Over 1 million tech questions and answers.

Critical Flaw Found In Gpg

Q: Critical Flaw Found In Gpg

9 March 2007A serious flaw was found in opensource encryption software GNU Privacy Guard (GPG).It allows a cybercriminal to launch a phishing attack. The flaw allows to insert text in trusted e-mail. Ivan Arce from Core Security, who discovered the vulnerability says attacker can insert malware or lead user to malicious website. Arce decided to inform of the flaw because it was patched two weeks ago.It affects email clients like Kmail, Evolution, Sylpheed, Mutt and GNUMail, so its users should install patches as soon as possible.Source:http://www.arcabit.com/infobase.html?show=...ion&id=1154

Read other answers
RELEVANCY SCORE 200
Preferred Solution: Critical Flaw Found In Gpg

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

RELEVANCY SCORE 84

Firefox has unpatched "extremely critical" security holes and exploit code is already circulating on the Net, security researchers have warned.

The two unpatched flaws in the Mozilla browser could allow an attacker to take control of your system.

A patch is expected shortly, but in the meantime users can protect themselves by switching off JavaScript. In addition, the Mozilla Foundation has now made the flaws effectively impossible to exploit by changes to the server-side download mechanism on the update.mozilla.org and addons.mozilla.org sites, according to security experts.

The flaws were confidentially reported to the Foundation on May 2, but by Saturday details had been leaked and were reported by several security organizations, including the French Security Incident Response Team (FrSIRT). Danish security firm Secunia marked the exploit as "extremely critical", its most serious rating, the first time it has given a Firefox flaw this rating.

In recent months Firefox has gained significant market share from Microsoft's Internet Explorer, partly because it is considered less vulnerable to attacks. However, industry observers have long warned that the browser is more secure partly because of its relatively small user base. As Firefox's profile grows, attackers will increasingly target the browser.
Two Vulnerabilities Found

The exploit, discovered by Paul of Greyhats Security Group and Michael "mikx" Krax, makes use of two separate... Read more

Read other answers
RELEVANCY SCORE 84

Matthew Broersma, Techworld.com
Mon May 9,11:00 AM ET

Firefox has unpatched "extremely critical" security holes and exploit code is already circulating on the Net, security researchers have warned.

The two unpatched flaws in the Mozilla browser could allow an attacker to take control of your system.

A patch is expected shortly, but in the meantime users can protect themselves by switching off JavaScript. In addition, the Mozilla Foundation has now made the flaws effectively impossible to exploit by changes to the server-side download mechanism on the update.mozilla.org and addons.mozilla.org sites, according to security experts.

The flaws were confidentially reported to the Foundation on May 2, but by Saturday details had been leaked and were reported by several security organizations, including the French Security Incident Response Team (FrSIRT). Danish security firm Secunia marked the exploit as "extremely critical", its most serious rating, the first time it has given a Firefox flaw this rating.

Critical Flaw Found in Firefox
 

A:Critical Flaw Found in Firefox

Also reported here http://news.bbc.co.uk/2/hi/technology/4532127.stm

Regards - Oldie
 

Read other 3 answers
RELEVANCY SCORE 80.4
A:Critical Remote Flaw Found in Linksys Wireless Access Point

nice find, lunar......we may want to move this to tech news in the future, in case it doesn't get enough hits here. That's what we did with the fake AVG junkware, got a bit more exposure. We can leave it here for now, but if you want it moved, just post in here to that effect.
 

Read other 3 answers
RELEVANCY SCORE 64

Don't know if this belongs here or not.
IE Flaw 'extremely critical'

This one goes to 11
By Nick Farrell: Martes 29 Noviembre 2005, 08:32

AN UNPATCHED vulnerability on Internet Explorer is so bad that security expert Secunia has had to add a new category of danger to its rating system.
Instead of being just critical, Secunia says that the unpatched hole is now 'extremely critical' which means that Microsoft were extremely stupid to sit on it for six months.

To be fair to Vole, even Secunia just thought the flaw would only create a denial of service vulnerability when they discovered it in March. DoS vulnerabilities are pretty much ten a penny. However the flaw is caused when IE fails to correctly initialize the JavaScript "Window()" function, when used in conjunction with a event. This means that Internet Explorer encounters an exception when trying to call a dereferenced 32-bit address located in ECX.

However, now S. Pearson, of computerterrorism.com, has worked out that if a Javascript prompt box was of the right size and form to allow the insertion of custom shellcode a remote attacker can execute arbitrary code embedded into an otherwise normal looking Web page.

You can have a look at it in action at www. computerterrorism.com].

There is more on the turning of the screw, here. µ

http://www.theinquirer.net/?article=27992
For more, click here.
 

Read other answers
RELEVANCY SCORE 63.2

On 12/22/2004, an update for Winamp was published to fix a critical security flaw. Go to http://www.winamp.com and download Winamp 5.08c to fix the problems.

This fix is required for ALL versions of Winamp prior to 5.08c. To determine your version, open Winamp, click Help > About Winamp and check the version number at the bottom of the resulting screen.
 

Read other answers
RELEVANCY SCORE 63.2

Thursday, July 17, 2003 Posted: 10:39 AM EDT (1439 GMT)

WASHINGTON (AP) -- Microsoft acknowledged a critical vulnerability Wednesday in nearly all versions of its flagship Windows operating system software, the first such design flaw to affect its latest Windows Server 2003 software.

Microsoft said the vulnerability could allow hackers to seize control of a victim's Windows computer over the Internet, stealing data, deleting files or eavesdropping on e-mails. The company urged customers to immediately apply a free software repairing patch available from Microsoft's Web site.

Truly trustworthy?

The disclosure was unusually embarrassing for Microsoft because it demonstrated the first such serious flaw in the company's powerful new computer server software, billed as its safest ever.

The software is aimed at large corporate customers and was the first product sold under a high-profile "Trustworthy Computing" initiative organized last year by Microsoft founder Bill Gates.

At the product's launch in late April, Microsoft Chief Executive Steve Ballmer declared the new version of Windows to be a "breakthrough in terms of what it means, in terms of its built-in security and reliability."

Found in Poland

The flaw, discovered by researchers in western Poland, also affected Windows versions popular among home users.

"This is one of the worst Windows vulnerabilities ever," said Marc Maiffret, an executive at eEye Digital Se... Read more

Read other answers
RELEVANCY SCORE 62.4

Article:

http://news.com.com/2100-1009_3-1026420.html?tag=lh
 

A:Microsoft warns of critical Windows flaw

http://forums.techguy.org/t145656/s.html

This should help quite a bit =)

-Z
 

Read other 1 answers
RELEVANCY SCORE 62.4

...When discussing about three critical Excel vulnerabilities disclosed during one week in last month, only the first was patched with Tuesday?s updates...Microsoft had time enough to fix all of these issues. But they only fixed the ?Repair Mode? issue used to targeted attacks by Booli.A....http://blogs.securiteam.com/index.php/archives/506

A:Microsoft Patched Only The Most Critical Excel Flaw

Not surprising.
They were probably to exhausted to work on the other 3.
After all, don't MS employee's spend all of their time working on patches for vunerabilities?
Stands to reason that they'd have to take a break, sometime.

Read other 1 answers
RELEVANCY SCORE 62.4

Critical Flash flaw won't be fixed until next week dated March 15, 2011.

-- Tom
 

A:Critical Flash flaw won't be fixed until next week

thanks for info ...
 

Read other 1 answers
RELEVANCY SCORE 62.4

​Egyptian bug hunter discovered that Avira Website is affected by CSRF flaw that allows attackers to hijack users? accounts and access to their online backup.

​Source​
 

A:Avira – Critical CSRF flaw Vulnerability

news section - posted
http://malwaretips.com/threads/avira-vulnerability-puts-users-online-backup-data-at-risk.33790/
 

Read other 2 answers
RELEVANCY SCORE 62.4

Trend Micro has warned its users of a "critical" flaw in a wide range of its software products that could cause computers to crash.Most users should be fine, according to Mike Sweeny, a spokesman for Trend Micro, an antivirus and security software company with global headquarters in Tokyo. A fix for the flaw was included in automatic updates and the software is set to call in for an update at least once a day. Sweeny says users cannot set the updates for any longer period of time than once a day. http://www.informationweek.com/security/sh...cleID=197004643

A:'critical' Trend Micro Flaw Could Cause Crashes

Grinler already posted about this:Highly-critical Flaw Discovered In Trend Micro Products

Read other 1 answers
RELEVANCY SCORE 62.4

Hackers warn of critical flaw in Firefox

02 October 2006 - Two hackers at the ToorCon hacker conference in San Diego said that they’ve found a critical flaw in Firefox that looks, to them at least, impossible to patch.

The hackers, who have been named as Mischa Spiegelmock and Andrew Wbeelsoi, said that someone could execute an attack simply by creating a webpage with malicious JavaScript code. In most attacks, hackers have to get a computer user to download something to the computer, but in this case, they won’t know what hit them.

Windows users are used to facing security threats, but smug Apple and Linux users aren’t immune to this bug, as it affects all versions of Firefox.

Spiegelmock said that malicious code could create a stack overflow error, and called the implementation “a complete mess”.

Mozilla’s security chief Window Snyder took the presentation completely seriously after watch a video of it; she said Mozilla would “do some investigating”, but isn’t happy of the release of the exploit to the wide world of hackers.

The reason that the flaw is so difficult to patch? It’s in the part of the browser that deals with JavaScript.

After hearing that the two hackers know of another 30 unpatched flaws in Firefox, Jesse Ruderman, a Mozilla security staffer, encouraged them to disclose the bugs to Mozilla, who gives away $500 per vulnerability.

Wbeelsoi simply said, “It’s a double-edged sword, but what we’re doing is really for the greater good of the I... Read more

A:Hackers warn of critical flaw in Firefox

Read other 7 answers
RELEVANCY SCORE 62

Published: April 26, 2005, 6:14 PM PDTBy Richard ShimStaff Writer, CNET News.com'Highly critical' flaw reported for Netscape softwareAn unpatched flaw in some versions of the Netscape browser could let an attacker into vulnerable systems, security company Secunia has warned. A patch has not been created, according to Secunia....Secunia's advice for dealing with the issue is to "use another product."Read complete article at CNET NewsNow, Netscape recommends that one upgrades to the 8.0 version which is basedon Firefox coding and may not be affected by this flaw.(Why not just choose to use Firefox?)

A:'Highly critical' flaw reported for Netscape software

Evidently,an upgrade to the newest version of Netscape will prevent this, since it is based on FF code, according to the article.
Cheers,
John

Update(4/18/05): since writing this, some articles have suggested that it is not certain that the latest version will avoid this flaw.

Read other 2 answers
RELEVANCY SCORE 62

From The Register:.

 
A huge security hole has been found in popular ecommerce platform Magento, requiring an immediate update.
Critical cross-site scripting vulnerabilities have been found in both versions 1 and 2 of the platform. They can be exploited just by registering with a spiked username or email address – making it an obvious target for automated attack.
The holes can be used to effectively take over a Magento store, putting both user data and credit card data at risk
 

 

Read other answers
RELEVANCY SCORE 62

July 15, IDG News Service ? (International) Critical design flaw in Microsoft?s Active Directory could allow password change. Researchers with Aorato identified a flaw within Microsoft?s Active Directory which could allow attackers to change a victim?s password and use the new password to access a company?s network and enterprise functions. The vulnerability relies on the older NTLM authentication protocol to perform a ?pass-the-hash? attack to gain access. Source: Critical design flaw in Microsoft's Active Directory could allow password change | PCWorld

Read other answers
RELEVANCY SCORE 62

Adobe has acknowledged a "critical" security flaw in its Reader, Acrobat and Flash Player software.Adobe says the vulnerability potentially enables hackers to take control of affected computer systems.Users running Windows, Macintosh or Linux might all be open to attack.http://news.bbc.co.uk/2/hi/technology/10257411.stm

A:Adobe acknowledges critical security flaw in software

Thanks for the report Budapest. I will be watching for a new update to get. Adobe is like Windows; BIG. That's why so many bad guys jump on them because they can infect more computers that way. IMHO Windows is doing a better job but I don't git the same feeling from Adobe.

Read other 4 answers
RELEVANCY SCORE 61.2

Adobe Warns of Critical Flaw in Flash, Acrobat & Reader.

Adobe Systems Inc. warned late Friday that malicious hackers are exploiting a previously unknown security hole present in current versions of its Adobe Reader, Acrobat and Flash Player software.

The company notes that the Flash Player 10.1 Release Candidate, available from this link, does not appear to be vulnerable.Click to expand...

-- Tom
 

A:Adobe Warns of Critical Flaw in Flash, Acrobat & Reader

Thanks Tom xx
 

Read other 2 answers
RELEVANCY SCORE 61.2

Adobe Systems has released an emergency patch for Flash Player in order to fix a critical vulnerability that attackers are already taking advantage of.

The vulnerability, tracked as CVE-2016-7855 in the Common Vulnerabilities and Exposures database, is a use-after-free error that could lead to arbitrary code execution.

"Adobe is aware of a report that an exploit for CVE-2016-7855 exists in the wild, and is being used in limited, targeted attacks against users running Windows versions 7, 8.1 and 10," the company warned in a security advisory Wednesday.

Users are advised to upgrade to Flash Player 23.0.0.205 on Windows and Mac and to version 11.2.202.643 on Linux. The Flash Player runtime bundled with Google Chrome and Microsoft Edge or Internet Explorer 11 on Windows 10 and 8.1 will be updated automatically through those browsers' update mechanisms.



Emergency Flash Player patch fixes zero-day critical flaw | PCWorld

Read other answers
RELEVANCY SCORE 61.2

Intel has major security flaws in the Management Engine. You need to read the Intel emergency memo from a few hours ago.
In the memo, Intel links a tool to check if your system is vunerable.
Right now neither Dell nor Intel has posted updated software to remedy this critical issue for the XPS 9560 or 9550. 
GET MOVING DELL!!!

A:URGENT - Intel Management Engine - critical security flaw

Lol, ok then.  Well if this is how you feel about security vulnerabilities that Intel has acknowledged and is committing to fix, then I can't wait to see your reaction to the other news that broke about Intel Management Engine last week, which they might NOT fix because "it's not a security vulnerability, it's a feature": thenextweb.com/.../

Read other 5 answers
RELEVANCY SCORE 61.2

The vulnerability is located in the VLC component responsible for playing ASF (Advanced Streaming Format) video files, VideoLAN, the non-profit organization that develops the media player, said in a security advisory published on its website. Vulnerability research and management firm Secunia rated the flaw as highly critical and said its successful exploitation could allow the execution of arbitrary code. The flaw can be exploited by tricking a user into opening a specially crafted ASF file. VideoLAN advises users to refrain from opening files from untrusted locations and to disable the VLC browser plug-ins until the issue is patched. By default, VLC installs plug-ins for Mozilla Firefox, Internet Explorer, Google Chrome, Apple Safari, Opera and Konqueror. The plug-ins allow the playback of video files embedded into Web pages. An alternative solution is to manually delete the vulnerable libasf_plugin.dll file from the VLC installation directory, VideoLAN said. This will disable the software's ability to play ASF videos until a patched version of the file is reinstalled during a software update...More @ Source

Read other answers
RELEVANCY SCORE 60

Company urges users to run single-click tool before hackers exploit 'decently wormable' SMB 2 flaw.
With attack code that exploits a critical unpatched bug in Windows likely to go public soon, Microsoft wants users to run an automated tool that disables the vulnerable component.
The bug in SMB (Server Message Block) 2, a Microsoft-made network file- and print-sharing protocol that ships with Windows, affects Windows Vista, Windows Server 2008 and preview releases of Windows 7.



Source -
Microsoft unveils shield for critical Windows flaw as attack code looms | Security Central - InfoWorld

Read other answers
RELEVANCY SCORE 60

Microsoft has issued an emergency update to patch a critical vulnerability that affects all supported versions of Internet Explorer. If you haven't already installed the fix, it's recommended that you do so ASAP as hackers are said to be actively...

Read more
 

A:Microsoft rolls out emergency fix for critical flaw affecting all versions of Internet Explorer

Do NOT install the recommended updates. M$ has secretly hidden an nVIDIA driver there. None of the recommended updates' details say ANYTHING about any of them being a display driver or driver for that matter. After a restart, it even went as far as turning DSR on GLOBALLY (2.00x) and after trying to uninstall the driver and everything with it (physx, 3D etc) the end result was nothing named nVIDIA was in add/remove or Revo Uninstaller.

I did a Clean Custom Install (driver and PhysX only) of the same driver and the proper entries are installed and showing in add/remove.

I have not had a single graphics driver appear in Windows Update until today. Something really freaking fishy is going on. I am running Windows 8.1.
 

Read other 7 answers
RELEVANCY SCORE 59.2

Microsoft has updated the Malicious Software Removal Tool, a free security tool the company is offering Windows users to fight specific malware, in order to defend themselves agaist a prevalent worm that targets a Critical Windows vulnerability. Back in October 2008, the Redmond company made available an out-of-band security bulleting (MS08-067) designed to resolve a Critical flaw in the Windows Server service (SVCHOST.EXE) affecting all supported versions of Windows. At that time, Microsoft warned that even Windows Vista SP1, Windows Server 2008 and Windows XP SP3 were vulnerable, and also released a patch for the pre-release version of Windows 7.



Free Microsoft Security Tool Kills Worm Targeting Critical Windows Flaw - The Win32/Conficker - Softpedia


You can download the Malicious Software Removal Tool from here:
I ran the 64 bit tool without any problems.

32 bit:

Download details: Windows Malicious Software Removal Tool

64 bit:

Download details: Windows Malicious Software Removal Tool x64

A:Free Microsoft Security Tool Kills Worm Targeting Critical Windows Flaw

Thanks for the post. Ran the tool. All clear

Read other 4 answers
RELEVANCY SCORE 56.4

Serious security flaw found in IE [bbc]

As many as 10,000 websites have been compromised since last week to take advantage of the security flaw, said antivirus software maker Trend Micro. Click to expand...

I don't want to go on a rant here but the IE team at Microsoft has caused so many problems for so many people, from users to web developers.

Anybody who is currently a user of IE really should take a look at alternate browsers (Firefox, Opera, Safari).
 

A:Serious security flaw found in IE

Read other 16 answers
RELEVANCY SCORE 56.4

This might be worth keeping an eye open
http://news.bbc.co.uk/2/hi/technology/7784908.stm
 

A:Serious security flaw found in IE

The same article has already been noted in another section: "Web & Email"

But thanks anyway.
 

Read other 3 answers
RELEVANCY SCORE 56.4

...Called XSS fragmentation, the vulnerability consists of multiple chunks, or fragments, of JavaScript malware that can slip by a filter or firewall because individually they don't constitute a security risk. But when they are combined after hitting the site, they can then be dangerous.XSS fragmentation is rare, but a potentially powerful vulnerability that could be used against community-based sites such as MySpace or Web-based mail systems...MySpace in particular is vulnerable because it takes user-supplied content and stores it without adequate filtering...darkreading.com

Read other answers
RELEVANCY SCORE 56

FROM: http://www.usatoday.com/tech/products/2006-12-26-vista-flaw_x.htm?csp=27
NEW YORK — Windows Vista, the new computer operating system that Microsoft is touting as its most secure ever, contains a programming flaw that might let hackers gain full control of vulnerable computers.
Microsoft and independent security researchers, however, tried to play down the risk from the flaw, which was posted on a Russian site recently and is apparently the first affecting the new Vista system released to larger businesses in late November.

The software company said it was investigating the threat but found so far that a hacker must already have access to the vulnerable computer in order to execute an attack.

That could occur if someone is actually sitting in front of the PC or otherwise gets the computer's owner to install rogue software, said Mikko Hypponen, chief research officer for Finnish security research company F-Secure.

"The bottom line is you couldn't use a vulnerability like this to write a worm or hack a Vista system remotely," Hypponen said Tuesday. "It only has historical significance in that it's the first reported vulnerability that also affects Vista. It's a non-event in other ways."

Attackers with low-level access privileges on a vulnerable machine could theoretically use the flaw to bump up their status, ultimately gaining systemwide control, Hypponen said.

The flaw affects older Windows systems, too, and Hypponen said v... Read more

A:First Security Flaw in Vista found

It was only a matter of time.
 

Read other 3 answers
RELEVANCY SCORE 56

Flaw found in Kaspersky antivirusBy Joris EversStaff Writer, CNET News.comPublished: October 3, 2005, 2:24 PM PDT A "critical" flaw in Kaspersky Lab's antivirus software could let an attacker commandeer systems that use the products... The problem lies in Kaspersky's antivirus library, security researcher Alex Wheeler wrote in an advisory...The vulnerability likely affects multiple Kaspersky products on various platforms because the library is used throughout the company's consumer and corporate software, he said...FrSirt describes the issue as "critical," its highest rating.beta.news.com

A:Flaw found in Kaspersky antivirus

update posted by apluswebmaster at SWI- http://www.techweb.com/article/printableAr..._section=700028October 04, 2005"...Kaspersky confirmed the vulnerability in an e-mail to TechWeb, it also said it had already stymied possible exploits by building and releasing a package of signatures that detect possible exploits. "This set of signatures was added to the anti-virus databases of Kaspersky Anti-Virus on September 29, significantly reducing the chances of successful use of the .cab vulnerability exploits," spokesman Alexey Zernov said in the e-mail. He also noted that Wheeler did not publish exploit code, a fact that would make it more difficult for attackers to leverage the vulnerabilities. Zernov also said that company developers were working on an emergency update that would include changes to the .cab scanning module. Kaspersky will release the fix Wednesday, Oct. 5..."Kaspersky Says It's Fixed AV Scanner Flaw

Read other 2 answers
RELEVANCY SCORE 56

Serious flaw found in three Symantec products
By Sam Varghese
March 16, 2004

Security vendor eEye has released basic details about a vulnerability in Symantec products that would permit the execution of a severe denial-of-service attack.

Another flaw discovered recently, in products sold by Internet Security Systems, could lead to the compromise of default installations of the affected software, eEye said.

The severity of both vulnerabilities has been rated high by eEye.

The company said the remotely-exploitable flaw in the Symantec products would let an anonymous attacker carry out the attack against systems running default installations of the affected software.

The products listed as affected were Norton Internet Security 2004, Norton Internet Security 2004 Professional and Norton Personal Firewall 2004.
Here
 

A:Serious flaw found in three Symantec products 3/16/04

Thats going to hurt the rep...
 

Read other 1 answers
RELEVANCY SCORE 55.2

New Security Flaw Found In IE, Best Fire Up FireFox

Jan 03

If you?re using Internet Explorer to read this it might be an idea to shut it down now and open up trusty old FireFox instead. Microsoft has today issued an alert to notify users of a critical security flaw in IE.7.0 that could allow hackers to take control of your computer and steal passwords. The company is apparently preparing an emergency patch to fix it but in the meantime simply requests that users remain ?vigilant? against the threat.Microsoft advisors actually ask that you don?t switch because they are trying to get it resolved as soon as possible. Of course it couldn?t be seen to recommend else?s software, but this doesn?t show much consideration for people?s security concerns. Trend Micro security advisor Rick Ferguson is free from such restraint: ?In this case, hackers found the hole before Microsoft did, this is never a good thing. What we?ve seen from the exploit so far is it stealing game passwords, but it?s inevitable that it will be adapted by criminals; it?s just a question of modifying the payload the trojan installs. If users can find an alternative browser, then that?s good mitigation against the threat.? Alternative browsers FireFox, Opera, Chrome and Safari are not vulnerable to the flaw, so if you know what?s good for you best jump on one of these to be safe (most are better than IE anyway). - Paul Lester [BBC] security Internet Explorer Microsoft
New Security Flaw Found In I... Read more

A:New Security Flaw Found In IE, Best Fire Up FireFox

Thanks Norm,

Have not had a security notification from M$ yet on any "out of band" hotfix yet - If I see one will post it here for information

Read other 9 answers
RELEVANCY SCORE 55.2

...in Internet Ex-PLODE-r
 
http://blog.chron.com/techblog/2014/04/first-security-flaw-microsoft-wont-fix-in-windows-xp-has-been-found/?cmpid=rrhoustontx

As Microsoft’s creaky and obsolete operating system neared the end of its support life, the company warned that security flaws found after the April 8 deadline would not be patched. Now, a vulnerability has been discovered in all versions of Internet Explorer – including those that work on WinXP.
 
Though there’s no fix at the moment for any version of Windows, there soon will be – except for XP.
 
The flaw affects IE 6 through 11. Versions 6-8 work on Windows XP, but like XP, those versions of Microsoft’s browser no longer get security updates. That means, if you are using IE on XP, you’re vulnerable, with no hope in sight.
 
The obvious workaround is, of course, to use a browser other than Internet Explorer. That’s fine for consumers, but too many businesses still use XP and browser-based apps designed specifically for IE. Those companies that have been slow to dump XP are particularly at risk.
 

A:First XP security flaw Microsoft won’t fix (for free) has been found...

Related topic: New hole in Internet Explorer already under attack to hijack PCs

Read other 1 answers
RELEVANCY SCORE 55.2

New Security Flaw Found In IE, Best Fire Up FireFox

Jan 03

If you?re using Internet Explorer to read this it might be an idea to shut it down now and open up trusty old FireFox instead. Microsoft has today issued an alert to notify users of a critical security flaw in IE.7.0 that could allow hackers to take control of your computer and steal passwords. The company is apparently preparing an emergency patch to fix it but in the meantime simply requests that users remain ?vigilant? against the threat.Microsoft advisors actually ask that you don?t switch because they are trying to get it resolved as soon as possible. Of course it couldn?t be seen to recommend else?s software, but this doesn?t show much consideration for people?s security concerns. Trend Micro security advisor Rick Ferguson is free from such restraint: ?In this case, hackers found the hole before Microsoft did, this is never a good thing. What we?ve seen from the exploit so far is it stealing game passwords, but it?s inevitable that it will be adapted by criminals; it?s just a question of modifying the payload the trojan installs. If users can find an alternative browser, then that?s good mitigation against the threat.? Alternative browsers FireFox, Opera, Chrome and Safari are not vulnerable to the flaw, so if you know what?s good for you best jump on one of these to be safe (most are better than IE anyway). - Paul Lester [BBC] security Internet Explorer Microsoft



New Security Flaw Foun... Read more

A:New Security Flaw Found In IE, Best Fire Up FireFox

I wonder how IE8 fits into this.

Read other 6 answers
RELEVANCY SCORE 54.8

Critical vulnerability in NetUSB driver exposes millions of routers to hacking | PCWorld

Read other answers
RELEVANCY SCORE 54

By James Walker
5 Feb, 2016
"A major security flaw has been found in Avast's SecureZone browser, also known as Avastium, that allows an attacker to remotely read any file on the user's computer, over the Internet. Antivirus firm Avast quickly patched the embarrassing bug.

...

Avastium is based on Chromium, the open-source browser engine originally developed by Google for Chrome but now available for everyone. Avast modified a key security feature in Chromium, removing the protection it offers and exposing the user's filesystem to the Internet."
Major security flaw found in antivirus firm's 'secure' browser
 

A:Major security flaw found in Avast's Secure Browser

These "Secure browsers" Who can tell how much safer are them from other browsers outhere?, I think you should always use a browser because you know a bit about it and it works for you good and safe, not because it's named "any AV Secure Browser".
 

Read other 3 answers
RELEVANCY SCORE 49.2

I believe everyone here knows those things that pop up or display a fake window in your internet browser saying there are critical errors and your computer needs to be scanned. I know never to click them and to get out ASAP, but they are very very annoying. I use Firefox with WOT and when I'm on google images and I click a picture at least once or twice a day one of those will pop up. WOT has the green circle on the image, but it redirects to one of those fake sites. One of the weirdest things, is on all these sites if you type in the URL of the site, nothing happens. Am I the only one that finds so many of these sites?

A:So and So has found a critical error

I'm guessing a popup blocker addon might do it, or adblocker. I've come across the fake windows XP explorer window once or twice, once on an iPod, so it was areas giveaway but never that frequently :/

Read other 9 answers
RELEVANCY SCORE 48.8

My computer at home is having a big problem. All exe files are unable to be run at all. I can't put this in HJT log as even though I've transferred HJT from this computer (my laptop) to my problematic computer because of this.

It started when I was trying to update, replace and optimize numerous programs. I removed a lot of them which includes Real Media, Quicktime, Diet MP3, Microsoft Office, Winzip, WinRAR, Virtual CD v5 and installed some programs such as Switch, Windows Live Messenger. THEN, I go to Set Program Access and Defaults, un-tick enable access to: Internet Explorer, Outlook Express and Windows Messenger. As soon as I pressed OK, I noticed My Computer and My Network Place are renamed as Folder, most files have icon when Windows can't identify their file extensions, when I wanted to change back the Set Program Access and Defaults through Control Panel, Add Remove Programs, I found out that everything inside Control Panel and all other programs can't be run. The response given by Windows is Windows can't find rundll32.exe.

I tried to run Windows in Safe Mode but the same problem remains. So I'm quite clueless on what can be done now... The good thing is that I can still go to C: and still find all my documents intact and so I can transfer all my files away. But I'm wondering whether it's still possible for my computer to be restored to the way it was... Thx for reading and for any replies...

A:Critical XP Problem: rundll32.exe isn't found

Do you have your windows xp disk and your motherboard disk?
http://forums.cnet.com/5208-10149_10...sageID=1312306
You might try the system file checker

Read other 1 answers
RELEVANCY SCORE 48.8

May 9, 2005 10:56AM

"The Mozilla Foundation partially patched this issue on the server side by adding random letters and numbers to the install function, which will prevent this exploit from working," said FrSIRT, which posted the alert on Saturday.

--------------------------------------------------------------------------------

Complimentary Whitepaper | Right-Channeling: Make Sure your Best Customers get your Best Service - By giving your most valuable customers superior service, you keep them happy?which in turn significantly increases retention and maximizes the value they generate. Learn the secrets to Right-Channeling - Download Today
--------------------------------------------------------------------------------




A French security testing company has found two holes in the latest version of Firefox that it rates as "critical."
The vulnerabilities could allow hackers to implant code in a Web page that would create a batch/exe file with a malicious payload such as a Trojan or key-logger on the PC of anyone viewing the site, warned testers at the French Security Incident Response Team (FrSIRT).

"The Mozilla Foundation partially patched this issue on the server side by adding random letters and numbers to the install function, which will prevent this exploit from working," said FrSIRT, which posted the alert on Saturday.

FrSIRT rates the flaws as critical and has posted proof-of-concept exploit code on its... Read more

A:Two New Critical Flaws Found in Firefox

so if you have no sites on your trusted list are you safe?

Read other 2 answers
RELEVANCY SCORE 48.8

For a week now I've tried to get rid of something infecting my computer but have had no luck.  This is the message box that pops up several times a day when I'm on the internet:
"Windows has discovered a critical problem and will close in one minute. Save your work."
I've run my AVG several times and found nothing. I also ran Malwarebytes Anti-Malware. Then I went on line and ran a free scan with Kaspersky and there was no malware found there either.  Just several vulnerabilities..   
Can anyone give me some idea as to what is wrong here?  I'm not a computer genius so explain in simple steps. thanks so much.
Here is what Kaspersky found:
C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll
C:\Program Files (x86)\Java\jre1.6.0_18\bin\java.exe
C:\Program Files (x86)\Java\jre6\bin\java.exe
C:\Program Files (x86)\Java\jre7\bin\java.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
C:\Windows\system32\java.exe
C:\Windows\SysWOW64\Adobe\Shockwave 11\SwInit.exe
C:\Windows\SysWOW64\Macromed\Shockwave 10\SwInit.ex

A:Windows 7 Critical Problem found

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.
We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.
To help Bleeping Computer better assist you please perform the following steps:
*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/543614 <<< CLICK THIS LINK
If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.
***************************************************If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of t... Read more

Read other 5 answers
RELEVANCY SCORE 48.8

I just got a new computer with windows XP and it has more programs than I will ever use or know what they are. LOL Anyway, I ran Spybot and it came up with WILDTANGENT as a critical with multiple hits. I have no idea what this is but when I look under
add/remove programs it is listed as an installed program (wildtangent web driver). Can you tell me what this program is used for and if it is a bad thing or is Spybot being fussy?
Thanks tlh99
 

A:Spybot found critical hits

Look at this.
http://www.winpatrol.com/db/plus/wildtangent.html?wildtangent&1
 

Read other 3 answers
RELEVANCY SCORE 48.8

A security researcher has uncovered four bugs in web browsers. Two of the vulnerabilities affect Mozilla's open-source Firefox browser, and two flaws have been found in IE (Internet Explorer)...http://www.pcadvisor.co.uk/news/index.cfm?newsid=9615

Read other answers
RELEVANCY SCORE 48

Ok, after running AdAware, the scanning process goes as normal until it finds a single critical object, at which it instantly restarts my computer. When I reload AdAware and scan again, the same (I presume) critical object is found, and again, the compute restarts.

Any ideas on what may be causing this?

A:AdAware restarting as soon as critical object is found?

You may want to try reinstalling adaware. Also try running spybot to see if it will find the same object. The link is in my signature.

Read other 3 answers
RELEVANCY SCORE 48

When trying to play games that came installed on the computer, when I launch a card game it says Critical error graphichs device not found.
 

Read other answers
RELEVANCY SCORE 47.6

Hi,

I was googling for images of medical viruses when I may have picked up a computer one! A message box popped up with the following text:

"The page at http : // sky. antispyware. co. cc says:
Windows Security has found critical process activity on your system and will perform fast scan of system files"

Being an idiot I pushed OK and in no time at all at least five bogus bits of malware were diagnosed. I realised I'd been had and quit out before I bought their proffered antimalware solution, but I fear something has already made its way into my system. For one thing, System Restore has stopped working. Also, I now regularly receive the popup, with different http sites in the header section each time.

Googling the problem I learned it's connected to Avscanner.net . I ran Malwarebytes but found nothing. Ditto Spybot. Before I found your website I ran ComboFix (sorry!) but there has been no change. After I found you I tried to run GMER and DDS they both resulted in a BSOD with the title: "BAD-POOL-HEADER". I uninstalled Avira antivirus (it had previously found nothing on a full scan) in case it was conflicting with them, but still the BSOD. I finally got them to run in Safe Mode as Administrator.

So am I infected, or is this odd behaviour due to something else?

Thanks for your time. You volunteers are heroes!

Richard.

.
DDS (Ver_11-03-05.01) - NTFSx86 NETWORK
Run by Administrator at 16:56:34.73 on Tue 05/04/2011
Internet Explo... Read more

A:Windows Security has found critical process activity

Hello and welcome to Bleeping Computer We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here. Please take note: If you have since resolved the original problem you were having, we would appreciate you letting us know. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
If you are unsure about any of these characteristics just post what you can and we will guide you.Please tell us if you have your original Windows CD/DVD available. If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far. Upon completing the steps below another staff member will review your topic and do their best to resolve your issues. If you have already posted a DDS log, please do so again, as your situation may have changed. Use the '... Read more

Read other 16 answers
RELEVANCY SCORE 47.6

First of all, this problem is Vista related however VistaForums is being spam bombed by generic drugs and my posting is now way down on the list so I'm going to post it here too.

Trying to solve friends problem using TeamViewer as they are 1000 miles away.

He gets this message "Critical Error - No suitable graphics devices found" on some of the games in Vista. I'm talking about Solitaire and Mahjong. Inkball works.

Happened only recently so I suspected the Windows Updates of the past week and uninstalled them. No change.

I've uninstalled the graphics driver and had Windows download and reinstall it. Same thing. I've tried downloading the latest drivers from Nvidia but that fails on attempt(see http://img16.imageshack.us/img16/802...llerfailed.jpg).

Only seen couple references to the problem on the interweb. Some have solved it using System Restore but that is out as each one i try I get a "system restore did not complete successfully" , "transcient error" , 0x800423f3.

Someone suggested to remove and reinstall .NET 1.1 that is a no go.

Malwarebytes, Superantispyare and MSE all come up good.

Thoughts from the roundtable?

A:Critical error - No suitable graphics devices found

I have no great knowledge on this subject but I did find this from Microsoft that might help.

Backup Error&#58; 0x800423F3 - Microsoft Community

Read other 1 answers
RELEVANCY SCORE 47.6

Tech Support Guy System Info Utility version 1.0.0.1
OS Version: Microsoft® Windows Vista™ Home Premium , Service Pack 2, 32 bit
Processor: Intel(R) Celeron(R) CPU 2.40GHz, x86 Family 15 Model 4 Stepping 1
Processor Count: 1
RAM: 1014 Mb
Graphics Card: Intel(R) 82865G Graphics Controller (Microsoft Corporation - XDDM), 5 Mb
Hard Drives: C: Total - 35134 MB, Free - 3442 MB;
Motherboard: Dell Computer Corp., 0N6381, , ..CN481114B607KQ.
Antivirus: None

this happens when I try to play the games on my computer
 

A:Critical Error Graphics Device not found-Vista

Update the Graphics driver with the intel one.

Which I don't think Intel has driver support for Windows Vista for your Graphics chipset any more
I looked for it at intel.com. The games might require DirectX 9.0c, version 10 or higher which your Graphics card or chipset might not support. I believe your graphic chipset only supports DirectX 7.1 which is obsolete.
 

Read other 2 answers