Symantec's latest and greatest in software AV protection has been released; with it come a bundle of cool new features- like AV protection in MSN and Yahoo (!) messenger.
Good product- as ever.
View: Symantec Page
- NEW! Detects and blocks viruses in instant message attachments.
- Exclusive Worm Blocking technology detects worms such as Nimda in outgoing mail to prevent them from infecting other computers
- Automatically removes viruses, worms, and Trojan horses.
- Scans and cleans both incoming and outgoing email messages.
- Downloads new virus definitions automatically to protect against new viruses.
- Script Blocking defends against fast-moving script-based viruses such as "ILoveYou" and "Anna Kournikova."
- Worm Blocking and Script Blocking can detect new threats even before virus definitions are created for them.
- Includes step-by-step instructions for installation, even on a computer that has already been infected.
Good product- as ever.
View: Symantec Page
MS02-044 (Q328130): Unsafe Functions in Office Web Components
The Office Web Components (OWC) contain several ActiveX controls that give users limited functionality of Microsoft Office in a web browser without requiring that the user install the full Microsoft Office application. This allows users to utilize Microsoft Office applications in situations where installation of the full application is infeasible or undesirable.
The control contains three security vulnerabilities, each of which could be exploited either via a web site or an HTML mail.
View: Microsoft Security Bulletin ID MS02-044 for more information and patch availabilityMS02-045 (Q326830): Unchecked Buffer in Network Share Provider Can Lead to Denial of Service
SMB (Server Message Block) is the protocol Microsoft uses to share files, printers, serial ports, and also to communicate between computers using named pipes and mail slots. In a networked environment, servers make file systems and resources available to clients. Clients make SMB requests for resources and servers make SMB responses in what described as a client server, request-response protocol.
By sending a specially crafted packet request, an attacker can mount a denial of service attack on the target server machine and crash the system. The attacker could use both a user account and anonymous access to accomplish this. Though not confirmed, it may be possible to execute arbitrary code.
View: Microsoft Security Bulletin ID MS02-045 for more information and patch availabilityMS02-046 (Q327521): Buffer Overrun in TSAC ActiveX Control Could Allow Code Execution
A security vulnerability results because the control contains an unchecked buffer in the code that processes one of the input parameters. By calling the control on a client system and overrunning the buffer, an attacker could gain the ability to run code in the security context of the currently logged on user. This would enable the attacker to take any desired action on the user's system. The attacker could mount an attack by either hosting a web page that exploits the vulnerability against any user who visits it, or by sending an HTML mail to another user.
View: Microsoft Security Bulletin ID MS02-046 for more information and patch availability
Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!
Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.