Make Homepage | Add To Favorites | Print Page | Submit News | Feedback | Contact | 

Your Technical Computer Information Resource!  
     

  Microsoft related Technical Updates [Page: 95 of 98] @ TACKtech Corp.  

07.23.2003 - Enabling the PIPE_CREATE_INSTANCE flag for non-admin users (823492)



View Microsoft related news. This update helps resolve an issue where named pipes are opened with greater access than specified with MAXIMUM_ALLOWED. Download now to help limit access to MAXIMUM_ALLOWED on amed pipe creation.
Full View / NID: 1048 / Submitted by: TACKtech Team

07.22.2003 - Microsoft .NET Framework 1.1: Device Update 2.0



View Microsoft related news. The Microsoft® .NET Framework version 1.1 includes ASP.NET Mobile Controls that enable developers to easily create mobile Web applications. Developers can write and maintain a single application that targets multiple devices. The mobile controls deliver markup language specifically adapted for each browser that accesses the application. ASP.NET Mobile Controls originally shipped in the Microsoft Mobile Internet Toolkit.
Full View / NID: 1045 / Submitted by: TACKtech Team

07.22.2003 - Microsoft Money 2004 Deluxe Trial Version



View Microsoft related news. Try out Microsoft Money 2004 Deluxe today! Download a free 60-day trial version of Money 2004 Deluxe and see how easy it is to manage your personal finances. Supports Windows XP, 2000, ME, 98.
Full View / NID: 1044 / Submitted by: TACKtech Team

07.16.2003 - MS03-028: Flaw in ISA Server Error Pages Could Allow Cross-Site Scripting Attack (816456)



View Microsoft related news. ISA Server contains a number of HTML-based error pages that allow the server to respond to a client requesting a Web resource with a customized error. A cross-site scripting vulnerability exists in many of these error pages that are returned by ISA Server under specific error conditions.
Full View / NID: 1022 / Submitted by: Travis

07.16.2003 - MS03-026: Buffer Overrun In RPC Interface Could Allow Code Execution (823980)



View Microsoft related news. There is a vulnerability in the part of RPC that deals with message exchange over TCP/IP. The failure results because of incorrect handling of malformed messages. This particular vulnerability affects a Distributed Component Object Model (DCOM) interface with RPC, which listens on TCP/IP port 135. This interface handles DCOM object activation requests that are sent by client machines (such as Universal Naming Convention (UNC) paths) to the server. An attacker who successfully exploited this vulnerability would be able to run code with Local System privileges on an affected system. The attacker would be able to take any action on the system, including installing programs, viewing changing or deleting data, or creating new accounts with full privileges.
Full View / NID: 1020 / Submitted by: Travis

07.15.2003 - Microsoft Small Business Server 2000 Service Pack 1a



View Microsoft related news. Small Business Server 2000 Service Pack 1 (SP1) includes updates for the operating system, server applications, and security features that have occurred since the general product availability in April 2001.
Full View / NID: 1011 / Submitted by: Travis

07.09.2003 - MS03-025: Flaw in Windows Message Handling through Utility Manager Could Enable Privilege Elevation (822679)



View Microsoft related news. There is a flaw in the way that Utility Manager handles Windows messages. Windows messages provide a way for interactive processes to react to user events (for example, keystrokes or mouse movements) and to communicate with other interactive processes. A security vulnerability occurs because the control that provides the list of accessibility options to the user does not correctly validate Windows messages that are sent to it. Therefore, it is possible for one process in the interactive desktop to use a specific Windows message to cause the Utility Manager process to run a callback function at the address of its choice. Because the Utility Manager process runs at a higher level of permissions than the first process, this provides the first process with a method of exercising that higher level of permissions.
Full View / NID: 981 / Submitted by: TACKtech Team

07.09.2003 - MS03-024: Buffer Overrun in Windows Could Lead to Data Corruption (817606)



View Microsoft related news. There is a flaw in the way the HTML converter for Microsoft Windows handles a conversion request during a cut-and-paste operation. A vulnerability exists because a specially crafted request to the HTML converter could cause the converter to fail in such a way that it could run code in the context of the currently logged-on user. Because Microsoft Internet Explorer uses this functionality, an attacker could craft a specially formed Web page or HTML e-mail that would cause the HTML converter to run arbitrary code on a user's computer. When a user visits an attacker’s Web site, the attacker could exploit the vulnerability without any other user action.
Full View / NID: 980 / Submitted by: TACKtech Team

07.09.2003 - MS03-023: Buffer Overrun in the HTML Converter Could Allow Code Execution (823559)



View Microsoft related news. There is a flaw in the way the HTML converter for Microsoft Windows handles a conversion request during a cut-and-paste operation. A vulnerability exists because a specially crafted request to the HTML converter could cause the converter to fail in such a way that it could run code in the context of the currently logged-on user. Because Microsoft Internet Explorer uses this functionality, an attacker could craft a specially formed Web page or HTML e-mail that would cause the HTML converter to run arbitrary code on a user's computer. When a user visits an attacker’s Web site, the attacker could exploit the vulnerability without any other user action.
Full View / NID: 979 / Submitted by: TACKtech Team

07.05.2003 - Microsoft Visual Studio 6.0 Service Pack Beta 6



View Microsoft related news. Service Pack Beta 6 for Visual Studio 6.0 adds substantial fixes to the 6.0 product since the last service pack, especially with VC++6.0 and VB 6.0. If you are interested, log in at BetaPlace using your .NET Passport login. Then use the Guest ID vsndpspguest.
Full View / NID: 959 / Submitted by: TACKtech Team

07.01.2003 - Microsoft Windows Small Business Server 2003 Release Candidate



View Microsoft related news. Microsoft Corp. today announced that its Windows® Small Business Server 2003 Release Candidate is available for technology providers and small businesses to begin testing. Available in two editions, Premium and Standard, the newest version of Windows Small Business Server is built on Microsoft's highly reliable and secure Windows Server (TM) 2003 operating system and delivers an integrated solution that is simple to install, simple to manage and simple to use.
Full View / NID: 945 / Submitted by: Travis

06.30.2003 - Microsoft Beta 2 Technical Refresh Patches



View Microsoft related news. Microsoft has released several Beta 2 technical refresh updates including Publisher 2003, InfoPath 2003, SharePoint Portal Server 2003, and FrontPage 2003.
Full View / NID: 942 / Submitted by: TACKtech Team

06.26.2003 - Microsoft Windows 2000 Service Pack 4 (SP4)



View Microsoft related news. Download Windows 2000 Service Pack 4 to obtain updates that can help improve security, application compatibility, operating system reliability, and Setup. This service pack also includes the updates contained in previous Windows 2000 Service Packs. Windows 2000 Service Pack 4 (SP4) is a recommended upgrade.
Full View / NID: 903 / Submitted by: Travis

06.25.2003 - ACC2002: The Updated Version of Microsoft Jet 4.0 (SP7) (282010)



View Microsoft related news. The Microsoft Office XP and Access 2002 Setup programs only update system files in certain situations and to a certain level. Therefore, after you install Access you may not have the latest version of the Microsoft Jet 4.0 database engine. To obtain the latest update for the Jet 4.0 database engine, you can download and install Microsoft Jet 4.0 Service Pack 7 (SP7).
Full View / NID: 897 / Submitted by: TACKtech Team

06.25.2003 - MS03-022: Flaw in ISAPI Extension for Windows Media Services Could Cause Code Execution (822343)



View Microsoft related news. A security issue has been identified that could allow an attacker to execute commands on a computer running Microsoft® Windows® 2000. This issue only affects computers configured as Web servers. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer. Once you have installed this item, it cannot be removed.
Full View / NID: 896 / Submitted by: Travis

05.31.2003 - MS03-019: Flaw in ISAPI Extension for Windows Media Services Could Cause Code Execution (817772) Refresh



View Microsoft related news. On May 28th, Microsoft released the initial version of this bulletin, rating the severity of the vulnerability as Moderate. Subsequent to that release we have determined that the actions an attacker could take as a result of exploiting this vulnerability could include the ability to execute arbitrary code. As a result Microsoft has reissued this bulletin and changed the severity rating to Important. The original corrects the vulnerability and is not being re-released.
Full View / NID: 802 / Submitted by: Zero_Tolerance

05.29.2003 - MS03-013: Buffer Overrun in Windows Kernel Message Handling could Lead to Elevated Privileges (811493)



View Microsoft related news. There is a flaw in the way the kernel passes error messages to a debugger. A vulnerability results because an attacker could write a program to exploit this flaw and run code of their choice. An attacker could exploit this vulnerability to take any action on the system including deleting data, adding accounts with administrative access, or reconfiguring the system.
Full View / NID: 789 / Submitted by: Zero_Tolerance

05.28.2003 - MS03-007: Unchecked Buffer In Windows Component Could Cause Server Compromise (815021)



View Microsoft related news. Microsoft originally released this article March 17, 2003. At that time, Microsoft was aware of a publicly available exploit that was being used to attack Windows 2000 Servers running IIS 5.0. The attack vector in this case was WebDAV although the underlying vulnerability was in a core operating system component, Ntdll.dll.
Full View / NID: 785 / Submitted by: Zero_Tolerance

05.28.2003 - MS03-019: Flaw in ISAPI Extension for Windows Media Services Could Cause Denial of Service (817772)



View Microsoft related news. There is a flaw in the way in which nsiislog.dll processes incoming requests. A vulnerability exists because an attacker could send specially formed communications to the server that could cause IIS to stop responding to Internet requests.
Full View / NID: 784 / Submitted by: Zero_Tolerance

05.28.2003 - MS03-018: May 2003 Cumulative Patch for Internet Information Service (811114)



View Microsoft related news. This patch is a cumulative patch that includes the functionality of all security patches released for IIS 4.0 since Windows NT 4.0 Service Pack 6a, and all security patches released to date for IIS 5.0 since Windows 2000 Service Pack 2 and IIS 5.1.
Full View / NID: 783 / Submitted by: TACKtech Team
  Popular Tech News  
  Most Viewed News  
  Top Affiliates  
.....