the Client / Server Run-time Subsystem (CSRSS) of the operating system handles error messages. In addition to Visa, this vulnerability affects both Windows 2000 SP4 and Windows XP.
According to Microsoft, this vulnerability is not as serious as a mouse-hole vulnerability because users need to perform a series of malicious tasks on the website. The vulnerability could allow hackers to execute binary code on the affected system.
In addition to the latest patch for Vista, Microsoft also fixes a critical vulnerability in Agent technology for Windows 2000 SP4 and Windows XP SP2. Hackers can exploit this security flaw through IE6 if users access a malicious website. Vista and IE7 are not affected by this vulnerability.
Below is information about some of the most recently patched vulnerabilities:
Photo toxic
Adobe's Photoshop CS2 and CS3 applications also contain serious vulnerabilities that could allow an attacker to take control of the victim's computer if they use these programs to bitmap images (.bmp, .dib tails). , or .rle) has been edited by hackers (install malicious code). According to security firm Secunia and France's Emergency Security Response Team (FSIRT), at least one code exploiting this vulnerability appears on the Internet. Adobe has not yet developed a patch for this vulnerability, so users need to be careful when opening e-mails or downloading unidentified images.
Meanwhile, an independent security researcher won a $ 10,000 prize in the Mac OS X operating system hack. He exploited a new vulnerability in Apple's QuickTime to break into the Mac. OS X. Apple has developed and released a patch for this vulnerability (affecting Windows) 11 days after it was discovered. The QuickTime 7.1.6 upgrade has also been fixed to "be immune" to the new vulnerability.
Vista conflicts with the iPod
Microsoft has also fixed a bug in Vista so that the operating system does not negatively impact the music player when users use the "Safely Remove Hardware" function to disconnect the iPod. Although Microsoft does not provide detailed information on how the vulnerability affects the iPod, it recommends that users use the iTunes feature to restore music on the iPod if something goes wrong. At the same time, Microsoft advises users to always use iTunes to disconnect the iPod from the computer.
Yahoo Messenger generates an error
This instant messaging application has a "problematic" ActiveX driver that puts users at risk when they view a malicious website. IE7 and Vista are still affected by this vulnerability, although the level is somewhat mild. According to Yahoo, any version of YM 8.x before March 13, 2007 will be affected. Users should update to the latest YM upgrade.
Apple error series
Apple patched a total of 25 vulnerabilities in the OS X operating system after a month since the company fixed 45 other vulnerabilities.
- AOL patched the image search vulnerability
- Microsoft investigated the vulnerability in Windows Vista
- 'Microsoft does not want consumers to install Vista'
- Hacker sold 'Zero-day vulnerability' in Vista
- $ 12,000 for a vulnerability in Vista or IE7
- A new vulnerability has appeared in Vista
- Microsoft patched zero-day errors for Vista
- Microsoft patched the vulnerability in IE
- Code to exploit VML vulnerability
- Microsoft Word vulnerability becomes
- Microsoft allows access to 64-bit Windows Vista
- Microsoft: does not delay Vista release time