Category Archives: Microsoft

Microsoft Says ASP.Net Flaw Being Exploited in Limited Attacks

By Ceptera | Published: 09/23/2010

Microsoft has updated its advisory about an unpatched vulnerability in ASP.Net to note that the flaw is being actively exploited in limited attacks to hijack encrypted web sessions. The flaw is present in all versions of Microsoft’s ASP.Net web application framework and can be exploited to access web applications with full Administrator rights and access [...]

Also posted in Exploits, Vulnerability | Comments closed

MSFT Patches Eleven Vulnerabilities

By Ceptera | Published: 09/19/2010

Microsoft’s September security update addresses 11 vulnerabilities in Microsoft Windows, Microsoft Office and Microsoft Internet Information Services (IIS). One of the critical vulnerabilities (MS10-061) fixed is a zero-day the Print Spooler Service that is part of the Stuxnet arsenal. Other critical flaws addressed by the patches involve the MPEG-4 codec (MS10-062), the Unicode script processor, [...]

Also posted in Internet Explorer, Vulnerability, Windows | Comments closed

Apple Patches QuickTime

By Ceptera | Published: 09/19/2010

Apple has issued a patch for a critical flaw in QuickTime that could be exploited to hijack Microsoft Windows XP, Vista or Windows 7 running Internet Explorer with the QuickTime ActiveX control. The company was notified of the vulnerability in June through a bug bounty program. The update also addresses the DLL load hijacking bug. [...]

Also posted in Apple, Internet Explorer | Comments closed

Unpatched Bug in Windows XP Gives Hackers Control

By Ceptera | Published: 07/02/2010

Hi-tech criminals are “escalating” attacks on an unpatched bug in the Windows XP help and support system. Microsoft said it had seen more than 10,000 machines hit by the attack that, so far, it has not found a fix for. Windows PCs falling victim will have control of that machine handed over to attackers. Microsoft [...]

Also posted in Windows XP | Comments closed