patch

Thu
19
Aug
Dennis Faas's picture

Adobe Emergency Patch to be Released Later Today

Adobe will today release a patch for a critical security vulnerability in its popular Reader and Acrobat software. The issue was first identified at the Black Hat security conference in July, and has since remained without a fix. Adobe noted in ... early August that the patch would be available this week, well ahead of its next scheduled security release (based on a quarterly timetable) in mid-October. Reader, Acrobat for Windows and Mac Affected According to an advisory from Adobe, the patch is meant to fix a number of critical issues affecting Reader 9.3.3 for Windows, Unix and Mac as well as ... (view more)

Fri
13
Aug
Dennis Faas's picture

Microsoft Says Latest Bugs Genuine, But No Need To Panic

Microsoft has confirmed it's investigating yet another large-scale bug affecting all supported editions of Windows. At the same time, it's ruled out issuing an emergency patch for the kernel-related issue that emerged just last week. On Tuesday, ... Microsoft issued a record-breaking monthly Patch Tuesday update containing a record 14 security bulletins. When that was announced, it looked as if it would be network administrators who'd be in for a particularly busy time, while Microsoft security staff could at least have some breathing room. That turned out not to be the case. Bogus Color Data ... (view more)

Mon
09
Aug
Dennis Faas's picture

'Million Dollar Flaw' the First Test of XP Phaseout, say Critics

Microsoft has faced the first major test of its policy to phase out support for some versions of Windows XP. A major security patch last week was only available to users who had upgraded to the third and final Service Pack (SP3). As previously ... reported, Microsoft issued an out-of-cycle update (known more casually as an emergency pack) to patch a Windows shortcut flaw. The issue was particularly serious because it meant machines could be hacked if a user opened a folder containing the infected shortcut file, even if they didn't click on the shortcut itself. The shortcut flaw was such a clear ... (view more)

Thu
22
Jul
Dennis Faas's picture

Microsoft Issues Temporary Fix for Shortcut Flaw

Microsoft has issued an automated workaround for a Windows shortcut flaw that security researchers yesterday flagged with a yellow alert. The workaround is a temporary measure while the company works furiously to provide a more permanent patch. The ... Windows shortcut flaw affects files with the .LNK extension (otherwise known as "shortcut files"). The zero-day vulnerability could allow cyber criminals to seize control of victim PCs. A similar and more public version of the exploit affected Siemens industrial automated systems just last week. Temporary Fix Alters Icons, Leaving them ... (view more)

Fri
07
May
Dennis Faas's picture

MS Readies Light Patch Tuesday, but Omission Raises Eyebrows

Just five weeks after it was forced to release an emergency patch for a zero-day flaw in Internet Explorer (IE), Microsoft may again have to consider yet another out-of-schedule fix for an unaddressed problem with its software. In the meantime, the ... upcoming May Patch Tuesday (due next week) addresses just two "critical" issues. Microsoft typically releases a batch of fixes for various software issues and security threats affecting its products on the second Tuesday of every month. In past months, the number of fixes offered have ranged from high to low: in March, the number of vulnerabilities ... (view more)

Wed
10
Feb
Dennis Faas's picture

MS Warns: Critical DirectShow Flaw Could Poison Windows

It's still a few days till Valentine's, but already Microsoft has provided its February security gift for Windows users. In yesterday's Patch Tuesday release, the Redmond-based software firm has unveiled fixes for 26 vulnerabilities, almost ... one-fifth of which are marked "critical". Critical Fixes for Windows, MS Office Suite The recent patches address flaws in Microsoft's Windows operating system and its Office software suite. Five of the vulnerabilities have been ear-marked "critical," Microsoft's highest threat rating, and another seven "important". One is considered "moderate". Across the ... (view more)

Wed
20
Jan
Dennis Faas's picture

MS Warns: Internet Explorer Vulnerable; Offers Tips to Stay Safe

Microsoft announced yesterday that it was working on a special emergency patch to prevent the spread of an Internet Explorer zero-day flaw in its Internet Explorer browser that allowed hackers to breach the defenses of Google, Adobe, and about 32 ... other companies. The attack is said to be "the most sophisticated cyber attack... seen in years," according to tech security firm McAfee . Now, Microsoft is offering recommendations for home and business users trying to keep themselves protected until the Internet Explorer patch is widely available. Older Versions of IE, Windows Most ... (view more)

Fri
09
Oct
Dennis Faas's picture

Next MS Patch Tuesday: 34 Fixes, 8 Critical, Most Yet

The next wave of Patch Tuesday remedies will see a total of thirteen bug patches shipped out for immediate repairs. Among the thirteen, Microsoft ranked eight of the patches marked "critical." (Source: theregister.co.uk ) The purpose of the patches ... is to reduce the number of flaws in the coming weeks. However, the latest offering is set to mend 34 vulnerabilities, making this the largest number of security holes ever recorded by Microsoft, edging out the previous Patch Tuesday record of 31 fixes this past June. Microsoft Makes Public Aware The exact details for the planned fix have ... (view more)

Wed
15
Jul
Dennis Faas's picture

MS Patch Tuesday Solves ActiveX DirectShow Flaw

Microsoft has made available a patch that promises fixes for nine vulnerabilities, three marked "critical" and another three deemed "important." Most Windows users will be glad to hear that a solution for the much-feared ActiveX DirectShow flaw has ... also been made available. Last week Microsoft made big news in a bad way for its ActiveX security flaw, which threatened to sicken user computers via infected web pages and "drive by" or "browse and get owned" attack codes within legitimate web pages. Much criticism lodged against Microsoft for the company's alleged knowledge of ... (view more)

Mon
13
Jul
Dennis Faas's picture

MS Admits 2008 ActiveX Security Exploit, Still No Fix

Microsoft is in some serious trouble after sources confirmed that the company had known about the recent IE6 and IE7 virus attacks (also known as the infamous " browse and get owned " attacks) for more than a year. Hackers have been exploiting a ... vulnerability in ActiveX by enticing innocent users to click on infected web pages while planting "drive-by" attack codes within legitimate sites. According to ScanSafe, the number of compromised sites has entered into the millions since the attacks first began. Attacks Predicted One Year in Advance If the viruses and malware weren't bad enough, Mike ... (view more)

Pages

Subscribe to RSS - patch