KB958690
This security update resolves several privately reported vulnerabilities in the Windows kernel. The most serious vulnerability could allow remote code execution if a user viewed a specially crafted EMF or WMF image file from an affected system. The security update addresses the vulnerabilities by validating input passed from user mode through the kernel component of GDI, correcting the way that the kernel validates handles, and changing the way that the Windows kernel handles specially crafted invalid pointers.
Users prevail: Microsoft changes Windows 7 UAC control panel behavior to address security flaw – istartedsomething
Long, the guy who made everyone aware of the UAC problem in Windows 7, says the ‘fix’ is better than his suggestion, and is happy for the change. More »
Engineering Windows 7 : UAC Feedback and Follow-Up
Microsoft reverses course and decides to ‘fix’ UAC in the RC version so it will be less vulnerable. Good job! More »
Engineering Windows 7 : Update on UAC
An explanation of why the recently publicized ‘vulnerabilities’ aren’t really considered vulnerabilities. This is primarily due to the malware not being able to get onto the machine without the users consent. More »
KB960714
This security update resolves a publicly disclosed vulnerability. The vulnerability could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. The security update addresses the vulnerability by modifying the way Internet Explorer validates data binding parameters and handles the error resulting in the exploitable condition. More »
KB958644
This security update resolves a privately reported vulnerability in the Server service. This is a remote code execution vulnerability. An attacker who successfully exploited this vulnerability could take complete control of an affected system remotely. The vulnerability could allow remote code execution if an affected system received a specially crafted RPC request. It is possible that this vulnerability could be used in the crafting of a wormable exploit. Firewall best practices and standard default firewall configurations can help protect network resources from attacks that originate outside the enterprise perimeter. If an exploit attempt fails, this could also lead to a crash in Svchost.exe. If the crash in Svchost.exe occurs, the Server service will be affected. The Server service provides file, print, and named pipe sharing over the network. The vulnerability is caused by the Server service, which does not correctly handle specially crafted RPC requests. The security update addresses the vulnerability by correcting the way that the Server service handles RPC requests. More »
 | |
Information that makes life easier when it comes to installing, managing, and using Windows 7. | |
More Options ...
Categories
Tag Cloud
Blog RSS
Comments RSS
Last 50 Posts 
Back
Void 
Life 
Earth 
Wind 
Water 
Fire