new windows dns flaw

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

Cybercrooks exploiting new Windows DNS flaw

Cybercrooks exploiting new Windows DNS flawwellDNS runs on UDP/53of course you will kill the DNS server that way, making yo have to type stuff like http://216.239.122.100 to get to http://news.zdnet.comWhich portsneed to be blocked?Again with the Windows expoits ?!?!?When will it all end ?!?!?We all need to be running Apple...

Tags: Operating systems, Domain names, Windows 200, Apple Inc., Microsoft Windows, server, Microsoft Corp., Windows DNS flaw, new Windows DNS flaw, Windows DNS, DNS, Linux

Discussion threads 2007-04-13

Additional Resources

News to know: Clearwire; Google Caffeine; innovation; Office and Nokia; VMWare; Windows 7

Here are today's notable headlines. You can get News To Know via email alert and RSS daily. For continuous updates see BNET's around-the-Web tech coverage. Larry Dignan: Clearwire bets on fourth quarter WiMax tipping point Garett Rogers: Google to Caffeinate search results ...

Tags: Innovation, Google Inc., Larry Dignan, Google Android, Nokia Corp., Clearwire Corp., Andrew Nusca, Mary Jo Foley, Microsoft Windows, VMware Inc., Matthew Miller, Adrian Kingsley-Hughes, Sam Diaz, Microsoft Windows 7, Mobile Operating Systems, Data Centers, Smart Phones, Virtualization, Microsoft Office, Storage, Hardware, Data Management, Consumer Electronics, Personal Technology, Office Suites, Software

Blog posts 2009-08-12

Why did Microsoft wait 7 years to fix SMBRelay attack flaw?

Why did Microsoft wait 7 years to fix SMBRelay attack flaw?Sour over mis-predicting the patches this month?First off, does anyone proof-read these posts? Multiple typos/grammatical errors make it look like this was rushed out... Anyway.Mentioning the token-kidnapping issue makes me wonder if Ryan is sour that his patch prediction (on...

Tags: SECURITY, Patches, Viruses and worms, anti-MS people, NTLMv2, Admin Access, Microsoft Corp., vulnerability, SMBRelay, SMBRelay attack flaw, Ryan, attack flaw

Discussion threads 2008-11-12

The depressing future of the Internet

A brief overview of how the Internet came about: some years ago, some military boffs thought it'd be awesome if computers could talk to each other, so the US could nuke the hell out of other countries without actually being near there. A smart professor from England then came up...

Tags: Security, IPv6, Computer, Flaw, IPv6 Adoption, Internet, Zack Whittaker

Blog posts 2008-08-28

News to know: Google; Typosquatting; Apple; IDF

Here are today’s notable headlines. You can get News To Know via email alert and RSS daily: Garett Rogers: Google gains share again, should Microsoft give up? Christopher Dawson: Can Dell compete on cost anymore? Dancho Danchev: Typosquatting the U.S presidential...

Tags: Google Inc., Apple Inc., Microsoft Corp., Intel Corp., 3G, Cellular Phones, Wireless, Open Source, Security, Networking, Consumer Electronics, Personal Technology, Larry Dignan

Blog posts 2008-08-22

Microsoft investigating NSlookup.exe flaw, reported attacks

Microsoft is investigating new public reports of a zero-day Windows vulnerability that's being exploited in the wild. According to a this SecurityFocus alert, the attacks are exploiting a remote code-execution vulnerability due to an unspecified error in NSlookup.exe, the command-line administrative tool used for testing and troubleshooting...

Tags: Vulnerability, Microsoft Corp., Attack, Flaw, Microsoft Windows XP Professional SP2, Access Snapshot Viewer, Security, ActiveX/COM/COM+/DCOM, Microsoft Windows, Software Development, Software/Web Development, Operating Systems, Software, Ryan Naraine

Blog posts 2008-08-15

News to know: Mozilla; Windows Server; LinuxWorld; Apple

Notable headlines: Ryan Naraine: Talking Firefox security with Mozilla's Window Snyder Mary Jo Foley: What's next for Windows Server Microsoft finalizes SQL Server 2008 TechRepublic: 10 questions and answers about Microsoft Live Mesh Dancho Danchev: Today's...

Tags: google inc., larry dignan, microsoft windows server, server, apple inc., mozilla corp., linux, phishing, smart phones, service-oriented architecture (soa), cyberthreats, microsoft windows, operating systems, unix, open source, software, security, spam and phishing, consumer electronics, personal technology, web services, enterprise software

Blog posts 2008-08-07

News to know: Apple patch; IBM; PC upgrades; EDS; Yahoo

Notable headlines: Ryan Naraine: Apple finally ships DNS flaw fix, patches 16 other Mac OS X holes Nate McFeters: Black Hat talk on Apple encryption flaw pulled Black Hat Sneak Preview Larry Dignan: IBM plans building spree: To build $360M...

Tags: Google Inc., Facebook, Larry Dignan, PC, Yahoo! Inc., Apple Inc., Electronic Data Systems Corp., IBM Corp., FireWire, Sales Strategy, Desktops, Consumer Electronics, Personal Technology, Sales, Hardware

Blog posts 2008-08-01

iPhone vulnerable to phishing, spamming flaws

iPhone vulnerable to phishing, spamming flawsBut I was told OS X would save me from things like this.[i]In the meantime, iPhone users should avoid clicking on links in the Mail app that refers to trusted sites.[/i]So if my mom sends me a link to a web album, I shouldn't open...

Tags: Spam, Cyberthreats, Desktops, SECURITY, spamming, Apple iPhone, PC, phishing

Discussion threads 2008-07-23

2008 Pwnie Award nominees announced

Well, after getting 134 nominations, and spending countless hours pulling out nominees, the judges for the 2008 Pwnie Awards have announced the final nominees to be voted on.  From the site: The final list of nominees for the nine Pwnie Award categories is ...

Tags: Attack, Flaw, Lifelock, Nathan McFeters, Nominee, Security, Vulnerability, XSS, XSS Flaw

Blog posts 2008-07-21

News to know: Firefox 3.0 flaw; Windows 7; IT failures; HP

Notable headlines: Ryan Naraine: Code execution vulnerability found in Firefox 3.0 Dancho Danchev: A security company wants you to DDoS its servers Tom Steinert-Threlkeld: Alabama's Broadband Tide Mary Jo Foley: Will Google deliver its own dynamic language runtime?...

Tags: Apple iPhone, Mozilla Firefox 3.0, Mozilla Firefox, Hewlett-Packard Co., Microsoft Windows 7, Information Technology, Microsoft Windows, Flaw, Web Browsers, Data Centers, Internet, Storage, Hardware, Data Management, Larry Dignan

Blog posts 2008-06-19

News to know: Google Apps; Vista UAC; Microsoft Echoes; Comcast; Dell

Notable headlines: Garett Rogers: Google App Engine pricing a disappointment Ed Bott: Dear Microsoft: Please get UAC right this time Sunbelt Blog: Microsoft: What we got here is a failure to communicate Larry Dignan: Dell delivers: Is a...

Tags: Google Inc., Google Apps, Facebook, Dell Computer Corp., Comcast Corp., Vista UAC, Apple Inc., Microsoft Corp., Netbook, Microsoft Windows, Enterprise Service Bus, Telecom & Utilities, Security, Operating Systems, Software, Enterprise Software, Middleware, Larry Dignan

Blog posts 2008-05-30

News to know: Microhoo; Adobe patch; Windows bloat; AMD

Notable headlines: Larry Dignan: Yahoo goes nuclear vs. Microsoft: Inks limited Google ad deal; Microsoft fires back Mary Jo Foley: Microsoft-Yahoo-Google: The vicious antitrust circle Yahoo's strategy: Torpedo the Microsoft deal or up the offer? Garett Rogers: Google gets business from Yahoo...

Tags: Adobe Systems Inc., Google Inc., Microsoft Corp., Advanced Micro Devices Inc., Microsoft Windows, Robots, Operating Systems, Open Source, Software, Emerging Technologies, Larry Dignan

Blog posts 2008-04-10

Microsoft confirms man-in-the-middle WPAD vulnerability

Following the public release of a serious flaw in the way Windows resolves hostnames that do not include a fully-qualified domain name FQDN, Microsoft has issued a security advisory to acknowledge the issue and offer pre-patch workarounds. Redmond's advisory comes more than two weeks after hacker Beau...

Tags: DNS, Vulnerability, Domain, Microsoft Corp., Microsoft Windows, Domain Names, Networking, Operating Systems, Software, Internet, Ryan Naraine

Blog posts 2007-12-03

Microsoft patches URI handling, DNS spoofing flaws

Microsoft patches URI handling, DNS spoofing flawsThe monthly reminder on why you might want to move to Vista..They have not fixed the problem.So far as I can tell from this bulletin they have not actually fixed the problem."This security update addresses the vulnerability by changing the way that Windows shell...

Tags: Microsoft Windows, SECURITY, Microsoft Windows XP, flaw, URI, critical flaw, Microsoft patches URI, Windows Shell, Norton Co., Microsoft Windows Vista, Microsoft Corp., DNS

Discussion threads 2007-11-13

Microsoft patches URI handling, DNS spoofing flaws

Microsoft has finally shipped a comprehensive fix for a critical URI handling vulnerability that exposes Windows users to drive-by malware attacks. The patch, available in the MS07-061 bulletin, covers a remote code execution vulnerability in the way that the Windows shell handles specially crafted URIs that are...

Tags: DNS, Vulnerability, DNS Server, Microsoft Corp., Flaw, Microsoft Windows, Domain Names, Operating Systems, Security, Software, Internet, Ryan Naraine

Blog posts 2007-11-13

Virtualization is hot because Windows is not.

Virtualization is hot because Windows is not.Poor UNIX weenies[i]"...every new application required a new Windows box. That happens to be the way most IT departments work and it is a good thing for Microsoft because that is the way Windows works!"[/i]Not really. We stuff all kinds of crap on...

Tags: Operating systems, Servers, virtualization, McAfee Inc., Microsoft Windows, server, incompetence, Microsoft Corp.

Discussion threads 2007-08-21

Critical IE, Excel updates headline bumper Patch Tuesday

Critical IE, Excel updates headline bumper Patch TuesdayThe last two vulnerabilities aren't even in IEJust so you know, the two "ActiveX Object Memory Corruption" vulnerabilities are not actually vulnerabilities in IE. I have never heard of pdwizard.ocx or tblinf32.dll -- according to the bulletins they are part of Visual...

Tags: Web browsers, Patches, Microsoft Excel, Microsoft Internet Explorer, vulnerability, patch management, Microsoft Corp.

Discussion threads 2007-08-14

Can Trend Micro's botnet identification service make a difference?

Trend Micro today rolled out its SecureCloud software-as-a-service platform with a new Botnet Identification Service BIS to help find botnet command-and-control servers and block communications between them and the zombie PCs they control.Geared towards ISPs and enterprise customers, the botnet ID service can be used to block communication to/from command-and-control...

Tags: Vulnerability research, Viruses and Worms, Symantec, Spyware and Adware, Spam and Phishing, Rootkits, Responsible disclosure, Punditocracy, Pen testing, Patch Watch, Microsoft, Passwords, Metasploit, McAfee, Hackers, Google, Firefox, Exploit code, Data theft, Browsers, Botnets

Blog posts 2007-07-30

Remote vulnerability in high-profile Firefox extensions

Remote vulnerability in high-profile Firefox extensionsShut up, fool.ntThat wasa more detailed description of a vulnerability than I have seen for anything on Zdnet in a long time. if everWhy can't a description such as that be given for the products of Apple, Microsoft, etc?I mean that was pretty specific.just M$...

Tags: Web browsers, SECURITY, Mozilla Firefox, Microsoft Corp., vulnerability, Firefox extension

Discussion threads 2007-05-30