IBM offers protection against Microsoft

Here come the bouncers

By INQUIRER newsdesk

Thu Feb 15 2007, 19:30

IBM'S SECURITY OUTFIT, ISS today offered protection from the several critical vulnerabilities Microsoft announced were threatening Windows users.

The vulnerabilities include a flaw in Microsoft's Vista's core antivirus engine, which also guards Windows Live and Windows' bastion of hope, Defender.

This vulnerability "allows an attacker to send a specially-crafted PDF file to users and trigger a heap overflow in the antivirus engine, resulting in remote code execution". (Gulp! Ed.)

"Successful exploitation could grant an attacker system-level privileges", ISS said.

The scurity firm also claimed it, "continues to work closely with Microsoft to provide Vista support for our customers," whilst boasting that those customers had been protected from this flaw since January.

IBM published an assessment of Vista's Kernel-Locking, in a pdf (Gulp! Ed.) here. µ

Microsoft acknowledges Duqu virus vulnerability Has no fix yet but has a workaround Friday, 4 November 2011, 09:17 AM Read more	Newly patched Safari flaws pose serious risks A proof-of-concept remote code execution exploit is available Thursday, 13 October 2011, 11:26 AM Read more
Microsoft patches 23 flaws in multiple products Internet Explorer updates are the most urgent ones Wednesday, 12 October 2011, 15:42 PM Read more	Microsoft and Adobe release security updates Remote code execution flaws patched Wednesday, 14 September 2011, 13:32 PM Read more
HTML5 poses security risks It's plagued by security issues, report says Tuesday, 2 August 2011, 18:11 PM Read more	A dangerous IOS vulnerability remains unpatched for a week Jailbreakme is still wild and free Thursday, 14 July 2011, 12:50 PM Read more

< Previous article| Next article >

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

INQ White papers

Databases

Network management

Security

Service oriented architecture

Storage

INQ Jobs

Technical Author

Technical Author - Enfield,...

INQ Poll

Authorities in several countries raided Megaupload recently, shut down all of its services, seized hundreds of servers and arrested several of its executives on criminal charges.

Do you think the move was justified?

Yes, companies should suffer an immediate death penalty upon being accused of copyright infringement.

Yes, the coppers said the company was breaking the law so it must be guilty.

No, the company and the people accused are innocent until proven guilty.

No, the company had millions of customers who have been harmed by having access to their data files cut off.

I don't care, I never used Megaupload anyway.

View other polls

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Salary Calculator

Search for a job:

Recruitment Agency A-Z Directory

Accreditations:

Digital Publisher of the Year 2010

IBM offers protection against Microsoft

Share this:

RIM Playbook OS 2.0 and Blackberry 7.1 video demo

Nokia Lumia 710 video review