NEW Windows XP Security Hole! << Urgent

Shane · **Posted:** September 23rd, 2006, 12:22 pm

http://www.twit.tv/sn58 wrote:

Two serious Windows flaws have surfaced today. One, a zero-day exploit, makes it possible for any web site (or HTML email) to take over a Windows machine, even if it's been fully patched.

I stress that there is no "official" patch yet from Microsoft.

You can however get a patch put out by ZERT - Zeroday Emergency Response Team.

You can find instructions for the patch and how to test if your vulnerable at this page.

You can find out more about this Security Now episode here, and get info to download it at TWiT.tv if you want.

It's a good idea to patch it even if you don't use Internet Explorer as your browser because some of you guys will use Outlook Express or Outlook which uses IE behind the scenes to display HTML email.

I just thought I should post this here, to warn you all.

-Shane

PS: The Firefox and Opera browsers are safe!

Adbot · **Posted:** September 23rd, 2006, 12:22 pm

Sev · **Posted:** September 23rd, 2006, 1:59 pm

Thanks for the wamrimg! Even though I dont use IE (Firefox rules all) :wink:

MattVortex · **Posted:** September 23rd, 2006, 4:15 pm

IE7 RC1 seems to be safe from it as well.

(But Opera rules all anyway)

Jeff · **Posted:** September 23rd, 2006, 7:57 pm

This is actually very serious, if you don't realize. A cPanel bug found a day ago had to do with this exploit as well.

MasterOfTheVortex wrote:

IE7 RC1 seems to be safe from it as well.

(But Opera rules all anyway)

You just had to make that comment. Lol. :lol:

Shane · **Posted:** September 26th, 2006, 6:14 pm

This is now fixed from a Windows Update that I recieved today. The number is: KB925486, so run this even if you have put the temp patch on.

Shane

Ranging God · **Posted:** September 27th, 2006, 8:40 am

More power to Apple!!!!!!!!!!!

Adbot · **Posted:** September 27th, 2006, 8:40 am

Anubis · **Posted:** September 27th, 2006, 9:45 am

Ranging God wrote:

More power to Apple!!!!!!!!!!!

I'm thinking of getting a Mac also. lol.

Anyways, know that IE7 is still in beta stages so there are bound to be bugs and such in it. Honestly, apart from the pop-ups I get through it it's not that much worse than anything else. You'll have to scan your comp for spyware and adware every now and then anyway, doesn't matter ho much comes through unless it's -really- messes up your machine.

However, this is not the topic to discuss that so I'll shut up. =]

MattVortex · **Posted:** September 27th, 2006, 12:09 pm

It seems Anubis is clever, as well as Brad. Im going to be getting an iMac once i have enough money for it.

Apple ftw!

Tidus · **Posted:** September 27th, 2006, 6:55 pm

PC+Apple ftw.

PC for games, and Apple for everything else.

Because most of games don't work perfectly on my mac

The Haysta · **Posted:** September 28th, 2006, 1:58 am

Good thing I use FireFox. I got the update anyway.

God Anson · **Posted:** November 28th, 2006, 6:51 pm

MasterOfTheVortex wrote:

(But Opera rules all anyway)

The MOST secure browser EVER!!!

http://lynx.browser.org/

Sure. It might not have cute graphics. But there are NO exploits for it. I normally have 10+ Lynx windows open at a time on my Sun Solaris 10 box at work. Memory footprint is extremely tiny. And, it's super fast.

Yes. I'm a Unix geek.