National Cyber Alert System:
The operating system is the most fundamental program that runs on your computer. It serves as the basis for how everything else works.
What is an operating system?
An operating system (OS) is the main program on a computer. It performs a variety of functions, including
•determining what types of software you can [...]
Microsoft has released updates for multiple vulnerabilities in Internet Explorer, including the vulnerability detailed in Microsoft Security Advisory 979352 and US-CERT Vulnerability Note VU#492515.
By convincing a user to view a specially crafted HTML document or Microsoft Office document, an attacker may be able to execute arbitrary code with the privileges of the user.
III. Solution
Apply updates
Microsoft [...]
John from Atkinson, NH asks:
With Comcast internet service and IE Explorer I have the same E-mails in Outlook. There is a Task/Error log of bad E-mail addresses that you can’t delete even from the Options/Maintenance. I read your recommendation to delete Outlook Express because of history and virus
issues. Do I need to load another Mail [...]
Malware Spam Messages Related to Microsoft Outlook, SSL Certificates
US-CERT is aware of public reports of an increased number of spam messages related to Microsoft Outlook or SSL certificates. These messages contain a malicious file or link that claims to provide an update, but in reality, attempts to launch malware on a user’s system. Typically, the [...]
US-Cert — ActiveX controls built with Microsoft ATL fail to properly handle initialization data
Overview
ActiveX controls that are built using a Microsoft ATL template may fail to properly handle initialization data, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.
I. Description
Microsoft Active Template Library (ATL) is a set of C++ [...]
A massive phishing scam similar to the recent bank fraud scams is being sent in emails that look like the following:
From: “Microsoft Customer Support”
Subject: Update for Microsoft Outlook
Critical Update
Update for Microsoft Outlook / Outlook Express (KB910721)
Brief Description
Microsoft has released an update for Microsoft Outlook / Outlook Express. This update is critical and provides you with [...]
Microsoft has released an update to address vulnerabilities in Microsoft Windows, Office, and Internet Explorer as part of the Microsoft Security Bulletin Summary for June 2009. These vulnerabilities may allow an attacker to execute arbitrary code, operate with elevated privileges, or obtain sensitive information.
Microsoft Releases Advance Notification for May Security Bulletin
added May 7, 2009 at 02:58 pm
Microsoft has issued a Security Bulletin Advance Notification indicating that the May release cycle will contain one bulletin with a maximum severity rating of Critical. The notification states that the Critical bulletin is for Microsoft PowerPoint. The release is scheduled for Tuesday, [...]
Microsoft has released updates to address vulnerabilities in Microsoft Windows, Office, Internet Explorer, and Forefront Edge Security as part of the Microsoft Security Bulletin Summary for April 2009. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or operate with escalated privileges.
Microsoft Windows Malicious Software Removal Tool
Microsoft has released an [...]
Microsoft has released security advisory 969136 to address reports of a vulnerability in Microsoft Office PowerPoint. By convincing a user to open a specially crafted Office file, a remote attacker may be able to gain access to the affected system with the same rights as the user running PowerPoint.
US-CERT encourages users and administrators to review [...]
BugTraq Security Tip Of The Day Computer And Internet Security News Current Security Alerts Network Vulnerability Notes Homeland Security