http://www.vistaheads.com/forums en Sat, 21 Nov 2009 02:19:15 GMT vBulletin 60 http://www.vistaheads.com/forums/images/ca_morpheus_blue/misc/rss.jpg http://www.vistaheads.com/forums http://www.vistaheads.com/forums/microsoft-security-bulletins/457531-ms09-068-important-vulnerability-microsoft-office-word-could-allow-remote-code-execution-976307-a.html Tue, 10 Nov 2009 19:10:05 GMT Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability that could allow remote code execution if a... Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability that could allow remote code execution if a user opens a specially crafted Word file. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

More... ]]> Microsoft Security Bulletins Steve http://www.vistaheads.com/forums/microsoft-security-bulletins/457531-ms09-068-important-vulnerability-microsoft-office-word-could-allow-remote-code-execution-976307-a.html http://www.vistaheads.com/forums/microsoft-security-bulletins/457532-ms09-067-important-vulnerabilities-microsoft-office-excel-could-allow-remote-code-execution-972652-a.html Tue, 10 Nov 2009 19:10:05 GMT Bulletin Severity Rating:Important - This security update resolves several privately reported vulnerabilities in Microsoft Office Excel. The... Bulletin Severity Rating:Important - This security update resolves several privately reported vulnerabilities in Microsoft Office Excel. The vulnerabilities could allow remote code execution if a user opens a specially crafted Excel file. An attacker who successfully exploited any of these vulnerabilities could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

More... ]]> Microsoft Security Bulletins Steve http://www.vistaheads.com/forums/microsoft-security-bulletins/457532-ms09-067-important-vulnerabilities-microsoft-office-excel-could-allow-remote-code-execution-972652-a.html http://www.vistaheads.com/forums/microsoft-security-bulletins/457533-ms09-066-important-vulnerability-active-directory-could-allow-denial-service-973309-a.html Tue, 10 Nov 2009 19:10:05 GMT Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Active Directory directory service, Active... Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Active Directory directory service, Active Directory Application Mode (ADAM), and Active Directory Lightweight Directory Service (AD LDS). The vulnerability could allow denial of service if stack space was exhausted during execution of certain types of LDAP or LDAPS requests. This vulnerability only affects domain controllers and systems configured to run ADAM or AD LDS.

More... ]]> Microsoft Security Bulletins Steve http://www.vistaheads.com/forums/microsoft-security-bulletins/457533-ms09-066-important-vulnerability-active-directory-could-allow-denial-service-973309-a.html http://www.vistaheads.com/forums/microsoft-security-bulletins/457534-ms09-065-critical-vulnerabilities-windows-kernel-mode-drivers-could-allow-remote-code-execution-969947-a.html Tue, 10 Nov 2009 19:10:05 GMT Bulletin Severity Rating:Critical - This security update resolves several privately reported vulnerabilities in the Windows kernel. The most severe... Bulletin Severity Rating:Critical - This security update resolves several privately reported vulnerabilities in the Windows kernel. The most severe of the vulnerabilities could allow remote code execution if a user viewed content rendered in a specially crafted Embedded OpenType (EOT) font. In a Web-based attack scenario, an attacker would have to host a Web site that contains specially crafted embedded fonts that are used to attempt to exploit this vulnerability. In addition, compromised Web sites and Web sites that accept or host user-provided content could contain specially crafted content that could exploit this vulnerability. An attacker would have no way to force users to visit a specially crafted Web site. Instead, an attacker would have to convince the user to visit the Web site, typically by getting them to click a link in an e-mail message or Instant Messenger message that takes the user to the attacker's site.

More... ]]> Microsoft Security Bulletins Steve http://www.vistaheads.com/forums/microsoft-security-bulletins/457534-ms09-065-critical-vulnerabilities-windows-kernel-mode-drivers-could-allow-remote-code-execution-969947-a.html http://www.vistaheads.com/forums/microsoft-security-bulletins/457535-ms09-064-critical-vulnerability-license-logging-server-could-allow-remote-code-execution-974783-a.html Tue, 10 Nov 2009 19:10:05 GMT Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in Microsoft Windows 2000. The vulnerability... Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in Microsoft Windows 2000. The vulnerability could allow remote code execution if an attacker sent a specially crafted network message to a computer running the License Logging Server. An attacker who successfully exploited this vulnerability could take complete control of the system. Firewall best practices and standard default firewall configurations can help protect networks from attacks that originate outside the enterprise perimeter.

More... ]]> Microsoft Security Bulletins Steve http://www.vistaheads.com/forums/microsoft-security-bulletins/457535-ms09-064-critical-vulnerability-license-logging-server-could-allow-remote-code-execution-974783-a.html http://www.vistaheads.com/forums/microsoft-security-bulletins/457536-ms09-063-critical-vulnerability-web-services-devices-api-could-allow-remote-code-execution-973565-a.html Tue, 10 Nov 2009 19:10:05 GMT Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in the Web Services on Devices Application... Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in the Web Services on Devices Application Programming Interface (WSDAPI) on the Windows operating system. The vulnerability could allow remote code execution if an affected Windows system receives a specially crafted packet. Only attackers on the local subnet would be able to exploit this vulnerability. This security update is rated Critical for all supported editions of Windows Vista and Windows Server 2008. For more information, see the subsection, Affected and Non-Affected Software, in this section.

More... ]]> Microsoft Security Bulletins Steve http://www.vistaheads.com/forums/microsoft-security-bulletins/457536-ms09-063-critical-vulnerability-web-services-devices-api-could-allow-remote-code-execution-973565-a.html