A new vulnerability has been found in Snapshot Viewer for Microsoft Access which is being exploited. The flaw lies in the Snapshot Viewer ActiveX control, which ships with all supported versions of Microsoft Office Access except Microsoft Access 2007 according to Microsoft. Snapshot Viewer lets PC users view a Microsoft Access report without having to […]
Microsoft warns that an unpatched Word vulnerability has become the subject of targeted attacks.According to Microsoft’s testing, it only affects Microsoft Office Word 2002 Service Pack 3. Using the vulnerability a hacker can inject hostile code onto vulnerable system. Redmond has published workarounds as a stop-gap measure while its researchers investigate the flaw in greater […]
Many site pages have been injected with URL containing malicious Java Script that can download malicious files, major of these sites have been running phpBB forum software. Presently the Java Script file is downloading file associated with Zlob.
Storms back, and back to generic e-Card spam. From yesterday we have seen a surge in e-Card spam. Current Quick Heal detection for E-card is Win32.Email-Worm.Zhelatin.vg. Spamed mails have Subject Line: Your ecard joke is waiting new ecard waiting Now this is funny online greeting waiting You have an ecard We have a ecard surprise […]
A major update to Microsoft’s Windows Vista operating system could leave computers vulnerable to hackers and malware as the service pack prevents some antivirus programs from operating, the company said. The list of security products that Windows Vista Service Pack 1 blocks includes Zone Alarm Security Suite 7.1, Trend Micro Internet Security 2008, and BitDefender […]
Yesterday 17 people ages between 17-26 were arrested on charges stemming from alleged botnet related activities, which resulted in $45 Million in damages. The investigation was started in 2005, over the course of the two years that this network was under investigation, the network took control of up to a million computers. When you figure […]
The strom gang is using series of Valentine images to lure the users, the Web site produces random images with each visit. If you open the site, you’ll be prompted to download the file after five seconds. The download filename will be valentine.exe Some of the Subject Line used in spamed emails having links to […]
Microsoft Security Bulletin February 2008 has been released. In this release in total 11 issuse have been fixed, related to Media file formats, LSASS, Message Queuing Service, DirectShow, Macrovision Driver, Internet Explorer, Office, Active Directory. For more details visit Microsoft Security Bulletin
A new wave of Strom e-mails have been observed today, this time it is using Valentine’s Day messages. The email message has a catchy Subject line, the body is not that big it has a link from where the threat is installed on the system. The current downloaded file name is “withlove.exe” Image of the […]
Update 1. MS08-001 Multiple vulnerabilities in the TCP/IP stack lead to arbitrary code execution and denial of service. This update replaces MS06-032. Update 2. MS08-002 Input validation errors in Local Security Authority Subsystem Service (LSASS) lead to local exploitation and privilege escalation. For more Information about MS08-001 and MS08-002
