Sometimes you run across a site that’s a browser snob. You know the type…. you visit it in Mozilla Firefox or (anything other than IE) and it says, “you must use Internet Explorer version 6 or newer to use this site. Well, some browsers have nice ways of changing the user agent through the menus, and I wouldn’t be surprised if there’s a plugin for this in firefox (haven’t yet looked.) But, there is a way in about:config.
Category: Windows Tech Support
-
More reason to be cautious with Firefox plugins
Again…. this article referring to an exploit related to the cross platform plugin capability in firefox, is a GOOD reminder to be cautious when looking at potential plugins to install for mozilla firefox. In fact, the advice is usually do NOT install software (including plugins) from untrusted sources. By all means, please investigate any piece of software before downloading and installing. (And please don’t take just the software makers word for it…. ie. “my toolbar is really cool and makes firefox work better” does not equal something you can now trust and install.)
-
Another McAfee security product flaw
Sans has info on a security flaw affect several McAfee security products. It could allow remote code execution. The 2007 versions of the products are not affected and a patch is expected soon. For your information, here are the affected products: McAfee Internet Security Suite 2006, McAfee Wireless Home Network Security, McAfee Personal Firewall Plus, McAfee VirusScan, McAfee Privacy Service, McAfee SpamKiller, McAfee AntiSpyware.
You may note that antivirus software is increasingly being scrutinized as a means to remotely exploit systems. Be watching for the patch to come from McAfee.
-
Microsoft Issues advisory on Powerpoint flaw
Here’s the link to Microsoft’s advisory. The main workaround seems to be…. Don’t open or save powerpoint attachments that you receive from untrusted sources, OR that you receive unexpectedly from trusted sources…. So, the only real workaround is what SHOULD be common practice. Whether or not there is a vulnerability in the news you should always be cautious with receiving file attachments. ANYTHING unexpected, even from a trusted source, should be verified “out of channel”.
-
Sysinternals/Wininternals acquired by Microsoft
Sysinternals.com is a GREAT source of free Windows utilities (rootkit detector, process list, list of files being used by a process, etc….) Today the news started to spread that they’ve been acquired by Microsoft. Am I the ONLY person that has had an urge to download their entire free utility library?
-
Powerpoint zero day
This has been a rough quarter for Office vulnerabilities… there seems to be a pattern, Microsoft patch day, then…. zero-day exploit within a week for an Office component. First Word, then Excel and now this month our vulnerable app is Powerpoint. The Security Fix has some coverage and notes the pattern – the likely motivation is so that there will be more time to exploit before the vulnerability is patched. The moral of the story is to be suspicious of Powerpoint attachments/files from untrusted sources. i.e. verify that you should be receiving an attachment even from KNOWN sources.
-
VMWare server 1.0 final release
I’ve been keeping an install of Vmware virtual Server through their beta and Release Candidate phase and have seen several places that they’ve released the 1.0 version today. This release is free (as in no charge.) Although support is available….
-
Adobe Acrobat reader update
On the heels of yesterdays massive update day from Microsoft, Adobe has released an update for the free Adobe Reader. The Adobe reader is one of those ALMOST essential applications that MOST everyone has installed. So, this will be of particular interest to MOST computer users. A SERIOUS security flaw (They’re tagging it CRITICAL) could be exploited with a specially crafted PDF file in version 6.0.4 (or earlier – back to 6) of the Reader for Mac or Windows.
Version 6.0.5 has been released to address this. It should be noted that the current newest version available is 7.0.8….
-
Microsoft updates are out for July
and they affect no fewer than 18 issues in Office and Windows. 13 issues are tagged as critical, others as important. They are all bundled into 7 update downloads. 8 vulnerabilities within Excel have been addressed in all of this. Office 2000 users will have to manually update (Office XP/2003 updates can be brought in through Microsoft Update.) It looks like the flaw I found most interesting was a remote code execution vulnerability in the DHCP client… .(Affects 2000/xp and 2003).
-
The end for Windows 98 may be a boost to linux?
There are articles out about the demise of official Windows 98 and ME support would be a boost to linux uptake. Realistically, I suppose it may, but I personally am not holding my breath. Here’s why. 1) The people still running Windows 98/ME are likely doing so because that’s what came with their PC. There is a common perception that ~6 is a point where they might replace it anyway with a new pc. 2) IF you’re running Windows98 on original equipment (as opposed to someone that opted for 98 instead of xp on a slightly newer system, or has upgraded from the original equipment.) You might be frustrated with the performance of MOST linux distributions on your equipment. Let’s face it, linux can run on most anything, but most of the distributions that people HEAR about focus on newer hardware….