Telling Tales in Proto-Indo-European
linguists knew that all modern Indo-European languages descended from a single tongue. Called Proto-Indo-European, or PIE, it was spoken by a people who lived from roughly 4500 to 2500 B.C., and left no written texts.
Thursday, September 26, 2013
Friday, July 19, 2013
'Game Of Thrones' Kills It At San Diego Comic-Con
'Game Of Thrones' Kills It At San Diego Comic-Con: The Red Wedding still looms large as actors Richard Madden, Michelle Fairley and others eulogized the key scene at Comic-Con.
Friday, April 27, 2012
Friday, April 27, 2007
Monday, July 18, 2005
Top 10 Most Prevalent Global Malware
Top 10 Most Prevalent Global Malware (from July 8 to July 14, 2005)
JAVA_BYTEVER.A
HTML_NETSKY.P
SPYW_GATOR
TSPY_SMALL.SN
SPYW_DASHBAR.300
WORM_NETSKY.P
WORM_SOBER.K
TROJ_DYFUCA.I
SPYW_WEBSEARCH.A
ADW_HOTBAR.A
JAVA_BYTEVER.A
HTML_NETSKY.P
SPYW_GATOR
TSPY_SMALL.SN
SPYW_DASHBAR.300
WORM_NETSKY.P
WORM_SOBER.K
TROJ_DYFUCA.I
SPYW_WEBSEARCH.A
ADW_HOTBAR.A
Friday, July 15, 2005
Microsoft Security issues
Internet-Helpers.com
2005 Vulnerability in JView Profiler Could Allow Remote Code Execution (903235): MS05-037
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2 Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1 Critical
Jul 12, 2005 Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214): MS05-036
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
Jul 12, 2005 Vulnerability in Microsoft Word Could Allow Remote Code Execution (903672): MS05-035
Affected Software: Word 2000, Office 2000, Works 2001, Office XP, Word 2002, Works 2002, Works 2003, Works 2004 Word 2000 SP3, Office 2000 Service Pack 3, Works 2001 Gold, Office XP SP3 , Word 2002 SP3, Works 2002 Gold, Works 2003 Gold, Works 2004 Gold Critical
Jun 14, 2005 Cumulative Security Update for ISA Server 2000 (899753): MS05-034
Affected Software: ISA Server 2000, Small Business Server 2000, Small Business Server 2003 ISA Server 2000 SP2, Small Business Server 2000 SP3, Small Business Server 2000 SP4, Small Business Server 2003 Gold, Small Business Server 2003 SP1 Moderate
Jun 14, 2005 Vulnerability in Telnet Client Could Allow Information Disclosure (896428): MS05-033
Affected Software: Services For Unix 2.2, Services For Unix 3.0, Services For Unix 3.5, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition Services For Unix 2.2 Gold, Services For Unix 3.0 Gold, Services For Unix 3.5 Gold, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1 Moderate
Jun 14, 2005 Vulnerability in Microsoft Agent Could Allow Spoofing (890046): MS05-032
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Moderate
Jun 14, 2005 Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (898458): MS05-031
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Microsoft Interactive Training (Step-by-Step) Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Microsoft Interactive Training Important
Jun 14, 2005 Cumulative Security Update in Outlook Express (897715): MS05-030
Affected Software: Outlook Express 5.5, Outlook Express 6.0, Outlook Express 6 on Windows Server 2003, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 5.5, Internet Explorer 6.0 Internet Explorer 5.5 SP2, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Important
Jun 14, 2005 Vulnerability in Outlook Web Access for Exchange Server 5.5 Could Allow Cross-Site Scripting Attacks (895179): MS05-029
Affected Software: Exchange Server 5.5 Exchange Server 5.5 SP4 Important
Jun 14, 2005 Vulnerability in Web Client Service Could Allow Remote Code Execution (896426): MS05-028
Affected Software: Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition Windows XP Service Pack 1, Windows Server 2003 Gold Important
Jun 14, 2005 Vulnerability in Server Message Block Could Allow Remote Code Execution (896422): MS05-027
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1 Critical
Jun 14, 2005 Vulnerability in HTML Help Could Allow Remote Code Execution (896358): MS05-026
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
Jun 14, 2005 Cumulative Security Update for Internet Explorer (883939): MS05-025
Affected Software: Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Internet Explorer 5.01 SP3, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
May 10, 2005 Vulnerability in Web View Could Allow Remote Code Execution (894320): MS05-024
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Important
Apr 12, 2005 Vulnerabilities in Microsoft Word May Lead to Remote Code Execution (890169): MS05-023
Affected Software: Word 2000, Office 2000, Works 2001, Office XP, Word 2002, Works 2002, Works 2003, Works 2004, Office 2003, Word 2003 Word 2000 SP3, Office 2000 Service Pack 3, Works 2001 Gold, Office XP SP3 , Word 2002 SP3, Works 2002 Gold, Works 2003 Gold, Works 2004 Gold, Office 2003 SP1, Word 2003 SP1 Critical
Apr 12, 2005 Vulnerability in MSN Messenger Could Lead to Remote Code Execution (896597): MS05-022
Affected Software: MSN Messenger 6 MSN Messenger Gold Critical
Apr 12, 2005 Vulnerability in Exchange Server Could Allow Remote Code Execution (894549): MS05-021
Affected Software: Exchange 2000 Server, Exchange 2000 Enterprise Server, Exchange Server 2003 Exchange 2000 SP3, Exchange Server 2003 Gold, Exchange Server 2003 SP1 Critical
Apr 12, 2005 Cumulative Security Update for Internet Explorer (890923): MS05-020
Affected Software: Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Internet Explorer 5.01 SP3, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows XP Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
Apr 12, 2005 Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service (893066): MS05-019
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
Apr 12, 2005 Vulnerability in Windows Kernel Could Allow Elevation of Privilege and Denial of Service (890859): MS05-018
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Important
Apr 12, 2005 Vulnerability in Message Queuing Could Allow Code Execution (892944): MS05-017
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows 98, Windows 98 SE Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1 Important
Apr 12, 2005 Vulnerability in Windows Shell that Could Allow Remote Code Execution (893086): MS05-016
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Important
Feb 8, 2005 Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution (888113): MS05-015
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
Feb 8, 2005 Cumulative Security Update for Internet Explorer (867282): MS05-014
Affected Software: Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Internet Explorer 5.01 SP3, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows XP Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
Feb 8, 2005 Vulnerability in the DHTML Editing ActiveX Control could allow code execution (891781): MS05-013
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold
2005 Vulnerability in JView Profiler Could Allow Remote Code Execution (903235): MS05-037
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2 Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1 Critical
Jul 12, 2005 Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214): MS05-036
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
Jul 12, 2005 Vulnerability in Microsoft Word Could Allow Remote Code Execution (903672): MS05-035
Affected Software: Word 2000, Office 2000, Works 2001, Office XP, Word 2002, Works 2002, Works 2003, Works 2004 Word 2000 SP3, Office 2000 Service Pack 3, Works 2001 Gold, Office XP SP3 , Word 2002 SP3, Works 2002 Gold, Works 2003 Gold, Works 2004 Gold Critical
Jun 14, 2005 Cumulative Security Update for ISA Server 2000 (899753): MS05-034
Affected Software: ISA Server 2000, Small Business Server 2000, Small Business Server 2003 ISA Server 2000 SP2, Small Business Server 2000 SP3, Small Business Server 2000 SP4, Small Business Server 2003 Gold, Small Business Server 2003 SP1 Moderate
Jun 14, 2005 Vulnerability in Telnet Client Could Allow Information Disclosure (896428): MS05-033
Affected Software: Services For Unix 2.2, Services For Unix 3.0, Services For Unix 3.5, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition Services For Unix 2.2 Gold, Services For Unix 3.0 Gold, Services For Unix 3.5 Gold, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1 Moderate
Jun 14, 2005 Vulnerability in Microsoft Agent Could Allow Spoofing (890046): MS05-032
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Moderate
Jun 14, 2005 Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (898458): MS05-031
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Microsoft Interactive Training (Step-by-Step) Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Microsoft Interactive Training Important
Jun 14, 2005 Cumulative Security Update in Outlook Express (897715): MS05-030
Affected Software: Outlook Express 5.5, Outlook Express 6.0, Outlook Express 6 on Windows Server 2003, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 5.5, Internet Explorer 6.0 Internet Explorer 5.5 SP2, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Important
Jun 14, 2005 Vulnerability in Outlook Web Access for Exchange Server 5.5 Could Allow Cross-Site Scripting Attacks (895179): MS05-029
Affected Software: Exchange Server 5.5 Exchange Server 5.5 SP4 Important
Jun 14, 2005 Vulnerability in Web Client Service Could Allow Remote Code Execution (896426): MS05-028
Affected Software: Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition Windows XP Service Pack 1, Windows Server 2003 Gold Important
Jun 14, 2005 Vulnerability in Server Message Block Could Allow Remote Code Execution (896422): MS05-027
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1 Critical
Jun 14, 2005 Vulnerability in HTML Help Could Allow Remote Code Execution (896358): MS05-026
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
Jun 14, 2005 Cumulative Security Update for Internet Explorer (883939): MS05-025
Affected Software: Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Internet Explorer 5.01 SP3, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
May 10, 2005 Vulnerability in Web View Could Allow Remote Code Execution (894320): MS05-024
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Important
Apr 12, 2005 Vulnerabilities in Microsoft Word May Lead to Remote Code Execution (890169): MS05-023
Affected Software: Word 2000, Office 2000, Works 2001, Office XP, Word 2002, Works 2002, Works 2003, Works 2004, Office 2003, Word 2003 Word 2000 SP3, Office 2000 Service Pack 3, Works 2001 Gold, Office XP SP3 , Word 2002 SP3, Works 2002 Gold, Works 2003 Gold, Works 2004 Gold, Office 2003 SP1, Word 2003 SP1 Critical
Apr 12, 2005 Vulnerability in MSN Messenger Could Lead to Remote Code Execution (896597): MS05-022
Affected Software: MSN Messenger 6 MSN Messenger Gold Critical
Apr 12, 2005 Vulnerability in Exchange Server Could Allow Remote Code Execution (894549): MS05-021
Affected Software: Exchange 2000 Server, Exchange 2000 Enterprise Server, Exchange Server 2003 Exchange 2000 SP3, Exchange Server 2003 Gold, Exchange Server 2003 SP1 Critical
Apr 12, 2005 Cumulative Security Update for Internet Explorer (890923): MS05-020
Affected Software: Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Internet Explorer 5.01 SP3, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows XP Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
Apr 12, 2005 Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service (893066): MS05-019
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
Apr 12, 2005 Vulnerability in Windows Kernel Could Allow Elevation of Privilege and Denial of Service (890859): MS05-018
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Important
Apr 12, 2005 Vulnerability in Message Queuing Could Allow Code Execution (892944): MS05-017
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows 98, Windows 98 SE Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1 Important
Apr 12, 2005 Vulnerability in Windows Shell that Could Allow Remote Code Execution (893086): MS05-016
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Important
Feb 8, 2005 Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution (888113): MS05-015
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
Feb 8, 2005 Cumulative Security Update for Internet Explorer (867282): MS05-014
Affected Software: Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Internet Explorer 5.01 SP3, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows XP Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Critical
Feb 8, 2005 Vulnerability in the DHTML Editing ActiveX Control could allow code execution (891781): MS05-013
Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold
Thursday, July 14, 2005
Internet-Helpers.com
Internet-Helpers.com
Two serious security flaws in a technology widely used for network authentication could expose a swath of software products to hacker attack, experts have warned.
The flaws could allow an online intruder to crash or gain access to computers running Kerberos, a freely available authentication technology that was developed by the Massachusetts Institute of Technology.
MIT rates both flaws "critical," according to two advisories released Tuesday. The university also made available patches to fix the problems and stated that exploitation of the bugs by attackers "is believed to be difficult."
Several software makers have already released updates to their products to address the problem. Red Hat, Turbolinux and Gentoo have issued fixes for their Linux versions, for example. Sun Microsystems on Tuesday issued two alerts acknowledging that several versions of Solaris are vulnerable, but it does not have a patch available yet.
Because Kerberos is so widely used, more vendors are likely to publish security alerts, said Brian Grayek, chief technology officer at Preventsys, a vulnerability management company in Carlsbad, Calif. "I think you are going to see a floodgate of patches open," he said.
Microsoft also uses Kerberos, but a homegrown version that is not affected by the flaws.
Both bugs affect Kerberos 5 Release 1.4.1 as well as earlier versions, according to MIT.
Independent security-monitoring company Secunia rates the issues "highly critical," its second most serious rating. The French Security Incident Response Team, or FrSIRT, deems the bugs "critical," its highest ranking.
Preventsys' Grayek agreed that the vulnerabilities are serious but noted that crafting attacks is difficult. "It is going to take somebody with a great deal of knowledge to turn these vulnerabilities into exploits," he said.
This isn't the first flaw in Kerberos. In March, MIT warned of a "serious" bug in the telnet program supplied with Kerberos. Last August, a "critical" flaw was discovered and patched.
Earlier this month a vulnerability in another widely used software component exposed some of the same products to attack. That flaw affects the open-source "zlib" data compression technology. Using a specially crafted file, an attacker could take control over a computer or crash applications that use zlib.
Two serious security flaws in a technology widely used for network authentication could expose a swath of software products to hacker attack, experts have warned.
The flaws could allow an online intruder to crash or gain access to computers running Kerberos, a freely available authentication technology that was developed by the Massachusetts Institute of Technology.
MIT rates both flaws "critical," according to two advisories released Tuesday. The university also made available patches to fix the problems and stated that exploitation of the bugs by attackers "is believed to be difficult."
Several software makers have already released updates to their products to address the problem. Red Hat, Turbolinux and Gentoo have issued fixes for their Linux versions, for example. Sun Microsystems on Tuesday issued two alerts acknowledging that several versions of Solaris are vulnerable, but it does not have a patch available yet.
Because Kerberos is so widely used, more vendors are likely to publish security alerts, said Brian Grayek, chief technology officer at Preventsys, a vulnerability management company in Carlsbad, Calif. "I think you are going to see a floodgate of patches open," he said.
Microsoft also uses Kerberos, but a homegrown version that is not affected by the flaws.
Both bugs affect Kerberos 5 Release 1.4.1 as well as earlier versions, according to MIT.
Independent security-monitoring company Secunia rates the issues "highly critical," its second most serious rating. The French Security Incident Response Team, or FrSIRT, deems the bugs "critical," its highest ranking.
Preventsys' Grayek agreed that the vulnerabilities are serious but noted that crafting attacks is difficult. "It is going to take somebody with a great deal of knowledge to turn these vulnerabilities into exploits," he said.
This isn't the first flaw in Kerberos. In March, MIT warned of a "serious" bug in the telnet program supplied with Kerberos. Last August, a "critical" flaw was discovered and patched.
Earlier this month a vulnerability in another widely used software component exposed some of the same products to attack. That flaw affects the open-source "zlib" data compression technology. Using a specially crafted file, an attacker could take control over a computer or crash applications that use zlib.
Subscribe to:
Posts (Atom)