Computer Help Community

Community

Cyber Tech Help Community

New Tutorials

More Tutorials
PC Tutorials

New Downloads

More Downloads
PC Downloads

Member Testimonials

Open Member Quote   I would just like to compliment you on an EXCELLENT web site. I was also having trouble with "Blank.Exe". Google put me in touch with yourselves after having sought a solution through them, hence I have signed up with you. I am impressed with the wealth of infomation on your site, and am learning a lot. Thank you - jopra  Close Member Quote
Member Testimonials
MY CYBER TECH HELP

LATEST TOPICS

Tech Help Community

Free Antivirus Scan

Free Virus Scan and a listing of the top 10 viruses in the wild - Free Antivirus Scan
Free Online Antivirus Scan

File Extension Database

Find what program a filetype belongs to in our searchable File Extension Database.
File Extension Database

Services

See what services Cyber Tech Help can offer your business or website: CTH Services
CTH Services

Related MS Links

Related Links
Cyber Tech Help Community

To the top of the page to top

 



Microsoft Warns Over New Exploit

Latest News Latest News | News ArchiveNews Archive | Cyber Tech Help News RSS Feed!

Microsoft Warns Over New ExploitMicrosoft Warns Over New Exploit

Posted by: Tweaker
Date added: 20:57, 27th June 2006 GMT
Source: Information Week

Microsoft

Microsoft disclosed over the weekend that exploit code for a recently patched flaw in Routing and Remote Access had been published to the Internet. The vulnerability had been patched in June's Patch Tuesday release, and the company was not aware of any attacks using the exploit.

Those who have applied the MS06-025 patch are immune to the exploit, according to a Microsoft investigation. Additionally, the flaw is easiest to exploit in Windows 2000; on Windows XP Service Pack 2, Windows Server 2003 and Windows Server 2003 Service Pack 1 the attacker would need logon credentials.

"The MSRC is monitoring this situation to keep customers informed and to provide customer guidance as necessary," Stephen Toulouse of the Microsoft Security Research Center said. He recommended that all users apply the patch as soon as possible.

MS06-025 was updated Tuesday to fix a problem with legacy dial-up connections that use a terminal window or dial-up scripting. Users who were not affected by the problem do not need to reinstall the patch if they have already done so.

Microsoft said it would continue to monitor the situation and provide further information as necessary. However, it expressed concern at how the vulnerability was disclosed.

"Microsoft is disappointed that certain security researchers have breached the commonly accepted industry practice of withholding vulnerability data so close to update release and have published exploit code, potentially harming computer users," the company said in an advisory.

"We continue to urge security researchers to disclose vulnerability information responsibly and allow customers time to deploy updates so they do not aid criminals in their attempt to take advantage of software vulnerabilities," it continued.

Tools:  Tools: Post a comment | Link to this news item | Send to a friend | Submit News

 

Post a commentPost a comment

Error: You are not logged in.

In order to leave comments to news articles you must be a Cyber Tech Help Member.

Registration is completely free!  Register to become a member!  Register to become a member

Along with access to leave comments to news articles you will be able to ask any computing questions you might have on the Cyber Tech Help Forums.

 

[ To the top of the page To top | Latest News Latest News | News Archive News Archive | Cyber Tech Help News RSS Feed! ]