March 30, 2007
Privacy and Security Watch: Microsoft warns of zero-day Windows attack
Never open email attachment from an unknown source.
Never open an email attachment that you were not expecting from a known
source without first verifying that it was actually sent by that person.
If you use outlook as your email client, you are especially vulnerable to this attack. In this case, even if you have wisely set your email to only accept/read text email, you still are at risk.
If you use Internet Explorer you are especially vulnerable to this attack. Firefox 2.0 is not vulnerable to this attack.
Be sure you are not visiting rogue internet sites.
From the article:
"An attacker could try to exploit the vulnerability by creating a specially crafted Web page," the Microsoft advisory warned. "An attacker could also create a specially crafted e-mail message and send it to an affected system. Upon viewing a Web page, previewing or reading a specially crafted message, or opening a specially crafted e-mail attachment, the attacker could cause the affected system to execute code."
See the full article here.
There is also an unofficial patch, since Microsoft doesn't seem to be hurrying to fix this. You may or may not want to consider this unofficial patch. You can read about it here.
Richard Kuper
The Kuper Report
http://TheKuperReport.com
* [Please post your job openings here] *
R.L. Kuper, Inc. - Management Consulting
Never open an email attachment that you were not expecting from a known
source without first verifying that it was actually sent by that person.
If you use outlook as your email client, you are especially vulnerable to this attack. In this case, even if you have wisely set your email to only accept/read text email, you still are at risk.
If you use Internet Explorer you are especially vulnerable to this attack. Firefox 2.0 is not vulnerable to this attack.
Be sure you are not visiting rogue internet sites.
From the article:
"An attacker could try to exploit the vulnerability by creating a specially crafted Web page," the Microsoft advisory warned. "An attacker could also create a specially crafted e-mail message and send it to an affected system. Upon viewing a Web page, previewing or reading a specially crafted message, or opening a specially crafted e-mail attachment, the attacker could cause the affected system to execute code."
See the full article here.
There is also an unofficial patch, since Microsoft doesn't seem to be hurrying to fix this. You may or may not want to consider this unofficial patch. You can read about it here.
Richard Kuper
The Kuper Report
http://TheKuperReport.com
Labels: attack, breach, bug, eeye, firefox, ie, internet explorer, microsoft, outlook, virus, worm
| FindJobsPostJobs.com | CareerHotList.com |
Who links to me?
