Namibia Online
User Name: Password: Forgot Password?

  
 Advanced Search
Go Back   The Shebeen > The People's Forums > Internet & Technology > Computer Security > Microsoft
Reload this Page Microsoft Security Advisory (926043): Vulnerability in Windows Shell Could Allow Remo


Reply
 
LinkBack Thread Tools
  #1  
Old 26th November 2007, 06:58 PM
Microsoft's Avatar
Microsoft Offline
Senior Member
  
Join Date: Nov 2007
Posts: 121
Thanks: 0
Thanked 0 Times in 0 Posts
In Agreement: 0
In Agreement With 0 Times in 0 Posts
Credits: 100
Post Microsoft Security Advisory (926043): Vulnerability in Windows Shell Could Allow Remo
Revision Note: Advisory updated to reference released security bulletin. Advisory Summary:Microsoft is investigating new public reports of a vulnerability in supported versions of Microsoft Windows. Customers who are running Windows Server 2003 and Windows Server 2003 Service Pack 1 in their default configurations, with the Enhanced Security Configuration turned on, are not affected. We are also aware of proof of concept code published publicly and limited attacks. We are aware of Web sites attempting to use the reported vulnerability to install malware. Our investigation into these Web sites shows that, in most cases, attempts to install malicious software by exploiting this vulnerability fail. This is due to specific technical factors related to the vulnerability. We will continue to investigate these public reports. The ActiveX control called out in the public reports and in the Proof of Concept code is the Microsoft WebViewFolderIcon ActiveX control (Web View). The vulnerability exists in Windows Shell and is exposed by Web View. We are working on a security update currently scheduled for an October 10 release. Customers are encouraged to keep their anti-virus software up to date. Microsoft encourages users to exercise caution when they open e-mail and links in e-mail from untrusted sources. For more information about Safe Browsing, visit the Trustworthy Computing Web site. We continue to encourage customers to follow our Protect Your PC guidance of enabling a firewall, applying software updates and installing antivirus software. Customers can learn more about these steps at the Protect Your PC Web site. Customers who believe they have been attacked should contact their local FBI office or post their complaint on the Internet Fraud Complaint Center Web site. Customers outside the U.S. should contact the national law enforcement agency in their country. Services. You can contact Product Support Services in the United States and Canada at no charge using the PC Safety line (1 866-PCSAFETY). Customers outside of the United States and Canada can loc

More...
Reply With Quote
Reply

Bookmarks

Edit Tags
Tags
None

« - | Microsoft Security Advisory (945713): Vulnerability in Web Proxy Auto-Discovery (WPAD »
Thread Tools



All times are GMT +2. The time now is 03:21 AM.

Contact Us - Namibia Community - The Shebeen - Archive - Privacy Statement - Top


Powered by vBulletin® Version 3.7.5
Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.
SEO by vBSEO 3.2.0
(c) TheShebeen 2008Ad Management by RedTyger


Inactive Reminders By Icora Web Design