Digg
DZone
Reddit
Slashdot
StumbleUpon
del.icio.us
Facebook
FriendFeed
FurlThe vulnerability, which exploits linking to the Microsoft Help Center and could effect other software, including e-mail, can be fixed by disabling the HCP Protocol. That breaks all links to the Help Center, however. Microsoft may issue a patch separate from its regular monthly security updates.
"Microsoft was left racing to patch a Windows Help and Support Center vulnerability after Tavis Ormandy, an information security researcher who's charged with keeping Google's products secure, Thursday publicly disclosed both the bug as well as proof-of-concept attack code.
Ormandy reportedly informed Microsoft of the vulnerability on Saturday, June 5, and Microsoft acknowledged receipt the same day. Five days later, however, Ormandy went public with a posting to the Full Disclosure mailing list. Later that day, Microsoft issued its own vulnerability announcement."
Your White Papers Search Results
-
The New Economics of Terminal Emulation
The new economics of terminal emulation enables organizations to cut costs from the IT infrastructure while continuing to provide users with a...
Download now -
IBM TechTalk web event: Turn insights into action with enterprise analytics
May 15 at noon eastern daylight time (EDT) Translating data into insight using business intelligence and analytics tops CIOs' plans for helping...
Download now
-
Taming the Wild West: How America's Third Largest School District Manages...
The Chicago Public Schools (CPS) system employs a leading approach to integrating technology into the learning experience and provides students...
Download now
