|
Microsoft Advisories
|
Wednesday, 22 April 2009
Severity Rating: Critical - Revision Note: V1.2 (April 22, 2009): Corrected the FAQ, "Is it possible to enable the Internet Explorer defense-in-depth protection for the blended threat vulnerability on Microsoft Windows 2000" in the section, Frequently Asked Questions (FAQ) Related to This Security Update.Summary: This security update resolves four privately reported vulnerabilities and two publicly disclosed vulnerabilities in Internet Explorer. The vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer or if a user connects to an attacker's server by way of the HTTP protocol. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
|
Read more...
|
|
|
Microsoft Advisories
|
Thursday, 16 April 2009
Revision Note: V1.1 (April 16, 2009): Updated the Exploitability Index: removed key notes for CVE-2009-0089 and changed key notes for CVE-2008-2540 in MS09-014 and MS09-015.Summary: This bulletin summary lists security bulletins released for April 2009. |
|
Read more...
|
|
|
Microsoft Advisories
|
Wednesday, 15 April 2009
Severity Rating: Moderate - Revision Note: V1.1 (April 15, 2009): Added FAQs in the section, Frequently Asked Questions (FAQ) Related to This Security Update as well as in the Vulnerability section for CVE-2008-2540 to explain the relationship between CVE-2008-2540 in this bulletin and in MS09-014. Also added Microsoft Knowledge Base Article 959426 as a reference for instructions in implementing SetSearchPathMode in Microsoft Windows 2000.Summary: This security update resolves a publicly disclosed vulnerability in the Windows SearchPath function that could allow elevation of privilege if a user downloaded a specially crafted file to a specific location, then opened an application that could load the file under certain circumstances. |
|
Read more...
|
|
|
Microsoft Advisories
|
Tuesday, 14 April 2009
Revision Note: V3.0 (April 14, 2009): Advisory updated to reflect publication of security bulletin.Summary: Security Advisory |
|
Read more...
|
|
|
Microsoft Advisories
|
Tuesday, 14 April 2009
Revision Note: V2.0 (April 14, 2009): Added references and links to MS09-014 and MS09-015, which address the issue in this advisory.Summary: Microsoft has investigated public reports of a blended threat that allows remote code execution on all supported versions of Windows XP and Windows Vista when Apple’s Safari for Windows has been installed. Safari is not installed with Windows XP or Windows Vista by default; it must be installed independently or through the Apple Software Update application. Customers running Safari on Windows should review this advisory. |
|
Read more...
|
|
|
Microsoft Advisories
|
Tuesday, 14 April 2009
Revision Note: V3.0 (April 14, 2009) Advisory updated to reflect publication of security bulletin.Summary: Microsoft is investigating new public reports of a vulnerability in Microsoft Office Excel that could allow remote code execution if a user opens a specially crafted Excel file. At this time, we are aware only of limited and targeted attacks that attempt to use this vulnerability. |
|
Read more...
|
|
|
Microsoft Advisories
|
Tuesday, 14 April 2009
Revision Note: V2.0 (April 14, 2009): Advisory updated to reflect publication of security bulletin.Summary: Microsoft is investigating new reports of a vulnerability in the WordPad Text Converter for Word 97 files on Windows 2000 Service Pack 4, Windows XP Service Pack 2, Windows Server 2003 Service Pack 1, and Windows Server 2003 Service Pack 2. Windows XP Service Pack 3, Windows Vista, and Windows Server 2008 are not affected as these operating systems do not contain the vulnerable code. |
|
Read more...
|
|
|
Cisco Advisories and Notices
|
Friday, 03 April 2009
Several features within Cisco IOS Software are affected by a crafted UDP packet vulnerability. If any of the affected features are enabled, a successful attack will result in a blocked input queue on the inbound interface. Only crafted UDP packets destined for the device could result in the interface being blocked, transit traffic will not block the interface.  |
|
Read more...
|
|
|
Cisco Advisories and Notices
|
Friday, 03 April 2009
A vulnerability in the handling of IP sockets can cause devices to be vulnerable to a denial of service attack when any of several features of Cisco IOS? Software are enabled. |
|
Read more...
|
|
|
Microsoft Advisories
|
Wednesday, 01 April 2009
Severity Rating: Moderate - Revision Note: V1.1 (April 1, 2009): Clarified in footnotes under the Affected Software and Severity Ratings tables that Windows Server 2008 server core installations are not affected by the vulnerability discussed in this bulletin, but will still be offered this update. Added an entry in the section, Frequently Asked Questions (FAQ) Related to This Security Update, to reiterate that such installations do not need to install this update.Summary: This security update resolves a publicly reported vulnerability for the Microsoft Speech API. The vulnerability could allow remote code execution if a user viewed a specially crafted Web page using Internet Explorer and has the Speech Recognition feature in Windows enabled. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. This update also includes a kill bit for software produced by BackWeb. |
|
Read more...
|
|
|
<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>
|
| Results 41 - 50 of 230 |
Disaster recovery services from independent tape testing through to off-site backup loan servers, all designed to minimise the risks of system failure in a proven and cost effective manner. 
Vendor Advisories 