Microsoft issues an advisory on a Windows security vulnerability after exploit code went public. The bug is not under attack, according to the company. – Exploit code for a new Windows security bug has gone public,
prompting Microsoft today to issue an advisory to warn users.
So far, no attacks taking advantage of the bug have been seen in the
wild, Microsoft reported. The vulnerability lies in the Windows Graphic
Rendering Engine and, accord…
Microsoft is patching a Windows vulnerability being targeted by attackers. The zero-day bug was disclosed publicly this month. – Microsoft is releasing an out-of-band patch for a Windows security
vulnerability that attackers have been targeting for the past few weeks.
The bug a vulnerability in the Windows shell component that attackers have
been exploiting via malicious .LNK files has increasingly
become the target of ex…
Microsoft has issued an advisory about a security vulnerability being used by a Trojan to infect computers. According to security pros, the Trojan is spreading through USB devices. – Microsoft issued an advisory today to address a zero-day vulnerability linked to a Trojan spreading through infected USB devices.
According to Microsoft, the vulnerability at the center of the
reports exists because Windows incorrectly parses shortcuts in a way
that allows malicious code may be …
A security researcher has uncovered a way to abuse the functionality of PDF file viewers to launch attacks without exploiting an actual software vulnerability. Adobe says a warning generated by such an attempt is enough to protect users.
– A security researcher said he has found a new way to exploit Adobe Reader
and other PDF-viewing software without using an actual security vulnerability.
The researcher, Didier Stevens, has developed a
proof-of-concept PDF file that launches an embedded executable. According
to Stevens, PDF vie…
Mozilla fixed a security vulnerability in its Firefox browser ahead of schedule after the German government advised the public to stop using the browser.
–
Mozilla has swatted a critical bug
in its Firefox browser ahead of schedule.
The flaw, which was discovered by
Intevydis founder Evgeny Legerov, had caused enough of a stir to prompt Germanys BürgerCERT to advise users to ditch
the browser until it was fixed.
According to Mozilla, the Web Ope…
Researchers at Core Security Technologies are warning of a vulnerability affecting versions of Microsoft’s Virtual PC software that can be used to bypass several Windows security mechanisms.
– Researchers at Core
Security Technologies issued
an advisory March 16 about a new security vulnerability that leaves users
of Microsofts Virtual PC software open to attack.
According to Core
Security, certain versions of the Virtual PC hypervisor contain a
vulnerability that allows attackers…
Adobe Systems plans to release a patch for a zero-day vulnerability in Adobe Reader and Acrobat that has come under attack. This is the second critical security vulnerability Adobe has promised users it will fix in the coming weeks.
– Adobe Systems is prepping a patch for a zero-day bug
affecting its Reader and Acrobat software for release by Jan.
12.
The
vulnerability is considered critical by Adobe and impacts the latest
versions of Adobe Reader and Acrobat for Windows, Macintosh and Unix
systems. Earlier editions a…
Microsoft releases an advisory to help users concerned about a new zero-day vulnerability affecting Windows 7 and Windows Server 2008 R2. The bug was made public last week after Patch Tuesday.
– Microsoft released
a security advisory to help users mitigate a bug affecting Windows 7 and
Windows Server 2008 Release 2.
The security vulnerability
was reported
last week by researcher Laurent Gaffie and can be exploited to remotely
trigger a denial-of-service condition in Windows 7 and Win…
Mozilla opted to block Microsoft’s .NET Framework Assistant add-on for users of Mozilla’s Firefox browser Oct. 16 due to security concerns. Now, after receiving additional information from Microsoft, the Mozilla re-enables the add-on.
– Mozilla has backtracked on its move to disable a Microsoft add-on tied to a
security vulnerability.
After placing the Microsoft
.NET Framework Assistant on a block list due to concerns about a Microsoft
vulnerability (CVE-2529), Mozilla said Oct. 18 it will re-enable the . NET
Framework Assista…
Two security researchers, Charlie Miller and Collin Mulliner, have discovered a serious security vulnerability on the iPhone and will present their findings later today at the Black Hat convention in Las Vegas.
Meanwhile, they have already demonstrated this flaw in action to CNET’s Elinor Mills before the conference.
Here’s what happened: While I was talking on the [...]
