Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] Microsoft fixes three flaws in XP SP2

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] Microsoft fixes three flaws in XP SP2
Date: Thu, 16 Dec 2004 01:02:13 -0600 (CST) 
http://www.smh.com.au/news/Breaking/Microsoft-fixes-three-flaws-in-XP-SP2/2004/12/15/1102787120589.html

By Sam Varghese
December 15, 2004

Microsoft has released five security advisories for the month, all of 
which are rated important - second on a four-tier scale devised by the 
company - and affect various versions of Windows.

The advisories, released on Tuesday US time, included three patches 
for holes in service pack 2 for Windows XP which was released in 
August. One patch fixes a flaw in some versions of Windows which was 
made public some weeks ago.

Earlier this month, Microsoft issued an out-of-schedule patch to fix a 
critical flaw in Internet Explorer.

The flaws are in WordPad, the Dynamic Host Control Protocol 
implementation in Windows NT 4.0, HyperTerminal, the Windows Kernel 
and the Local Security Authority Subsystem Service and Windows 
Internet Naming Service.

The company has not addressed a longstanding flaw in Windows 2000, 
details of which were submitted by eEye Digital Security 134 days ago.

A week ago, Microsoft said it was yet to asecertain the severity of 
this bug.

A second vulnerability discovered by eEye affects Windows Me, Windows 
2000, Windows XP and Windows 2003.

Both these vulnerabilities can be remotely exploited, according to 
eEye, a company which has found numerous serious flaws in various 
Windows versions in the past, including the vulnerabilities that 
resulted in attacks by worms like Sasser, Witty, and Code Red.



_________________________________________
Open Source Vulnerability Database (OSVDB) Everything is Vulnerable - 
http://www.osvdb.org/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] Microsoft fixes three flaws in XP SP2, InfoSec News <=
Previous by Date:  [ISN] NSA to take lead on Defense info assurance, InfoSec News
Next by Date:  [ISN] Default passwords on Cisco messaging, security products could pose risks, vendor warns, InfoSec News
Previous by Thread:  [ISN] NSA to take lead on Defense info assurance, InfoSec News
Next by Thread:  [ISN] Default passwords on Cisco messaging, security products could pose risks, vendor warns, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]