Microsoft’s range of Windows Phone devices suffer from a denial-of-service attack that allows attackers to disable the messaging functionality on a device. The flaw works simply by sending an SMS to a Windows Phone user. … read more
Tag: flaw
Internet Explorer avoids memory leak flaw affecting Chrome, Firefox and Safari
19th May 11 12:55 pm with 8 CommentsMicrosoft’s Internet Explorer browser has escaped a huge memory leak flaw affecting rival browsers. The flaw was posted to the Chromium issue tracker earlier this month. Internet Explorer 7, 8 and 9 are not affecting … read more
One Windows Server and two Office vulnerabilities on the menu for May Patch Tuesday
5th May 11 5:27 pm with Comments OffMicrosoft announced on Thursday its bulletins for May 2011′s Patch Tuesday. The software giant is planning to release just two bulletins, one rated Critical for Windows, and one rated critical for Office. The company says it … read more
Microsoft warns of attacks on unpatched MHTML Windows vulnerability
14th Mar 11 11:06 pm with 2 CommentsMicrosoft has warned that hackers are targeting a limited amount of machines to exploit a known MHTML vulnerability. The vulnerability, first reported in January, allows attackers to run scripts in the wrong security context. The unpatched vulnerability … read more
Microsoft confirms Internet Explorer 9 not affected by recent Pwn2Own exploit
11th Mar 11 12:01 am with 4 CommentsMicrosoft said on Thursday that Internet Explorer 9 protects users against a recently disclosed IE exploit. Security researchers successfully exploited previously unknown flaws in Internet Explorer 8 on Wednesday at a hacker competition. Irish security … read more
Microsoft Points exploit may have cost the company over $1 million
9th Mar 11 7:38 pm with 12 CommentsA gaping hole in a promotional Microsoft Points system may have cost the company over $1 million. A user named Dark, at The Tech Game forums, posted instructions over the weekend to generate free Xbox LIVE … read more
Microsoft fixes critical Windows flaw in latest Patch Tuesday
9th Mar 11 10:15 am with Comments OffMicrosoft issued its latest round of Patch Tuesday updates this week. The company fixed a critical flaw in all supported versions of Windows. If exploited, the vulnerability could allow an attacker to distribute a specially-crafted … read more
Microsoft investigating new Windows SMB 0-day vulnerability
17th Feb 11 7:50 pm with 1 CommentMicrosoft said on Wednesday that it is investigating a new Windows XP zero-day vulnerability. The flaw in the Windows Server Message Block (SMB) was disclosed on Monday by a security researcher. The researcher, identified only … read more
Microsoft confirms critical un-patched Internet Explorer CSS vulnerability
23rd Dec 10 1:12 am with 2 CommentsMicrosoft said on Wednesday that it has identified a new vulnerability affecting all versions of Internet Explorer. The flaw could allow malicious users to run unauthorised code remotely inside the iexplore.exe process. Proof-of-concept code is … read more
New critical un-patched Internet Explorer CSS vulnerability discovered
13th Dec 10 11:43 am with 2 CommentsA new hole in Microsoft’s Internet Explorer browser has been identified. The flaw, reported by security firm Vupen, allows remote attackers to take complete control of a vulnerable system. The issue is caused by a … read more