May 18, 2012

Posts Comments

You are here: Home / Archives for Microsoft

Internet Explorer Users Run Windows Updates – VU#180513 KB #972890 – ActiveX control

July 15, 2009 By Leave a Comment

Update 7/15/2009 – the link to “Disable” below will now take you to a page with a link to the security update for this issue. Not long ago an exploitable flaw with ActiveX control for streaming video was discovered and is being exploited. The flaw itself has not been patched and there are only work-arounds that involve disabling the controls. For this reason we are advising the following until a patch is available:

1. Use an alternative browser such as Mozilla Firefox.
2. Disable the vulnerable Active X controls.
3. Be extremely cautious about what links are clicked/web pages are visited. (Only recommend to very experienced users)

If you have questions about this vulnerability feel free to contact us.

Popularity: 1% [?]

Filed Under: Security, Technology Tagged With: , , , , , ,

KB910721 Spam and Virus

June 24, 2009 By Leave a Comment

Just yesterday I answered a question on LinkedIn related to new scams that are circulating on the Internet. Not less than 24 hours later I saw something that was new, creative and likely to cause some damage as it actually harbors the payload Win32/Kryptik.TL – a Trojan Horse Virus that as of 6/24/2009 is not circulating much. While the format they sent has the Microsoft look and feel (Top Image), it does not duplicate the email format of Microsoft notices (Bottom Image).

KB910721_Large
ActualMicrosoftSecurityBulletin_Large

Popularity: 3% [?]

Filed Under: Security, Technology Tagged With: , , , , ,

IE7 and Adobe Security Alert

October 24, 2007 By Leave a Comment

We have received a notice from US-CERT about a security flaw involving Internet Explorer 7 and Adobe Acrobat. The flaw only affects windows based machines that have Internet Explorer 7 and Adobe Acrobat products. If you have both of these products installed your system could be compromised if you opened a pdf file that was crafted to exploit this flaw. This flaw has been labelled critical, and we are prioritizing addressing this flaw with our customers.

Who should be concerned?

  1. Anyone with both Internet Explorer version 7 and Adobe Acrobat installed.
  2. Anyone using Adobe Acrobat products version 8.1 or earlier in conjunction with Internet Explorer 7.

If I meet the criteria that makes me vulnerable, what should I do?

  1. You should avoid opening PDF files from untrusted sources.
  2. You should apply an update for your Adobe Acrobat as soon as possible.
  3. If unable to install an update, you should disable the mailto: URI handler on your Adobe Product (See Adobe Security Bulletin APSB07-18 for details on how to do this).

Where can I get more information about this problem?

Popularity: 1% [?]

Filed Under: Security, Technology Tagged With: , , , , , ,

3 Critical Updates for Microsoft Products

January 9, 2007 By Leave a Comment

There are some critical patches available today to address bugs in Internet Explorer (nearly all versions), Outlook (numerous versions) and Excel (numerous version). We recommend you take these precautions for the coming few days even if you are able to install the update.

  • Exercise caution with your web access habits.
  • Do not open any attachments in Outlook that you are not expecting.
  • Delete any suspicious emails you receive.

These updates will be available immediately from microsoft, to download them manually:

Microsoft Windows Update

We will also push these updates out to customers machines that have requested in advanced that we do so. If you would like to see to it that this is done for your systems please contact us. Otherwise advise your users that when prompted by windows update to install critical updates to do so. These issues are significant and could cause extensive problems if they were to be exploited on one or more of your systems.

It is likely that you will not actually be prompted to install these updates until Wednesday January 9th as most windows update servers synchronize early in the morning. Running a manually synchronization is not adding the updates as of the authoring of this notice.

If you’d like to read more about this:

Microsoft’s Security Bulletin

Or:

Advisories for Week of January 8th @ Cert

Related Posts Plugin for WordPress, Blogger...

Popularity: 1% [?]

Filed Under: Security Tagged With: , , , ,
Newer Posts »