|
Security News |
-
Psychology and security
(Tue 27, Oct 2009)
Professor Ross Anderson of the Computing Laboratory at Cambridge University has put together an excellent web page on psychology and security. The page contains links to a wide range of on-line resour...
-
Cookie Monster
(Mon 26, Oct 2009)
Cookies are a part of everyday web usage that most people take for granted (indeed many users are blissfully unaware of their existence). Cookies are used to provide a persistent record of your intera...
-
MS09-060 - Critical: Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution (973965)
(Tue 13, Oct 2009)
Bulletin Severity Rating:Critical - This security update resolves several privately reported vulnerabilities in ActiveX Controls for Microsoft Office that were compiled with a vulnerable version of Microsoft Active Template Library (ATL). The vulnerabilities could allow remote code execution if a user loaded a specially crafted component or control. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user r
-
MS09-052 - Critical: Vulnerability in Windows Media Player Could Allow Remote Code Execution (974112)
(Tue 13, Oct 2009)
Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in Windows Media Player. The vulnerability could allow remote code execution if a specially crafted ASF file is played using Microsoft Windows Media Player 6.4. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with ad
-
MS09-050 - Critical: Vulnerabilities in SMBv2 Could Allow Remote Code Execution (975517)
(Tue 13, Oct 2009)
Bulletin Severity Rating:Critical - This security update resolves one publicly disclosed and two privately reported vulnerabilities in Server Message Block Version 2 (SMBv2). The most severe of the vulnerabilities could allow remote code execution if an attacker sent a specially crafted SMB packet to a computer running the Server service. Firewall best practices and standard default firewall configurations can help protect networks from attacks that originate from outside the enterprise perimete
|