Posted on 08/09/2005 2:03:40 PM PDT by Fractal Trader
Microsoft Corp. warned users of its Windows operating system on Tuesday of three newly found "critical" security flaws in its software, including one that could allow attackers to take complete control of a computer.
Computer security experts urged users to download and install the patches, which are available at www.microsoft.com/security.
"Users (should) apply the updates as quickly as possible," said Oliver Friedrichs, senior manager of Symantec Security Response, part of security software company Symantec Corp. SYMC.O.
Microsoft said that vulnerabilities exist in its Internet Explorer Web browser, the most severe of which could allow an attacker to take complete control of an affected computer.
An attacker could exploit that vulnerability by luring users to malicious Web pages and running software code on the user's PC resulting to take it over.
Microsoft also issued another security warning, which it rated at its second-highest level of "important."
For more than three years, Microsoft has been working to improve the security and reliability of its software as more and more malicious software targets weaknesses in Windows and other Microsoft software.
[SNIP]
(Excerpt) Read more at boston.com ...
Probably so. My question is, why only three?
DU?
> Microsoft said that vulnerabilities exist in its Internet Explorer Web browser ...
Download and use FireFox.
It's not perfect either, but it is vastly safer.
And make sure your firewall, anti-virus and anti-spyware
apps are up to date (or switch to Linux, which has vastly
less need for such defenses).
i'd better take an axe to those darn COMPUTERS before they get ambitious and try to get control over...over...the whole world!
/ humor off
There are 3 critical-rated security updates, but more that are rated non-critical.
Including that Windows malware detector tool, I'm currently downloading 8 updates.
Any idea how you can determine what service pack your computer is currently running--1 vs 2?
I get the suspicion that they are built in on purpose.
Open "My Computer" and select the menu item "Help/About"
This cant be! I have been told many times that closed source is much safer because the code is not out there for the world to see..
You getting MS05-038? That's the cumulative IE patch. I keep getting "page not found."
This cant be! Ive been told many times windows is much more safe because the hackers dont have easy access to the source.. Were they lying to me?
start -> run -> then type "winver" (without the quotes)
You can switch to Linux, but you can't switch your existing WinXP box to OS X.... yet.
I don't know the ID#, but I just downloaded 5 security updates, two routine updates, and that Windows malware detection tool (which of course detected nothing, because I keep my system protected.)
>> ... or switch to Linux...
> Whoa, I see a typo there!
> I think you meant "OS X," not Linux. :)
Well, ya, sure, but:
- it's not a free download, and
- it won't run on your existing hardware that is
presently hosting Mr.Bill's fragile collage of DOS patches
Yeah, mine sold my house while I wasn't looking and blew it all on poker.
Thank you. Will do.
Thanks to you also.
Is MacOS X available for the Intel platform yet?
As an aside, I got a Mac Mini a couple of months ago. Good machine at a good price. I'm a *nix goon, and grok its BSDness. But what I like the most is that the system is scarcely bigger than a double CD jewel case. I could easily stack a dozen of these things in one Intel desktop footprint.
No, OS X isn't free, but it's well worth the money. I maintain that OS X is open source done right, since it's based on BSD. The UI is perfect.
No Intel Macs until 2006. I'm holding off on a Mac Mini until Apple switches over.
Personally, I'm hoping that Apple turns the Mini into an HTPC of sorts. Get a GeForce 6200 in there for its Purevideo capabilities, a 5400/7200 RPM HD, and some program with HT capabilities (iTunes 5.0?) and the Mini will sell like hotcakes. It's a perfect candidate for Intel's Yonah chip, too.
True, but were I to switch to another OS, I'd want to just get the best thing available, rather than trying to make do with what I have.
No doubt there are others that M$ and the hackers know, but you the end user does not know. These will not be revealed to you until M$ has a fix. This is to protect microsoft and microsoft only.
Informing the users of other threats that are not yet fixable will only serve to sow fear, uncertainy and doubt (FUD) into the enduser regarding microsoft's "security is job one" message.
buy a computer condom. you just slip it on and you're safe.
no viruses AND no unwanted pregnancies.
Whoever made this comment is obviously a troll. I would reply to the original poster of this comment; however, after he admitted he was the troll in freepmail he asked that I never respond to him again.
It didn't sound like MS Active X has anything to do with that.
| Distribution | ID | Package | Date |
|---|---|---|---|
| Ubuntu | USN-163-1 | xpdf | 2005-08-09 |
| Red Hat | RHSA-2005:670-01 | xpdf | 2005-08-09 |
| Red Hat | RHSA-2005:598-01 | sysreport | 2005-08-09 |
| Red Hat | RHSA-2005:671-01 | kdegraphics | 2005-08-09 |
| Red Hat | RHSA-2005:706-01 | CUPS | 2005-08-09 |
| Red Hat | RHSA-2005:720-01 | ucd-snmp | 2005-08-09 |
| Mandriva | MDKSA-2005:133 | netpbm | 2005-08-09 |
| Mandriva | MDKSA-2005:132 | heartbeat | 2005-08-09 |
| Red Hat | RHSA-2005:627-01 | gaim | 2005-08-09 |
| Red Hat | RHSA-2005:589-01 | gaim | 2005-08-09 |
That is really ironic.
But I'm *sure* they had them fixed in less than 24 hours from the time they were notified of the bugs. {/sarcasm}
I was shocked to see RH have so many bug fixes. Oh wait, since it's RH I need to say they are great for fixing all those bugs.
I was also shocked to see Linux have a buffer overflow vulnerability. Here's a taste of one of the bulletins.
-
Hmm for once I decide to see how ms fanatics would respond so some of the sarcasm they so readily dish out whenever there is an OSS bug and they buy it hook line and sinker... What do they do? well they dont address the serious issue for which the thread was created, instead they just attack something else to deflect from a serious MS bug..
LOL. You're a joke calling everyone a troll when in fact you are a troll. Also you asked that I never post to you again and that you would do so in kind. Well, looks like you can't even keep that promise.
Also to to mock your last post a little.
For once I decide to post one of the RH vulnerabilities... What do they do? well they don't address the serious issue, instead they just attack something else to deflect from a serious MS bug.
Also to to mock your last post a little.
For once I decide to post one of the RH vulnerabilities... What do they do? well they don't address the serious issue, instead they just attack something else to deflect from a serious Linux bug.
Just this morning mine demanded I get it coffee and donuts. Must be all the police sites I visit. :o)
freepMail from N3WBI3 to me:
Re: EU plan could put open sourcers in court
From N3WBI3 | 08/03/2005 1:18:07 PM EDT replied
Hey let me ask you something are you always going to troll around or do you actually want to have a discussion? just need to know wether or not to completely ignore you...
Re: EU plan could put open sourcers in court
To N3WBI3 | 08/03/2005 1:59:02 PM EDT sent
Me the troll? LOL. Look in the mirror. Many of my questions are legit and aren't trolling. Others are a setup to future lines of questioning to make a point. unfortunately, I find I must do this with most FOSS types because they will argue it's FREE as in FREE BEER, then when you show that it isn't they switch to FREE as in FREE to Innovate.
How is what I'm doing trolling? If you read my earlier posts on the current thread it relates to the thread. That isn't trolling.
Re: EU plan could put open sourcers in court
From N3WBI3 | 08/03/2005 2:45:15 PM EDT replied
You have answered my question with teh attidue of this mail and the other post, thanks..
Re: EU plan could put open sourcers in court
To N3WBI3 | 08/03/2005 3:18:13 PM EDT sent
You're such the troll it's unbelievable. How many times did you post to me before I responded? Do the math...then look who the troll is. Just because I schooled you on the thread, you don't need to resort to name calling.
Re: EU plan could put open sourcers in court
From N3WBI3 | 08/03/2005 3:24:43 PM EDT read
My Purpose was not to have an argument, yours was... Call me what you will and if indeed you think I am a troll than you’ll be glad to know I won’t be addressing you anymore... Please extend me the same.
Those are application bugs, not OS bugs. MSIE issues are, by Microsoft's own definitions used in court, bugs in the OS.
And according to your definition of the Linux O/S, it's no larger than 1 file in Windows like ntoskrnl.exe, right? These holes in Red Hat are distributed with each copy of Linux, just like many files other than ntoskrnl.exe are distributed with Windows.
Everyone is getting wise to the lunix myths, not just a few of us anymore.
(Denny Crane: "Sometimes you can only look for answers from God and failing that... and Fox News".)
I figure as you have talked about me by name without promoting and posting it to bot GE and B2K all bets were off..
Wrong, but thanks for playing (and, not surprisingly, completely misrepresenting me).
The operating system refers to the whole set of programs, drivers, etc., that are responsible for the basic systems operation. This includes things like the scheduler, memory management, file management, and so on.
Now, in Microsoft's case, because of some of their software architecture decisions, some user-level appications (specifically, "explorer") are tied into the operating system. Because of the modular nature of UNIX-like systems, this doesn't happen with user applications, because it is designed to abstract the OS away from the applications, especially since the applications come from multiple sources.
Now, to the specific list you were posting... "gaim" is an instant-messenger client. If AOL had a bug in their AIM program for Windows, would it be fair to say it's a problem with the Windows OS? Of course not. Then why is a "gaim" bug a "Linux" problem? Answer: it isn't -- it's an application bug.
Sometimes I think Windows ability to boot up is a flaw.
Do you really want me to expose you again? How about I show where you did the same about me BEFORE I mentioned you?
It's not that big of a deal, but I am finding a disturbing trend. You just make up stuff to suit your needs.
Was it in reply to your post mentioning you by name? I jsut really wanted you to see how you reacted when a sarcastic post hit a windows thread and as predicted it was the exact same way I reacted when you hit the linux thread.... Dont keep making it worse by going on and ignoring the serious vulnerabilities that this thread is about..
You're busted for being a troll and then you just claim...I was testing a theory. Yeah, right. Keep lying to yourself as no one else is believing you and you're making yourself look silly to your OSS Ping list compatriots.
I wish that were the case, but they love to lie and distort, he's a perfect example of their kind, and is therefore probably being cheered for his antics. Oh well, at least the OSS fanatics as a group are still stuck down in the <5% of overall society, as they have been for years.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.