Brand New Security Holes Found And Patch On This Month Updates And Office Exploits

[Saint_Michael 3]

Even though the fiasco with the .ANI exploit is still going strong microsoft released it's month updates this time they found 4 more critical breaches in it's systems (XP), most people should have gotten the update pop up screen yesterday. So here is the info on these critical flaws.

https://technet.microsoft.com/library/security/ms07-017
https://technet.microsoft.com/library/security/ms07-018
https://technet.microsoft.com/library/security/ms07-019
https://technet.microsoft.com/library/security/ms07-020
https://technet.microsoft.com/library/security/ms07-021

I don't know how reliable vista will be after a couple of years even after the fact people are still finding stuff to be exploited, but what can you do but deal with it and move on.

Also for more good news it looks like they found some new stuff in office, especially Office 2007, the mention that three of the attacks can cause a DOS (Denile of Service) and pop your CPU usage to 100% (mmm that could explain why my parents computer is like that). Other vunerabilites are code execution and using the .hlp (Microsoft Help file extension) could lead into a heap overflow, which is defined as "A heap overflow is another name for a buffer overflow occurring in the heap data area. Memory on the heap is dynamically allocated by the application at run-time and typically contains program data. "


Also another interesting tid bit of information it seems that hackers like to mention these new exploits after Microsoft sends out their monthly patches, so as to be able to use the exploit as long as they can before the patch comes out. Maybe I won't connect my new computer to the net, that will teach them . Thats about it for what I could find on the current security problem we users must face.

Sources
http://securityvulns.com/Qdocument628.html
http://forums.xisto.com/no_longer_exists/
http://forums.xisto.com/no_longer_exists/