-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
China Gets A Peek At Microsoft Source Code
,----[ Quote ]
| Microsoft is giving the Chinese government
| access to the source code for Windows 7 and
| other key products in an effort to head off
| any concerns about the security capabilities
| of Microsoft products.
`----
http://www.informationweek.com/news/windows/security/showArticle.jhtml?articleID=225400063&subSection=Securityc
After Buggy Patch, Criminals Exploit Windows Flaw
,----[ Quote ]
| Online criminals are scanning the Internet
| and attacking Windows 2000 machines that
| haven't had a recent Windows Media Service
| patch installed, Symantec said Wednesday.
`----
http://www.pcworld.com/businesscenter/article/197811/after_buggy_patch_criminals_exploit_windows_flaw.html
Silent Security Fixes Are A Calculated Risk
,----[ Quote ]
| Recently, the folks at Core Security noticed
| that Microsoft has been delivering more fixes
| during patch day than they have documented in
| their security bulletins. It's great that
| Microsoft is fixing more security issues, but
| when they're not documented the IT
| department's job could become even more
| challenging.
`----
http://www.informationweek.com/blog/main/archives/2010/05/silent_security.html
Recent:
Microsoft Fixes Critical Visual Basic and Outlook Express Flaws
,----[ Quote ]
| Microsoft, the software giant based in
| Redmond (USA), released two critical
| security updates on May 11, 2010, patching
| vulnerabilities within its e-mail
| applications as well as the Visual Basic
| for Applications designed to implement
| software programming language built into
| Microsoft Office.
`----
http://www.spamfighter.com/News-14432-Microsoft-Fixes-Critical-Visual-Basic-and-Outlook-Express-Flaws.htm
Software Liabilities in the UK
,----[ Quote ]
| The British High Court ruled that a
| software vendor's EULA -- which denied all
| liability for poor software -- was not
| reasonable.
`----
http://www.schneier.com/blog/archives/2010/05/software_liabil_1.html
New Exploit Resists Windows Security Software
,----[ Quote ]
| "This is definitely very serious," said
| Alfred Huger, vice president of
| engineering at Immunet, a Palo Alto,
| Calif.-based antivirus company. "Probably
| any security product running on Windows XP
| can be exploited this way." Huger added
| that Immunet's desktop client is not
| vulnerable to the argument-switch attacks
| because the company's software uses a
| different method to hook into the Windows
| kernel.
|
| According to Matousec, nearly three-dozen
| Windows desktop security titles, including
| ones from Symantec, McAfee, Trend Micro,
| BitDefender, Sophos and others, can be
| exploited using the argument-switch
| tactic. Matousec said it had tested the
| technique on Windows XP SP3 and Vista SP1
| on 32-bit machines.
`----
http://www.pcworld.com/article/196392/new_exploit_resists_windows_security_software.html?tk=rss_news
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAkwNeugACgkQU4xAY3RXLo7AwgCfVhu2TiKb/sQebqfAF+exHbdT
KEkAnia/ms/HZDoeZLEVNWajf52Lwoi0
=EVWE
-----END PGP SIGNATURE-----
|
|