Jump to content


Photo

Three more Microsoft zero-day bugs pop up


  • Please log in to reply
No replies to this topic

#1 TheSentinel

TheSentinel

    The man in the dark

  • General Admin
  • 31,817 posts

Posted 07 July 2010 - 07:35 PM

QUOTE
Three more Microsoft zero-day bugs pop up
Hit with reports of additional unpatched vulnerabilities in Windows, IE and IIS

By Gregg Keizer
July 7, 2010 01:34 PM ET

Computerworld - Microsoft faces a rash of zero-day vulnerabilities in some of its most important software, according to recent disclosures of unpatched bugs, including flaws in Windows XP, Internet Explorer and its flagship Web server.

Along with the unveiling of a vulnerability by a group of disgruntled security researchers who have dubbed themselves the Microsoft-Spurned Researcher Collective (MSRC), Microsoft has been served notice of at least three other flaws in the last few weeks.

Last Thursday, researcher Soroush Dalili published information about a vulnerability in Internet Information Services (IIS), Microsoft's Web server software. According to Dalili, who works as an information security analyst in the gambling and casino industry, authentication in older editions of IIS can be bypassed, giving attackers a leg up in any assault on a companies Web server.

More about
http://www.computerw...day_bugs_pop_up