Sponsored White Papers, Webcasts, and Downloads
Additional Resources
- Microsoft confirms IIS zero-day flaw; Exploit code published
- Can I summarize?First you need to not only install IIS, you also need to install the FTP functionality in IIS. Got it.[i]Also, remember that only servers that allow untrusted users to log on and create arbitrary directories are vulnerable.[/i]Then you have to configure your FTP server to allow anyone to...
- Tags: SECURITY, zero-day bug, Microsoft Corp., Microsoft IIS Server, exploit code
- Discussion threads 2009-09-01
- News to know: HP, Vista SP2; Pre; Oracle licensing
- Here are today’s notable headlines. You can get News To Know via email alert and RSS daily. For continuous updates see BNET’s around-the-Web tech coverage. Larry Dignan: HP's second quarter on target; Big units take revenue lumps; Headcount cuts ahead Mary Jo Foley: Where is Vista SP2? ...
- Tags: Software, Apple iPhone, Larry Dignan, Hewlett-Packard Co., Oracle Corp., Performance, Service Pack 2, Palm Inc., Microsoft Windows Vista, Server, Microsoft Corp., Adrian Kingsley-Hughes, Microsoft Windows XP Service Pack 2, Performance Management, Human Resources, Workforce Management
- Blog posts 2009-05-20
- Microsoft confirms server vulnerability warning
- Microsoft has activated its security response process to deal with the release of a exploit code targeting an unpatched vulnerability affecting IIS 5.0 through 6.0. The company released a formal pre-patch advisory to acknowledge the vulnerability and offer mitigation guidance for customers. ...
- Tags: Vulnerability, WebDAV, Server, Microsoft Corp., Microsoft IIS Server, Thierry Zoller, Security, Ryan Naraine
- Blog posts 2009-05-19
- Inside Microsoft's February patch batch
- Guest post by Eric Schultze It's a seemingly light batch of patches this month, trailing an even lighter, single patch release in January. Two critical items were released -- including patches for Internet Explorer 7 and Microsoft Exchange Server. Additionally, two "important" items...
- Tags: Microsoft Visio, Attacker, Microsoft SQL Server, Microsoft Exchange Server, Microsoft Internet Explorer 7, Patch Management, Microsoft Corp., MS09-002, MS09-003, MS09-004, MS09-005, Patches, Servers, Security, Databases, Hardware, Enterprise Software, Software, Data Management, Ryan Naraine
- Blog posts 2009-02-11
- News to know: Yahoo's Bartz, Genachowski, Sony's loss, Chrome for Mac
- Here are today’s notable headlines. You can get News To Know via email alert and RSS daily: Larry Dignan: Yahoo confirms Bartz in charge; Can she save Yahoo? Yahoo to name Bartz CEO; Now the fun begins Sam Diaz: Ya-hoooo: There's a...
- Tags: Apple iPhone, Sony Corp., Larry Dignan, Apple Macintosh, Yahoo! Inc., Dana Blankenhorn, Apple Inc., Sam Diaz, Federal Government, Microsoft Windows, RSS, Desktops, Telecom & Utilities, Operating Systems, Government, Software, Internet, Hardware
- Blog posts 2009-01-14
- Microsoft confirms critical SQL Server vulnerability
- Microsoft confirms critical SQL Server vulnerabilityWrong logo?That logo at the start of the article is for Sql Server 2008 while it's not on the list affected by the vulnerability.The correct logo should be a sieve. :p2009 New Year's resolution:getting off the bug-ridden gravy trainI wouldn't give up on OSS yet.OSS...
- Tags: Databases, OPEN SOURCE, MySQL, Microsoft SQL Server, environment, server, Microsoft Corp.
- Discussion threads 2008-12-22
- Microsoft confirms critical SQL Server vulnerability
- Microsoft late Monday issued a pre-patch advisory confirming a remote code execution vulnerability affecting its SQL Server line. The vulnerability, publicly disclosed with exploit code more than two weeks ago, affects Microsoft SQL Server 2000, Microsoft SQL Server 2005, Microsoft SQL Server 2005 Express Edition, Microsoft SQL...
- Tags: Microsoft SQL Server, Vulnerability, Server, Exploit Code, Microsoft Corp., Microsoft SQL Server 2005, Databases, Enterprise Software, Security, Software, Data Management, Ryan Naraine
- Blog posts 2008-12-22
- Where on earth are these Microsoft patches?
- Lost in the shuffle of this month's Patch Tuesday barrage is the fact that a critical vulnerability in the ever-present Windows Media Player WMP was not fixed "because of a last minute quality issue." Microsoft originally listed the WMP update in the advance notice for August but,...
- Tags: Vulnerability, Patch Management, Microsoft Internet Explorer, Microsoft Corp., Microsoft Windows, Web Browsers, Operating Systems, Software, Internet, Ryan Naraine
- Blog posts 2008-08-14
- Microsoft confirms Word attacks
- Microsoft confirms Word attacksNo, in Jet>>Microsoft has confirmed reports of vulnerability in WordGrammatical issue aside, the vulnerability is in the Jet engine, not Word. Word is the vector.Vista is NOT vulnerable: yet another reason to use Vistayet another reason to use VistaRE: Microsoft confirms Word attacksThere is NO reason to...
- Tags: Microsoft Windows Vista (Longhorn), Microsoft Office, Microsoft Windows Vista, Microsoft Corp., Microsoft confirms Word attack, Microsoft Confirms, Microsoft Word
- Discussion threads 2008-03-24
- Microsoft confirms Word attacks
- Microsoft has confirmed reports of vulnerability in Word that allows an attacker to exploit a system via the Microsoft Jet Database Engine, which shares data with Access, Visual Basic and third party applications. Microsoft in its advisory said the potential for attack is "very limited." Reports of...
- Tags: Microsoft Corp., Attack, Microsoft Word, Word Processors, Microsoft Windows, Microsoft Office, Security, Office Suites, Software, Operating Systems, Larry Dignan
- Blog posts 2008-03-24
- News to know: Windows 7; eBay; Space race; Java
- Notable headlines: Mary Jo Foley: Windows 7 and Windows Live to get tighter Ed Bott: Vista virtualization: The bigger picture Via makes way for 64-bit chips Larry Dignan: eBay CEO Whitman steps down; execs shuffled amid weak...
- Tags: Larry Dignan, Line Of Business, Java, eBay Inc., Phishing, Microsoft Windows, Service-Oriented Architecture (SOA), Keyboards, Cyberthreats, Open Source, Security, Spam And Phishing, Operating Systems, Software, Web Services, Enterprise Software, Hardware, Peripherals
- Blog posts 2008-01-24
- News to know: So long Vista kill switch; XP SP3; Adobe; AMD; Microsoft vulnerability
- Notable headlines: Ed Bott: With SP1, Microsoft plans to ditch the Vista "kill switch". Mary Jo Foley: Microsoft to modify Windows Genuine Advantage anti-piracy scheme. Adrian Kingsley-Hughes: See, complain loud enough and Microsoft will listen. Windows XP SP3 Release Candidate goes to MSDN,...
- Tags: Adobe Systems Inc., Larry Dignan, Microsoft Windows XP, Eastman Kodak Co., Yahoo! Inc., Vulnerability, Microsoft Windows Vista, Microsoft Corp., Advanced Micro Devices Inc., Windows XP SP3 Release Candidate, Microsoft Windows Vista (Longhorn), Internet, Microsoft Windows, Sales Strategy, Security, Operating Systems, Software, Sales
- Blog posts 2007-12-04
- Microsoft confirms man-in-the-middle WPAD vulnerability
- Following the public release of a serious flaw in the way Windows resolves hostnames that do not include a fully-qualified domain name FQDN, Microsoft has issued a security advisory to acknowledge the issue and offer pre-patch workarounds. Redmond's advisory comes more than two weeks after hacker Beau...
- Tags: DNS, Vulnerability, Domain, Microsoft Corp., Microsoft Windows, Domain Names, Networking, Operating Systems, Software, Internet, Ryan Naraine
- Blog posts 2007-12-03
- Microsoft confirms PDF attacks, urges caution
- In the wake of this week's malware attacks using rigged PDF files, Microsoft has updated its security advisory to stress that the underlying flaw -- in the Windows operating system -- is still not fixed. The advisory, first issued on October 10, points to an unpatched...
- Tags: Adobe PDF, Microsoft Corp., Attack, Microsoft Windows, Security, Operating Systems, Software, Ryan Naraine
- Blog posts 2007-10-26
- MS Outlook flaw adds new twist to URI handling saga
- For months, Microsoft has taken a firm hands-off approach to the URI protocol handling vulnerability saga, shrugging off suggestions that there's a flaw in Windows that needs to be fixed. Now comes word that two Microsoft products -- Outlook Express 6 and Outlook 2000 -- have joined...
- Tags: Microsoft Internet Explorer, Microsoft Corp., Flaw, MS Outlook Flaw, Microsoft Windows, Microsoft Outlook, Web Browsers, Groupware, Microsoft Office, Security, Operating Systems, Software, Office Suites, Internet, Enterprise Software, Ryan Naraine
- Blog posts 2007-10-10
- Microsoft's advisories giving clues to hackers
- Hows this for a new twist on the old responsible disclosure debate: Hackers are taking advantage of information released in Microsofts security advisories to create exploits for unpatched security vulnerabilities.The latest zero-day flaw in the Windows DNS Server RPC interface implementation is a perfect example of the tug-o-war within...
- Tags: Exploit code, Data theft, Browsers, Botnets, Black Hat, Zero-day attacks, Vulnerability research, Viruses and Worms, Spyware and Adware, Spam and Phishing, Rootkits, Responsible disclosure, Pen testing, Patch Watch, Microsoft, Metasploit, Hackers
- Blog posts 2007-04-16
- Microsoft confirms Windows zero-day, drive-by exploits
- [UPDATE: March 29, 2007 @ 1:15 PM Eastern] Microsoft has confirmed that this is indeed a zero-day flaw that will require a security update. Although Internet Explorer is the primary attack vector, this is a vulnerability in the way Windows handles animated cursor (.ani) files. From Redmonds security advisory: The...
- Tags: Operating systems, Web browsers, SECURITY, Microsoft Corp., window, Microsoft Windows, Microsoft Internet Explorer, attack, Microsoft Windows XP Service Pack 2, Microsoft Windows XP, vulnerability, attacker
- Blog posts 2007-03-29
- Four years later, SQL Slammer worm still squirms
- More than four years after Slammer started exploiting holes in Microsoft's SQL Server and Desktop Engine database products, the worm continues to squirm in machines that some believe will never be disinfected.Over the past two days, SQL Slammer was listed as the number one threat on Arbor Network's new ATLAS...
- Tags: Patch Watch, Hackers, Microsoft, Vulnerability research, Botnets, Exploit code, Viruses and Worms
- Blog posts 2007-02-21
- Study: Antispyware market to boom in 2005
- Study: Antispyware market to boom in 2005Rewarding the shortcomings of a flawed OS.. and the browser that made it all happen.. IE.A browser that doesn't ask when spyware is being installed, on top of an OS that lets every user install any software..Gotta love it..And for the M$hills who talk...
- Tags: Spyware, adware & malware, Cyberthreats, Web browsers, Viruses and worms, SECURITY, Spyware infestation, spyware, Mozilla Firefox, software, anti-spyware
- Discussion threads 2005-02-11
- << Previous
- page 1 of 1
- Next >>
-
-
Smart Tech
Expert advice on innovations in healthcare and the green technologies that make it happen.
Find out more
-
Smart Business
Discussion and advice on management issues that revolve around making your world smarter and more useful.
More Smart Advice
-
Smart People
The best and worst moves in the management and strategy trenches.
Learn More
White Papers and Webcasts
