Microsoft drops SharePoint fix
,----[ Quote ]
| The update was to fix an elevation of privilege flaw, which had been
| rated "important" by Microsoft. This type of flaw can be used to give
| attackers access to Windows resources that would otherwise be blocked off.
`----
http://news.yahoo.com/s/infoworld/20070908/tc_infoworld/91691
Coming Tuesday: 5 Microsoft patches
,----[ Quote ]
| Accompanying the above patches will be an update to the Microsoft Windows
| Malicious Software Removal Tool, and a single high-priority, non-security
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
| update for an unidentified product.
`----
http://www.theregister.co.uk/2007/09/07/microsoft_announces_5_patches_for_september/
Watch this!
My first Linux virus?
,----[ Quote ]
| Long story short: I have dual boot (which I never use but my son plays
| sometimes) and my Linux home directory is mounted using an ext3 driver for
| Windows. Microsoft asked me to install this Malicious Software Removal Tool
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
| which I denied 10 times asking every bloody time NEVER TO INSTALL IT IN THE
| FUTURE until the 11th was my son that wasn’t even asked but turned it off as
| he always do and Microsoft stealthily installed this piece of crap in my
| computer.
|
| That’s enough, I’ll spend a fiver and buy a cross-over software to run my
| son’s games on Linux and remove this crap out of my computer once and for
| all.
`----
http://systemcall.org/2007/09/07/my-first-linux-virus/
Related:
Microsoft reacts to kernel hacks, defends Vista
,----[ Quote ]
| Microsoft wasn't much help in figuring out exactly what was beefed up by the
| PatchGuard update; the accompanying information was extremely vague. The
| MSRC's release manager, Simon Conant, was just as tight-lipped in a posting
| to the center's blog. "The update adds additional checks to Kernel Patch
| Protection for increased reliability, performance, and security," Conant
| said.
`----
http://www.infoworld.com/article/07/08/15/Microsoft-reacts-to-kernel-hacks_1.html?source=rss&url=www.infoworld.com%2Farticle%2F07%2F08%2F15%2FMicrosoft-reacts-to-kernel-hacks_1.html
Spin, spin, spin the security flaw. They called it what it ain't. Not the first
time though...
Skeletons in Microsoft’s Patch Day closet
,----[ Quote ]
| This is the first time I’ve seen Microsoft prominently admit to silently
| fixing vulnerabilities in its bulletins — a controversial practice that
| effectively reduces the number of publicly documented bug fixes (for those
| keeping count) and affects patch management/deployment decisions.
`----
http://blogs.zdnet.com/security/?p=316
Beware of undisclosed Microsoft patches
,----[ Quote ]
| Forget for a moment whether Microsoft is throwing off patch counts
| that Microsoft brass use to compare its security record with those
| of its competitors. What do you think of Redmond’s silent patching
| practice?
`----
http://blogs.zdnet.com/microsoft/?p=527
Microsoft : Arrogance leads to Vulnerability
,----[ Quote ]
| Chatting with the Microsoft senior sales people, I was struck by
| their incredible arrogance. They know the company?s products are good,
| but they have no qualms whatsoever about charging top dollar as a
| result.
|
| It reminds us how Microsoft used to behave when it comes to their
| products' security records. IE5 and 6 were nothing short of being
| proper Swiss Cheese with loads of holes in them but hey, they had 95%
| of the browser market at that time and couldn't care less.
`----
http://securityblog.itproportal.com/?p=514
|
|
