xsee writes “A new vulnerability in the Windows kernel was disclosed Wednesday that could allow malware to attain administrative privileges by bypassing User Account Control (UAC). Combined with the unpatched Internet Explorer vulnerability in the wild this could be a very bad omen for Windows users.”
Read more of this story at Slashdot.
In what has surprised me greatly, nobody has submitted anything to us regarding this day in the history of computing. Sure, memories of her may not be fond, and with the magical unicorn power of hindsight you’d rather forget you ever dated her so intensely, but she served a purpose. She led a revolution that changed the world forever, and while you may have hoped for a more charismatic leader, I think it’s unfair not to honour the fact that she turned 15 today.
WrongSizeGlass writes “Exploit code for the DLL loading issue that reportedly affects hundreds of Windows applications made its appearance on Monday. HD Moore, the creator of the Metasploit open-source hacking toolkit, released the exploit code along with an auditing tool that records which applications are vulnerable. ‘Once it makes it into Metasploit, it doesn’t take much more to execute an attack,’ said Andrew Storms, director of security operations for nCircle Security. ‘The hard part has already been done for [hackers].’”
Read more of this story at Slashdot.
An anonymous reader writes “15 years ago on this day, Microsoft’s then new Windows 95 was released. Among other things it moved users away from the archaic file manager and program manager to Windows explorer and the start menu. Compared to today’s ‘social desktop,’ I’d much rather have the simpler and more sparse (pre-Internet Explorer integrated) Windows Explorer, though I do not like the (lack of) stability that Windows 95 offers. Of course if you were alive then, you’ve probably seen the commercials.” I fondly recall downloading build after build and installing them. But within months of the official release, I switched to Linux.
Read more of this story at Slashdot.
Speaking at Microsoft’s Worldwide Partner Conference in Washington, Corporate Vice President of Windows & Windows Live – Tami Reller announced the public beta. Microsoft revealed its plans for Windows 7 SP1 and Windows Server 2008 R2 SP1 last month at its annual Tech-Ed conference. Windows 7 SP1 will include the usual hotfix patches and new virtualization tools in SP1 will help Windows Server 2008 R2 users prepare for cloud computing. SP1 will include RemoteFX which provides rich 3-D graphical experience for remote users. The service pack also will include a series of incremental updates, previously released on Windows Update for both Windows 7 SP1 and Windows Server 2008 R2 SP1.
nk497 writes “Microsoft has said that nearly half of machines running Windows 7 are using the 64-bit version, up from just 11% of PCs running Vista. The 32-bit version is limited to 4GB RAM, while the 64-bit version allows 192GB, as well as added security and virtualization capabilities. While Microsoft is pushing 64-bit as a way to gain performance in the OS, it earlier this year advised users to install the 32-bit version of Office 2010, ‘because currently many common add-ins for Office will not function in the 64-bit edition.’”
Read more of this story at Slashdot.
Vectormatic writes “As can be seen on the product page for Windows XP, support for SP2 ends tomorrow, while the majority of Windows XP users still haven’t upgraded to SP3. This could open up millions of users/businesses to exploitation, since security updates for SP2 will stop coming in while security fixes to SP3 may clue hackers in to vulnerabilities.”
Read more of this story at Slashdot.
cuppa+tea writes “More than a year after Microsoft issue a patch to cover privilege escalation issues that could lead to complete system takeover, a security researcher plans to use the Black Hat conference spotlight to expose new design mistakes and security issues that can be exploited to elevate privileges on all Windows versions including the brand new Windows 2008 R2 and Windows 7.”
Read more of this story at Slashdot.
An insecurity expert has has discovered a vulnerability in older versions of Windows which pesky attackers could exploit to take over control of your PC. Somewhat ironically, the vulnerability afflicts the Help and Support Center for Windows XP and Server 2003, which users may still – just about – be able to use to get online technical support.
