Microsoft patched drive-by errors in March

Microsoft yesterday released three security updates that patch four vulnerabilities in Windows and Office.

Microsoft patched drive-by errors in March

TipsMake.com - Microsoft yesterday released 3 security updates to patch 4 vulnerabilities in Windows and Office. And, as expected, Microsoft did not release a patch for Internet Explorer (IE) to create an opportunity for the Pwn2Own contest, the hack contest will take place today.

Microsoft patched drive-by errors in March Picture 1

Even the company called this patch a "breathless" phase for users. Jerry Bryant, head of Microsoft Security Response Center (MSRC), a team in charge of investigating, patching and resolving problems, said: ' This is a mild month .'

Microsoft seems to be accustomed to the habit of providing fewer patches in the odd month. For example, in January, they only provided 3 patches while the previous month provided 22 patches.

One of the 3 patches provided - Microsoft calls them bulletins - rated 'serious', the firm's highest danger. The remaining 2 copies are considered 'important', the second highest level of warning.

Bulletin MS11-015 is the only serious update patch.

Wolfgang Kandek, CTO of Qualys, said: ' This is the patch we are most interested in .'

This update patches a pair of vulnerabilities, including one of Windows Media Center and Windows Media Player found in nearly all versions of Windows. This vulnerability 'resides' in Digital Video Recording files (DVR-MS), created by the Stream Buffer Engine (SBE) tool and stored with ".dvr-ms" file extension.

When it comes to this type of attack, it can be exploited simply by persuading users to access malicious code sites, Bryant said. " This is a browsing and browsing vulnerability ."

Andrew Storms, director of security operations at nCircle Security said: ' This is a drive-by vulnerability. There are two mining methods, first in an IFRAME, a typical drive-by type. The next type is in the form of email attachments, which appear when users frequently open them, not just preview (in their email accounts) '.

According to Angela Gunn, director of communications for Microsoft MSRC central security, all versions of Windows, including Windows XP, Vista and Windows 7, can be hacked unless patched. The only exception: Windows XP Home Edition because it does not support vulnerable codecs.

The second vulnerability in MS11-015, and two other vulnerabilities patched in MS11-016 and MS11-017, are classified as " DLL load hijacking " vulnerabilities, sometimes called " binary planting " vulnerabilities - implanted. binary.

Researchers first revealed bugs related to DLL load hijacking issues in Windows and Microsoft software and many third-party Windows applications in August last year. Microsoft started patching DLL load hijacking in their software last November.

In December, Bryant said Microsoft believed they could complete the task of DLL load hijacking . However, in the past January and February, the company still has problems patching this error.

Yesterday, Bryant said: ' This will make us continue our investigation. Although we think we have found all of these vulnerabilities in IE, we are still investigating the company's remaining products . '

Both Kandek and Storm said that Microsoft seems to be able to continue implementing DLL load hijacking errors in the near future. Kandek said: ' This will happen in the next few years and not only will Microsoft do the work that third-party vendors will also do .'

Although the warning bell has rang since August and Microsoft has quickly provided a tool to block malicious attacks, hackers have not used the technology to harm Windows computers, or if they have use, their efforts are not detected.
This does not surprise Storms.

He said: ' These gaps are difficult to exploit. Last year, it was easy, but it turned out not to be easy to exploit these vulnerabilities, because it required users to browse to the area containing the malicious code and open the file, and the attackers would Put a malicious DLL and a bad file. That's just a few steps '.

HD Moore, head of Rapid7's security staff and creator of the Metasploit toolkit open source toolkit, yesterday announced to businesses that they can turn the exploit of any DLL vulnerability. Which hijacking load becomes more difficult for any hacker by removing WebDAV service on all Windows machines, and blocking outbound ports 139 and 445.

Last year, Moore was one of the first to reveal the new level of DLL load hijacking vulnerability .

However, Microsoft did not patch IE before the Pwn2Own hack contest took place today.

Pwn2Own, which will put security researchers 'against' four browsers, including Microsoft's IE, Apple's Safari, Google's Chrome and Mozilla's Firefox, will take place from November 9 at the CanSecWest conference in Vancouver. Canada. The first security researcher who defeats IE, Safari or Firefox will receive a $ 15,000 prize, and anyone who gets off the Chrome browser will receive a $ 20,000 prize.

Yesterday (March 8), Bryant said that customers' patching should not be interrupted with surprising security updates to create opportunities for the Pwn2Own competition.

Bryant said: ' I don't see any reason to disrupt customers just because of the competition. Going out is a potential interruption, and we won't do this unless a vulnerability is being attacked . '

Microsoft refused to preempt IE before Pwn2Own was not a surprise: The company provided updates for IE in even months, and the latest browser update was released on August 8. 2 past.

Bryant added, in any case, that any holes exploited at Pwn2Own leaked out were not harmful because the errors discovered at this contest will be reported to the vendor. level discreetly.

HP TippingPoint Group, which owns Zero Day Initiative (ZDI) security research program, generously donated Pwn2Own and paid most cash prizes, acquired ownership of the discovered holes in the competition and awarded Leave them to suppliers. ZDI gives developers six months to patch any vulnerabilities they buy before they publish official information.
Both Google and Mozilla have recently patched their browser - Google patched early yesterday - and Apple is expected to update Safari before Pwn2Own starts.

Microsoft updates can be downloaded and installed via Microsoft Update and Windows Update services, as well as through Windows Server Update Services (WSUS).

Microsoft fixes Gadget on Windows 7 and Vista
the company temporarily disables this entire tool to prevent users' computers from being exploited for errors and taking control.
Microsoft patched a series of serious bugs for IE and Office next Tuesday
users of microsoft products are familiar with patch tuesday - the second third day of the month - often used by microsoft to release patches for their products. tuesday march 12 will be a very important patch tuesday.
Microsoft patched a critical vulnerability in Windows
yesterday microsoft patched three vulnerabilities in windows, one of which could be exploited by attacks that trick users into accessing malicious websites.
Summarizing congratulations photos on March 8 most beautiful
these are pictures and photos of the international women's day, march 8, beautiful and meaningful
Microsoft has just patched a critical security hole in Windows 10 discovered in 2018
in patch tuesday released august 2020, microsoft patched a vulnerability that allowed hackers to turn msi files into java files that could spread malicious code on windows 10. and more importantly, malicious files. this harm retains the legal digital signature.
Google launched Chrome 33, patched 7 new security bugs
in preparation for the annual pwnium and pwn2own hack contest scheduled to take place today march 13, google released chrome 33 on tuesday and patched a total of 7 security holes for chrome's browser. me
Microsoft will soon fix stutter and lag when playing games on Windows 10
after the march 2021 update and subsequent updates of windows 10, some users experienced performance issues while playing games. the most common problems include reduced frame rates (fps), stuttering in some games, and unstable interface textures.
How to fix Read-only of external hard drive on Mac
sometimes when connecting an external hard drive to a mac, users will find that it is read-only. this happens because the drive is formatted (formatted) with microsoft's ntfs file system that macos does not support by default.
How to fix errors do not upload files to Google Drive
google drive is definitely a reliable backup and sync solution with a range of handy features that make user work easier. however, google drive often has problems downloading files like upload speed is very slow or the file cannot be uploaded.
Microsoft released a serious patch in IE9 and Windows
yesterday, microsoft patched 34 vulnerabilities in windows, internet explorer (ie), office and other software. among them, there are 15 patches that the company rated as 'serious'.
AMD patched a series of security holes in the graphics driver for Windows 10
amd has just patched a series of security holes in their graphics driver for windows 10 devices. these vulnerabilities allow hackers to perform privilege escalation attacks or execute arbitrary code on the victim's machine. .
Top 10 common Google Drive problems and solutions
google drive lets you collaborate with others seamlessly. it is also integrated with many other services and files are always accessible. on top of that, you also get a huge amount of free storage.