Make Homepage | Add To Favorites | Print Page | Submit News | Feedback | Contact | 

Your Technical Computer Information Resource!  
     

  Microsoft Technical Updates [Page: 273 of 283] @ TACKtech Corp.  

07.23.2003 - MS03-030: Unchecked Buffer in DirectX Could Enable System Compromise (819696)



View Microsoft-DirectX related news. DirectX consists of a set of low-level Application Programming Interfaces (APIs) that are used by Windows programs for multimedia support. Within DirectX, the DirectShow technology performs client-side audio and video sourcing, manipulation, and rendering. There are two buffer overruns with identical effects in the function used by DirectShow to check parameters in a Musical Instrument Digital Interface (MIDI) file. A security vulnerability results because it could be possible for a malicious user to attempt to exploit these flaws and execute code in the security context of the logged-on user.
Full View / NID: 1050 / Submitted by: Travis

07.23.2003 - MS03-029: Flaw in Windows Function Could Allow Denial of Service (823803)



View Microsoft related news. A flaw exists in a Windows NT 4.0 Server file management function that can cause a denial of service vulnerability. The flaw results because the affected function can cause memory that it does not own to be freed when a specially crafted request is passed to it. If the application making the request to the function does not carry out any user input validation and allows the specially crafted request to be passed to the function, the function may free memory that it does not own. As a result, the application passing the request could fail.
Full View / NID: 1049 / Submitted by: Travis

07.23.2003 - Enabling the PIPE_CREATE_INSTANCE flag for non-admin users (823492)



View Microsoft related news. This update helps resolve an issue where named pipes are opened with greater access than specified with MAXIMUM_ALLOWED. Download now to help limit access to MAXIMUM_ALLOWED on amed pipe creation.
Full View / NID: 1048 / Submitted by: TACKtech Team

07.22.2003 - Microsoft .NET Framework 1.1: Device Update 2.0



View Microsoft related news. The Microsoft® .NET Framework version 1.1 includes ASP.NET Mobile Controls that enable developers to easily create mobile Web applications. Developers can write and maintain a single application that targets multiple devices. The mobile controls deliver markup language specifically adapted for each browser that accesses the application. ASP.NET Mobile Controls originally shipped in the Microsoft Mobile Internet Toolkit.
Full View / NID: 1045 / Submitted by: TACKtech Team

07.22.2003 - Microsoft Money 2004 Deluxe Trial Version



View Microsoft related news. Try out Microsoft Money 2004 Deluxe today! Download a free 60-day trial version of Money 2004 Deluxe and see how easy it is to manage your personal finances. Supports Windows XP, 2000, ME, 98.
Full View / NID: 1044 / Submitted by: TACKtech Team

07.21.2003 - Microsoft Internet Information Services 5.0 Update for Exchange Server 2003 (329938)



View Microsoft-Exchange related news. This Internet Information Services (IIS 5.0) update corrects an issue that occurs when using Exchange Server 2003 on a clustered system. When Kerberos authentication is enabled an error occurs between IIS 5.0 and the Exchange Server 2003 virtual server's IIS resources. After you install this item, you may have to restart your computer.
Full View / NID: 1041 / Submitted by: TACKtech Team

07.16.2003 - Microsoft Tweak UI 2.10.0.0 for Windows XP and Server 2003



View Microsoft-WindowsXP related news. PowerToys are additional programs that developers work on after a product has been released to manufacturing. They add fun and functionality to the Windows experience. PowerToys are additional programs that developers work on after a product has been released to manufacturing. They add fun and functionality to the Windows experience.
Full View / NID: 1024 / Submitted by: TACKtech Team

07.16.2003 - MSN Messenger 6 Build 6.0.0602



View Messenger related news. Use MSN Messenger to chat with friends and family, share photos, files, and more!
Full View / NID: 1023 / Submitted by: Zero_Tolerance

07.16.2003 - MS03-028: Flaw in ISA Server Error Pages Could Allow Cross-Site Scripting Attack (816456)



View Microsoft related news. ISA Server contains a number of HTML-based error pages that allow the server to respond to a client requesting a Web resource with a customized error. A cross-site scripting vulnerability exists in many of these error pages that are returned by ISA Server under specific error conditions.
Full View / NID: 1022 / Submitted by: Travis

07.16.2003 - MS03-027: Unchecked Buffer in Windows Shell Could Enable System Compromise (821557)



View Microsoft-WindowsXP related news. The Windows shell is responsible for providing the basic framework of the Windows user interface experience. It is most familiar to users as the Windows desktop. It also provides a variety of other functions to help define the user's computing session, including organizing files and folders, and providing the means to start programs. An unchecked buffer exists in one of the functions used by the Windows shell to extract custom attribute information from certain folders. A security vulnerability results because it is possible for a malicious user to construct an attack that could exploit this flaw and execute code on the user’s system.
Full View / NID: 1021 / Submitted by: Travis

07.16.2003 - MS03-026: Buffer Overrun In RPC Interface Could Allow Code Execution (823980)



View Microsoft related news. There is a vulnerability in the part of RPC that deals with message exchange over TCP/IP. The failure results because of incorrect handling of malformed messages. This particular vulnerability affects a Distributed Component Object Model (DCOM) interface with RPC, which listens on TCP/IP port 135. This interface handles DCOM object activation requests that are sent by client machines (such as Universal Naming Convention (UNC) paths) to the server. An attacker who successfully exploited this vulnerability would be able to run code with Local System privileges on an affected system. The attacker would be able to take any action on the system, including installing programs, viewing changing or deleting data, or creating new accounts with full privileges.
Full View / NID: 1020 / Submitted by: Travis

07.16.2003 - Microsoft Plus! Digital Media Edition Update 2 (July 2003)



View Microsoft-WMP related news. This update fixes minor issues with Plus! Audio Converter, Plus! Alarm Clock, Plus! Analog Recorder and Plus! Dancers discovered since the release of Plus! Digital Media Edition. Specifically, this update will help to:
Full View / NID: 1016 / Submitted by: TACKtech Team

07.15.2003 - Microsoft Small Business Server 2000 Service Pack 1a



View Microsoft related news. Small Business Server 2000 Service Pack 1 (SP1) includes updates for the operating system, server applications, and security features that have occurred since the general product availability in April 2001.
Full View / NID: 1011 / Submitted by: Travis

07.15.2003 - Microsoft Internet Explorer 6 SP1 Update (816868)



View InternetExplorer related news. When you try to download a file with Internet Explorer from a Web server, you may receive the following error message: "Internet Explorer cannot download FileName from WebServer."
Full View / NID: 1007 / Submitted by: TACKtech Team

07.14.2003 - MSN Messenger 6.0.0503 Ad-Remover



View Messenger related news. Once again there is another ad remover, you can obtain to get rid of the ads.
Full View / NID: 1003 / Submitted by: Zero_Tolerance

07.10.2003 - MSN Messenger 6 Build 6.0.0503



View Messenger related news. Use MSN Messenger to chat with friends and family, share photos, files, and more!
  • Webcam: Play charades from 10,000 miles away
  • Emoticons: Customize and share your own funny faces
  • Backgrounds: Personalize Messenger to suit your tastes
  • Launch Site: Use Messenger to launch online games
  • Display pictures: Show off the real you with a favorite image or photo
* This version is still compatible with Messenger Plus!
Full View / NID: 988 / Submitted by: Zero_Tolerance

07.09.2003 - Update For Windows XP Error Reporting (821558)



View Microsoft-WindowsXP related news. Windows Error Reporting has a new feature. With this feature, you can automatically view responses to Windows error reports. After you submit an error report, you can immediately view any available information that relates to the issue, such as hotfixes, workarounds, or other relevant information.
Full View / NID: 982 / Submitted by: TACKtech Team

07.09.2003 - MS03-025: Flaw in Windows Message Handling through Utility Manager Could Enable Privilege Elevation (822679)



View Microsoft related news. There is a flaw in the way that Utility Manager handles Windows messages. Windows messages provide a way for interactive processes to react to user events (for example, keystrokes or mouse movements) and to communicate with other interactive processes. A security vulnerability occurs because the control that provides the list of accessibility options to the user does not correctly validate Windows messages that are sent to it. Therefore, it is possible for one process in the interactive desktop to use a specific Windows message to cause the Utility Manager process to run a callback function at the address of its choice. Because the Utility Manager process runs at a higher level of permissions than the first process, this provides the first process with a method of exercising that higher level of permissions.
Full View / NID: 981 / Submitted by: TACKtech Team

07.09.2003 - MS03-024: Buffer Overrun in Windows Could Lead to Data Corruption (817606)



View Microsoft related news. There is a flaw in the way the HTML converter for Microsoft Windows handles a conversion request during a cut-and-paste operation. A vulnerability exists because a specially crafted request to the HTML converter could cause the converter to fail in such a way that it could run code in the context of the currently logged-on user. Because Microsoft Internet Explorer uses this functionality, an attacker could craft a specially formed Web page or HTML e-mail that would cause the HTML converter to run arbitrary code on a user's computer. When a user visits an attacker’s Web site, the attacker could exploit the vulnerability without any other user action.
Full View / NID: 980 / Submitted by: TACKtech Team

07.09.2003 - MS03-023: Buffer Overrun in the HTML Converter Could Allow Code Execution (823559)



View Microsoft related news. There is a flaw in the way the HTML converter for Microsoft Windows handles a conversion request during a cut-and-paste operation. A vulnerability exists because a specially crafted request to the HTML converter could cause the converter to fail in such a way that it could run code in the context of the currently logged-on user. Because Microsoft Internet Explorer uses this functionality, an attacker could craft a specially formed Web page or HTML e-mail that would cause the HTML converter to run arbitrary code on a user's computer. When a user visits an attacker’s Web site, the attacker could exploit the vulnerability without any other user action.
Full View / NID: 979 / Submitted by: TACKtech Team
  Most Viewed  
  Quick Links  
  Top Affiliates  
.....