Microsoft Security Advisory (956187): Increased Threat for DNS Spoofing VulnerabilityMicrosoft released Microsoft Security Bulletin MS08-037 on July 8, 2008, offering security updates to protect customers against Windows Domain Name System (DNS) spoofing attacks. Microsoft released this update in coordination with other DNS vendors who were also similarly impacted. Since the coordinated release of these updates, the threat to DNS systems has increased due to a greater public understanding of the attacks, as well as detailed exploit code being published on the Internet.
Microsoft is not currently aware of active attacks utilizing this exploit code or of customer impact at this time. However, attacks are likely imminent due to the publicly posted proof of concept and Microsoft is actively monitoring this situation to keep customers informed and to provide customer guidance as necessary.
Category Archives: Security
MS: Increased Threat for DNS Spoofing Vulnerability
How to Approach Access Control in the Social Networking Age
How to Approach Access Control in the Social Networking AgeLike instant messaging and e-mail before it, social networking can cause worries to companies that haven’t learned to adapt - and real trouble to companies that haven’t learned how to manage it.
Enterprises are beginning to adopt social networking applications. They’re doing it for the same reasons millions of consumers do: because they offer a fast, easy-to-use way to keep in touch, organize activities and share ideas.
However, businesses and IT executives are wary, and for good reason. Whether they like it or not, employees are signing up for these tools regardless of whether it’s company policy or not. Younger employees joining the work force have grown up with social networking technologies, and businesses are being forced to play catch-up.
Disaster-Recovery Lesson
Disaster-Recovery Lessons from Vancouver Fire - Headline WatchIf you’re working on a disaster-recovery plan, you might take a note from a massive fire in downtown Vancouver, B.C.
CBCNews.ca reports that power isn’t expected to be restored to the area until sometime Tuesday after the explosion of an underground transformer started the fire Monday. The fire created so much heat and smoke that crews from BC Hydro couldn’t inspect the damage until more than seven hours later, according to the Vancouver Sun.
E-mail provider Hushmail reports on its Web site that [name removed] its hosting company switched over to generators. But the fire department drew so much water to fight the fire that it reduced water pressure in the mains to the point that [the] water-cooled generator couldn’t operate. Then it was lights out in more ways than one.
Happily, Hushmail reports its service has since been restored.
Microsoft Security Advisory: Vuln in MS Word Could Allow Remote Code Execution
Microsoft Security Advisory (953635): Vulnerability in Microsoft Word Could Allow Remote Code Execution
Microsoft is investigating new public reports of a possible vulnerability in Microsoft Office Word 2002 Service Pack 3. Our initial investigation indicates that customers who use all other supported versions of Microsoft Office Word, Microsoft Office Word Viewer, Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats, and Microsoft Office for Mac are not affected.
At this time, Microsoft is aware of limited, targeted attacks that attempt to use this vulnerability… Microsoft is investigating the public reports and customer impact. Upon completion of this investigation, Microsoft will take the appropriate action to help protect our customers. This may include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs.
Microsoft Security Advisory: Vuln in the ActiveX Control for the Snapshot Viewer for Microsoft Access Could Allow Remote Code Execution
Microsoft Security Advisory (955179): Vulnerability in the ActiveX Control for the Snapshot Viewer for Microsoft Access Could Allow Remote Code Execution
Microsoft is investigating active, targeted attacks leveraging a potential vulnerability in the ActiveX control for the Snapshot Viewer for Microsoft Access. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user.
Microsoft Security Advisory: Threat Using Apple’s Safari on the Windows Platform
Microsoft Security Advisory (953818): Blended Threat from Combined Attack Using Apple’s Safari on the Windows PlatformMicrosoft is investigating new public reports of a blended threat that allows remote code execution on all supported versions of Windows XP and Windows Vista when Apple’s Safari for Windows has been installed. Safari is not installed with Windows XP or Windows Vista by default; it must be installed independently or through the Apple Software Update application. Customers running Safari on Windows should review this advisory.
At the present time, Microsoft is unaware of any attacks attempting to exploit this blended threat… Apple Support has released a security advisory that addresses the vulnerability in Apple’s Safari 3.1.2 for Windows. Please see Apple security advisory About the security content of Safari 3.1.2 for Windows for more information.
Mitigating Factors:
- Customers who have changed the default location where Safari downloads content to the local drive are not affected by this blended threat.
A Guide to Practical PCI Compliance
Good advice from CIO Magazine:
Myriad merchants find themselves at the end of the PCI compliance barrel and are spending significant amounts of time, money and effort in achieving PCI compliance. Advice from companies that have been there can help smooth your path.