Video | Business Headlines | Internet | Science | Scientific Ethics | Technology | Search

 


Three new security bulletins - 13 July 2005

Three new security bulletins - 13 July 2005

Today, Microsoft issued three new security bulletins. Symantec Security response identified the following two vulnerabilities to be the most serious.

Buffer Overflow in Microsoft Colour Management Module

Microsoft has announced a security patch for a vulnerability within the Microsoft Colour Management Module (CMM), a component included within most Windows systems. CMM processes image files for a wide variety of formats including JPEG, EXIF, TIFF, PNG, PDF, PICT, PostScript, JDF (Job Definition Format), SVG, and CSS3. This vulnerability may be exploited remotely through malicious web sites or emails. It may be possible to exploit Outlook users by just previewing the email. Other applications that use CMM could be vulnerable as well, including Internet Explorer and MSN Messenger. Symantec Security Response has rated this threat as critical.

Microsoft Internet Explorer Javaprxy.DLL COM Object Heap Overflow

Microsoft has also introduced a security patch for a vulnerability in Javaprxy.dll, an interface to a debugger in the Microsoft Java Virtual Machine. An attacker could exploit this vulnerability through malicious web pages and run code on the local system resulting in complete control of the affected computer. Symantec Security Response has rated this threat as critical.

"While these are high-risk vulnerabilities, there are many steps users can take to protect themselves," said Oliver Friedrichs, senior manager, Symantec Security Response. "In addition to applying patches immediately, users should never open files or click on links from unknown sources. Computer users should keep software running with the least privileges possible and deploy network intrusion detection systems to monitor network traffic for signs of suspicious activity."

Symantec recommends the following actions for enterprises: · Evaluate the possible impact of these vulnerabilities to their critical systems. · Plan for required responses including patch deployment and implementation of security best practices using the appropriate security solutions. · Take proactive steps to protect the integrity of networks and information. · Verify that appropriate data backup processes and safeguards are in place and effective. · Remind users to exercise caution in opening all unknown or unexpected email attachments and in following web links from unknown or unverified sources.

Symantec recommends the following actions for consumers: · Regularly run Windows Update and install the latest security updates to keep software up to date. · Avoid opening unknown or unexpected email attachments or following web links from unknown or unverified sources. · Consider using an internet security solution such as Norton Internet Security 2005 AntiSpyware Edition to protect against today's known and tomorrow's unknown threats.

Additional information can be found at: http://www.microsoft.com/technet/security/bulletin/ms05-jul.mspx

Symantec’s security experts will closely monitor further information related to these vulnerabilities and will provide updates and security content as necessary.

ENDS

© Scoop Media

 
 
 
 
 
Business Headlines | Sci-Tech Headlines

 

Strike: Lyttelton Port Workers Vote To Escalate Dispute

Members of the Rail and Maritime Transport Union (RMTU) at Lyttelton Port today voted to escalate their industrial action. Around 200 RMTU members have been operating an overtime ban since 17 December and today they endorsed a series of full withdrawals of labour at the port. More>>

ALSO:

Scoop Business: NZ Dollar Falls To 3-Year Low As Investors Favour Greenback

The New Zealand dollar fell to its lowest in more than three years as investors sold euro and bought US dollars, weakening other currencies against the greenback. More>>

ALSO:

Scoop Business: NZ Govt Operating Deficit Smaller Than Expected

The New Zealand’s government’s operating deficit was smaller than expected in the first five months of the financial year as a clampdown on expenditure managed to offset a shortfall in the tax-take from last month’s forecast. More>>

ALSO:

0.8 Percent Annually:
NZ Inflation Falls Below RBNZ's Target

New Zealand's annual pace of inflation slowed to below the Reserve Bank's target band in the final three months of the year, giving governor Graeme Wheeler more room to keep the benchmark interest rate lower for longer.More>>

ALSO:

NASA, NOAA: Find 2014 Warmest Year In Modern Record

Since 1880, Earth’s average surface temperature has warmed by about 1.4 degrees Fahrenheit (0.8 degrees Celsius), a trend that is largely driven by the increase in carbon dioxide and other human emissions into the planet’s atmosphere. The majority of that warming has occurred in the past three decades. More>>

ALSO:

Scoop Business: New Zealand’s Reserve Bank Named Central Bank Of The Year

The Reserve Bank of New Zealand’s efforts to stifle house price inflation by using new policy tools has seen the institution named Central Bank of the year by Central Banking Publications, a publisher specialising in global central banking practice. More>>

ALSO:

Get More From Scoop

 
 
Standards New Zealand

Standards New Zealand
 
 
 
 
 
 
 
 
Sci-Tech
Search Scoop  
 
 
Powered by Vodafone
NZ independent news