System administrators are in for a light Patch Tuesday this month as Microsoft released only four bulletins in its monthly security update.
The Microsoft Security Bulletin Summary for November 2011 tackles and addresses multiple vulnerabilities in Microsoft Windows. According to the notice, one of the bulletins is rated "critical", while two are rated "important" and remaining one is rated "moderate."
Majority of the bulletins apply to newer versions of Windows and require a reboot. The critical bulletin only affects Windows Vista, ...
We have been closely monitoring developments on the DUQU malware since our initial blog post when the threat broke the news. And just recently, the Hungary-based security laboratory that initially reported about DUQU released more information that sheds more light into the nature of the said threat.
Their report indicates that a Microsoft Word document that triggers a zero-day kernel exploit was identified as the dropper for DUQU. Upon successful exploitation, the Microsoft Word file drops the installer files that load ...
Microsoft issued a new batch of security bulletins for October with fixes for several vulnerabilities in software products used by millions of computer users worldwide. Eight security bulletins have been released, which include patches for 23 vulnerabilities for software such as Microsoft .NET Framework, Microsoft Silverlight, Internet Explorer, Microsoft Forefront United Access Gateway, and Microsoft Host Integration Server.
Six out of the eight bulletins are rated "important" while two are rated "critical." Some of the patches indicated a required restart after ...
Microsoft is keeping it light this September after releasing 13 security bulletins last August. The vendor released five security bulletins this month, all of which were rated "important." These bulletins resolve 15 flaws found in several software. One of the bulletins addresses five vulnerabilities (MS11-072) in Microsoft Excel and affects even the newest and Mac versions of the program. To successfully exploit these, a potential attacker needs to create malicious Excel files and distribute these via different social engineering ...
We've been continuously receiving infection reports, specifically from the APAC and NABU regions, related to a certain malware that uses Remote Desktop Protocol to propagate.
Detected as WORM_MORTO.SMA, this malware drops its component files, including a .DLL file, which is dropped onto the Windows folder. The said .DLL file, which bears the file name clb.dll, is detected as WORM_MORTO.SM. WORM_MORTO.SM acts as a loader for the malware and places its own clb.dll in the %Windows% folder to exploit the way by ...
