Tom Ferris of www.security-protocols.com has discovered a new IE vulnerability, claiming that this is remotely exploitable. No vulnerability details was disclosed, though. But the author said he had reported this to Microsoft last August 14. We might as well expect this one of the upcoming MS security bulletins. Check out his announcement. He also has…

Microsoft has just released an advisory disclosing how a flaw in the Windows Firewall graphical user interface may hide an exception from showing up in the Exceptions list. This unexpected behavior is be triggered by a malformed registry entry. Windows Firewall is configured to block incoming network connections by default. However, a system administrator can…

An email is currently being spammed which gives news about Hurricane Katrina. However that link it provides is to a site containing an exploit detected as JS_PHEL.K. Upon viewing of the said site, an hta file named w.hta is downloaded to the system. W.HTA then drops the file C:fh4uh.exe which downloads and executes win32sbk.exe from…

We have recently witnessed the arrival of a worm that takes advantage of the Windows Plug and Play vulnerability in order for it to propagate. It utilizes MS 05-039 and is given the name WORM_ZOTOB. As of the moment we currently have 6 detections of this said worm. What’s interesting about this new malware are…

In case you haven’t seen it yet, read-up on this 0-day exploit and MS’s analysis here.Mitigating Factors: The Microsoft DDS Library Shape Control (Msdds.dll) does not ship in Windows.The Microsoft DDS Library Shape Control (Msdds.dll) does not ship in the .NET Framework. Customers who do not have Msdds.dll on their systems are not affected by…