Malware

Systems Affected Applications that process JPEG images on Microsoft Windows, including but not limited to Internet Explorer Microsoft Office Microsoft Visual Studio Picture It! Applications from other vendors besides Microsoft Overview An attacker may be able to gain control of your computer by taking advantage of the way some programs process the JPEG image format. Solution Apply a patch Microsoft has issued updates to address the problem. Obtain the appropriate update from Windows Update and…

Read More

Systems Affected MIT Kerberos 5 versions prior to krb5-1.3.5 Applications that use versions of MIT Kerberos 5 libraries prior to krb5-1.3.5 Applications that contain code derived from MIT Kerberos 5 Updated vendor information is available in the systems affected section of the individual vulnerability notes. Overview The MIT Kerberos 5 implementation contains several vulnerabilities, the most severe of which could allow an unauthenticated, remote attacker to execute arbitrary code on a Kerberos Distribution Center (KDC).…

Read More

Systems Affected The following Oracle applications are affected: Oracle Database 10g Release 1, version 10.1.0.2 Oracle9i Database Server Release 2, versions 9.2.0.4 and 9.2.0.5 Oracle9i Database Server Release 1, versions 9.0.1.4, 9.0.1.5 and 9.0.4 Oracle8i Database Server Release 3, version 8.1.7.4 Oracle Enterprise Manager Grid Control 10g, version 10.1.0.2 Oracle Enterprise Manager Database Control 10g, version 10.1.0.2 Oracle Application Server 10g (9.0.4), versions 9.0.4.0 and 9.0.4.1 Oracle9i Application Server Release 2, versions 9.0.2.3 and 9.0.3.1…

Read More

Systems Affected Microsoft Windows XP Overview Microsoft Windows XP Service Pack 2 (SP2) significantly improves your computer’s defenses against attacks and vulnerabilities. Recommendation To help protect your Windows XP computer from attacks and vulnerabilities, install Service Pack 2 using Windows Update or Automatic Updates. Note: Service Pack 2 makes significant changes to improve the security of Windows XP, and these changes may have negative effects on some programs and Windows functionality. Before you install Service…

Read More

Systems Affected Applications and systems that use the libpng library. Overview Several vulnerabilities exist in the libpng library, the most serious of which could allow a remote attacker to execute arbitrary code on an affected system. Description The Portable Network Graphics (PNG) image format is used as an alternative to other image formats such as the Graphics Interchange Format (GIF). The libpng is a popular reference library available for application developers to support the PNG…

Read More

Systems Affected These vulnerabilities affect the following versions of Microsoft Internet Explorer: Microsoft Internet Explorer 5.01 Service Pack 2 Microsoft Internet Explorer 5.01 Service Pack 3 Microsoft Internet Explorer 5.01 Service Pack 4 Microsoft Internet Explorer 5.5 Service Pack 2 Microsoft Internet Explorer 6 Microsoft Internet Explorer 6 Service Pack 1 Microsoft Internet Explorer 6 Service Pack 1 (64-Bit Edition) Microsoft Internet Explorer 6 for Windows Server 2003 Microsoft Internet Explorer 6 for Windows Server…

Read More

Systems Affected   Microsoft Windows systems; specifically, some versions of the following programs: Microsoft Windows NT Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows 98 Microsoft Windows Millennium Edition Microsoft Internet Explorer 5 Microsoft Internet Explorer 6   Overview   Microsoft has reported two vulnerabilities in the way Internet Explorer processes certain types of images. Attackers may be able to gain control of your machine if you view a malicious image,…

Read More

Systems Affected   Microsoft Windows Systems   Overview   A new variant of the MyDoom virus is spreading through email. In addition to infecting your computer and emailing itself to other machines, the virus may open a backdoor that could make your machine vulnerable to future attacks. Solution Avoid opening email attachments Be sure you know the source of an attachment before opening it. Also remember that it is not enough that the mail originated…

Read More

Systems Affected   Microsoft Windows Systems   Overview   Microsoft has released a Security Bulletin Summary for July, 2004. This summary includes several bulletins that address vulnerabilities in various Windows applications and components. Exploitation of some vulnerabilities can result in the remote execution of arbitrary code by a remote attacker. Details of the vulnerabilities and their impacts are provided below.     Description   The table below provides a reference between Microsoft’s Security Bulletins and…

Read More

Systems Affected   Systems running Internet Explorer and Microsoft Windows   Overview   Microsoft has released an important security update for Internet Explorer (IE). This update greatly reduces the impact of attacks against several vulnerabilities in IE.   Description   Several vulnerabilities in IE could allow a malicious web site or HTML email message to install software on your computer. This software could be used to steal sensitive financial information or perform other actions. Recent…

Read More