Discuss EVDO PC Cards, ExpressCards, EVDO USB, PDAs, Phones, Coverage and Mobile Broadband Cards.
Discuss Verizon and Sprint Coverage. CradlePoint CTR350 / PHS300/ MBR1000 & Kyocera KR1 / KR2 & LinkSys WRT54G3G-ST Forums!
|
EVDOforums.com
Discussion forum for EVDO users
|
Our sites Include:
EVDO Info :: EVDO Forums :: EVDO Maps :: EVDO Blog :: 3Gstore.com
To purchase your EVDO Card / Antenna / Amplifier / Router from the EVDO Experts, just contact us!
| View previous topic :: View next topic |
| Author |
Message |
Michael
Site Admin
Joined: 13 Jan 2005
Posts: 5027
Location: Cary, IL
|
 Posted: Mon Jan 02, 2006 10:29 pm Post subject: Microsoft Security Advisory (912840) - JPG Virus |
 |
|
This isn't really EVDO related, BUT this could be a big problem for many.
| Quote: | Windows PCs face ‘huge’ virus threat
By Kevin Allison in San Francisco
Published: January 2 2006 18:18 | Last updated: January 2 2006 22:19
Computer security experts were grappling with the threat of a newweakness in Microsoft’s Windows operating system that could put hundreds of millions of PCs at risk of infection by spyware or viruses.
The news marks the latest security setback for Microsoft, the world’s biggest software company, whose Windows operating system is a favourite target for hackers.
“The potential [security threat] is huge,” said Mikko Hyppönen, chief research officer at F-Secure, an antivirus company. “It’s probably bigger than for any other vulnerability we’ve seen. Any version of Windows is vulnerable right now.”
The flaw, which allows hackers to infect computers using programs maliciously inserted into seemingly innocuous image files, was first discovered last week. But the potential for damaging attacks increased dramatically at the weekend after a group of computer hackers published the source code they used to exploit it. Unlike most attacks, which require victims to download or execute a suspect file, the new vulnerability makes it possible for users to infect their computers with spyware or a virus simply by viewing a web page, e-mail or instant message that contains a contaminated image.
“We haven’t seen anything that bad yet, but multiple individuals and groups are exploiting this vulnerability,” Mr Hyppönen said. He said that every Windows system shipped since 1990 contained the flaw.
Microsoft said in a security bulletin on its website that it was aware that the vulnerability was being actively exploited. But by early yesterday, it had not yet released an official patch to correct the flaw. “We are working closely with our antivirus partners and aiding law enforcement in its investigation,” the company said. In the meantime, Microsoft said it was urging customers to be careful opening e-mail or following web links from untrusted sources.
Meanwhile, some security experts were urging system administrators to take the unusual step of installing an unofficial patch created at the weekend by Ilfak Guilfanov , a Russian computer programmer.
Concerns remain that without an official patch, many corporate information technology systems could remain vulnerable as employees trickle back to work after the holiday weekend.
“We’ve received many e-mails from people saying that no one in a corporate environment will find using an unofficial patch acceptable,” wrote Tom Liston, a researcher at the Internet Storm Center, an antivirus research group. Both ISC and F-Secure have endorsed the unofficial fix.
Microsoft routinely identifies or receives reports of security weaknesses but most such vulnerabilities are limited to a particular version of the Windows operating system or other piece of Microsoft software. In recent weeks, the company has been touting its progress in combating security threats.
The company could not be reached on Monday for comment |
http://www.microsoft.com/technet/security/advisory/912840.mspx
_________________
EVDO :: EVDO News :: EVDO Antennas :: Buy Verizon :: Buy Sprint :: EVDO Amplifier |
|
| Back to top |
|
 |
SL10
EVDO Junkie
Joined: 18 Sep 2005
Posts: 391
Location: Denver, Colorado
|
| Posted: Mon Jan 02, 2006 11:07 pm Post subject: |
|
|
I have Webviewer on my phone. So, I am not worry much. I been using my laptop less lately.
_________________
EVDO Addict. |
|
| Back to top |
|
|
SL10
EVDO Junkie
Joined: 18 Sep 2005
Posts: 391
Location: Denver, Colorado
|
|
| Back to top |
|
|
SL10
EVDO Junkie
Joined: 18 Sep 2005
Posts: 391
Location: Denver, Colorado
|
| Posted: Wed Jan 04, 2006 7:10 pm Post subject: Microsoft Set To Release Patch for Serious Windows Flaw. |
|
|
Microsoft Set To Release Patch for Serious Windows Flaw
Elizabeth Millard, newsfactor.com Wed Jan 4, 4:03 PM ET
Following the discovery of a particularly alarming flaw in its Windows operating system, Microsoft plans to have a patch ready for the next "Patch Tuesday," this one falling on January 10.
Patch Tuesday has become familiar to many I.T. administrators as the monthly cycle of security updates from Microsoft, with many admins setting aside time on that day to roll out the necessary patches for systems on their networks.
This go-round will be especially important if Microsoft does create a patch for the flaw, which can be exploited easily by malicious attackers who can use a malformed image file to compromise remote systems.
Redmond has noted that some people already have been trying to take advantage of the flaw, but that, so far, reports about infections are limited.
Image Problem
The vulnerability is caused by an error in the handling of Windows Metafile files, which are distinguished by a .wmf suffix. The flaw allows arbitrary functions to be executed on systems when they fail to render the file properly.
Because the problem is related to images, it is possible that a user could be tricked easily into opening a malicious .wmf file in Windows Picture and Fax Viewer. The user also could be put at risk by previewing a malicious file simply by opening a folder that contains it.
Security firm Secunia has said that the vulnerability also might be exploited automatically when a user visits a malicious Web site using Internet Explorer.
Quick Fix
Microsoft has created the patch already, but the company is testing it before releasing it to the general public. Issuing a patch so quickly after discovery of the flaw is important for this particular vulnerability, which has been rated "extremely critical" by Secunia.
"We don't have an 'extremely critical' ranking very often," said Secunia chief technology officer Thomas Kristensen. "We use the rating sparingly so people will know when the danger is very serious."
The ranking is reserved for flaws, like the recent Windows problem, that leave computers especially vulnerable and open to attack. Kristensen predicted that most administrators will be particularly ready for this Patch Tuesday, given the severity of the flaw.
_________________
EVDO Addict. |
|
| Back to top |
|
|
Michael
Site Admin
Joined: 13 Jan 2005
Posts: 5027
Location: Cary, IL
|
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
Sprint Rev A USB: Compass 597
Sprint Rev A ExpressCard: Merlin EX720
Purchase an V740 Rev A ExpressCard
Sprint U727
CTR350 Router
CradlePoint PHS300
Purchase a MBR1000
Purchase an EVDO Booster Antenna
Purchase a LinkSys 3G Router
Purchase an EVDO Amplifier
Your Mac EVDO Experts
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
