Microsoft, Mozilla look into browser flaws
Microsoft and Mozilla are each working to tackle recently disclosed security flaws in the Internet Explorer and Firefox Web browsers.
common -
comments -
20.2.2007 Firefox, Mac Not Immune to Flaws, Viruses
Symantec has some bad news for Macintosh and Mozilla users. According to a recent report by the security firm, neither Mac OS X nor Firefox is as secure as proponents claim.
common -
comments -
Microsoft Patches 28 Security Flaws
Microsoft scaled back its October patch event by one on Tuesday, electing to release ten patches. Five patches are intended for Windows, the highest rating of those being critical; four for Office, with the highest rating also being critical; and one moderate patch for the .NET framework.
microsoft -
comments -
12.10.2006 VeriSign Offers Hackers $8,000 Bounty on Vista, IE 7 Flaws
VeriSign's iDefense Labs has placed an $8,000 bounty on remote code execution holes in Windows Vista and Internet Explorer 7.
microsoft -
comments -
11.1.2007 Apple monster update fixes iPhone, Safari, Mac OS X flaws
Apple has issued a monster update with patches for about 50 security vulnerabilities affecting iPhone, Safari and Mac OS X users.
common -
comments -
1.8.2007 New Windows 7 Logo Design
It seems that the email on “translucency” sent out by Steven Sinofsky, Senior Vice President, Windows and Windows Live Engineering Group, back in 2007, got lost in translation on its way to Microsoft China. Remember the leaked images featuring the new Windows 7 boxes?
windows -
comments -
20.5.2009 Windows Vista Custom PC Design
Microsoft and Dell recently partnered up to create a super-cool custom PC in celebration of Microsoft releasing Windows Vista to manufacturing earlier this month.
windows -
comments -
21.11.2006 The Ultimate Windows Vista Computer Design
Fest your eyes on the Ultimate Windows Vista computer design concept. The image included on the left, as well as the ones at the bottom of this article are a part of the Carbon Design Group’s portfolio.
common -
comments -
17.9.2007 Microsoft: Windows XP Failures Are by Design
Nothing but bad design is responsible for Windows XP failures. The consistent volume of logon failure events in Windows XP, when the operating system is not part of a domain, is generated by the design of the overall log in process.
windows -
comments -
12.11.2007 Five-Year-Old Windows Design Flaw Comes Back to Haunt Vista
Windows Vista, Microsoft’s latest operating system, has been continually applauded as an apex of security and an epitome of user protection when it comes down to the Windows platforms available on the market.
windows -
comments -
27.11.2007 Lexon Design Roswell Calculator
Let your co-workers have that boring ol? office calculator; you can show off a much cooler space-age version. The cleverly-named Roswell Calculator by Lexon Design has a super-sleek aluminium body with round keypads.
common -
comments -
Microsoft Expression Design Beta 2
Expression Design is a professional illustration and graphic design tool that lets you build compelling elements for both Web and desktop application user interfaces.
download -
comments -
19.3.2007 IE8 RTW Compatibility View Design
The Beta version of Internet Explorer 8 shipped with a big Emulate IE7 button next to the Home button on the Command Bar.
microsoft -
comments -
22.6.2009 Microsoft Demos Graphic Design Tool Suite
Microsoft Corp. Wednesday demonstrated its new toolset aimed at helping software graphic design experts and developers work better together.
common -
comments -
Winner Of Microsoft PC Design Competition Announced
At the CES conference in Las Vegas this week, Microsoft chief Bill Gates announced the winner of the Start Something PC competition.
The main prize of $50,000 was won by Prashant Chandra, an Indian born designer. Chandra's design might best be described as a 'clam-shell' tablet PC, designed around the idea of a backpack.
microsoft -
comments -
8.1.2006 Capture and Edit Screen Shots with All-in-one Design Tool – PicPick
Previously we have mentioned FireShot that works as Firefox and IE extension to let you capture and edit screenshots from web pages easily.
common -
comments -
15.6.2009 Are You Protected? - Design and Deploy Secure Web Apps with ASP.NET 2.0 and IIS 6.0
Web applications are among the most common computing services that are exposed to the Internet, and thus they pose an inviting target to anyone who wants to break into your network to steal sensitive information, tamper with your data, or otherwise compromise your system.
Ensuring the security of a Web application is a serious task, and requires consideration throughout the design, development, deployment, and operation phases. It should not be viewed as something that can be slapped onto an existing application, or achieved simply by applying existing platform security features.
microsoft -
comments -
2007 Office System Document: User Interface Evaluation Design Guidelines
This information is provided to assist sofware developers in evaluating the scope of the UI Design Guidelines for the 2007 Microsoft Office suites prior to accepting the Office UI Licensing agreement.
microsoft -
comments -
7.1.2007 Windows 7 Migration Tool to Move From Windows XP to Windows 7
In past we had covered guide on upgrading from Windows XP to Windows 7. Unfortunately there is no direct upgrade path from Windows Xp to Windows 7 and you have to use Windows Easy Transfer utility if you want to move your user and program files from XP to Windows 7.
download -
comments -
22.11.2009 Vista SP1, and then Windows 7, Windows 8 and Non-Windows Midori
2008 saw the release of Windows Vista Service Pack 1, Windows XP Service Pack 3 and Windows Server 2008, but Microsoft's journey on the Windows path is far from over.
windows -
comments -
5.8.2008 Windows 7 RC Brings Windows XP Mode Beta and Windows Virtual PC Beta
The Release Candidate of Windows 7 will bring with it the first Beta development milestones for Windows XP Mode and Windows Virtual PC.
windows -
comments -
29.4.2009 Windows Reactivator 2.0 - Backup & Restore Activation Status of Windows XP with Windows Reactivator
Every time you reinstall your windows XP you need to reactivate it online using your product key & worst if you lost your Windows XP product key.
download -
comments -
3.6.2009 Windows Vista SP1 vs. Windows Vista RTM vs. Windows XP SP2
Feb 26th, 2008. Principled Technologies has released two Microsoft commissioned reports on Windows Vista SP1 performance. In these tests, Principled Technologies measured responsiveness of Windows Vista SP1 vs. Windows Vista RTM vs. Windows XP SP2 when performing a set of common business and home tasks.
windows -
comments -
28.2.2008 Windows 7, Windows 8, Windows 9 – 1 Billion and Counting
Is Windows dead? Or, at least, is this the beginning of the end for Microsoft's proprietary operating system?
windows -
comments -
15.9.2008 Week in Microsoft: Windows 7, Windows 8, Windows 9
This week in Microsoft, we covered 128-bit support possibly coming to Windows 8 and Windows 9, Windows 7, Windows Mobile 6.5, Bill Gates, Office 2010 Starter, Microsoft MVP status, Windows Live Hotmail, the EU, and Microsoft Security Essentials.
windows -
comments -
10.10.2009 Windows Vista Build 5231 and Windows Media Player 11 Leaks!
Windows Vista Build 5231 has leaked to the web. The new build is said to include Windows Media Player 11 included. View the screenshots below! This is a Main branch build that was released on September 12th, 2005 at 8:20PM.
windows -
comments -
Windows Vista SP1 and Windows XP SP3: Official Release Dates
A French website, PC Inpact, has posted the official Microsoft product change request forms for Vista SP1 and Windows XP SP3.
windows -
comments -
6.2.2008 Download Free Windows Vista and Windows XP SP2 Straight from Microsoft
Via the Internet Explorer Application Compatibility VPC Image. That's right! Microsoft is offering access to free downloads of Windows Vista and Windows XP SP2.
download -
comments -
6.3.2008 Windows Vista SP1 outperforms Windows XP SP2 in file copy
"Its interesting that people seem to think that Vista under performs in every area of the system which is quite an incorrect perception.
windows -
comments -
27.5.2008 Windows Fiji Has RTMd as Windows Media Center TV Pack 2008
Microsoft officially confirmed that Windows Fiji has been released to manufacturing.
windows -
comments -
18.7.2008Threat Modeling: Uncover Security Design Flaws Using The STRIDE Approach
Whenever you build a new
system, you should consider
how an intruder might go about
attacking it and build in
appropriate defenses at
design-time...
msdn.microsoft.com -
04.11.2006MS Patches Exchange, Windows
Flaws
Microsoft patched two critical
code execution flaws in both
its Windows and Exchange
products, as well as denial of
service issue within Windows
as part of its monthly Patch
Tuesday program. Missing
however was an expected
cumulative patch for Internet
Explorer...
betanews.com -
10.05.2006Flaws Revealed in Adobe Creative Suite's File Manager
Patch available for two vulnerabilities identified in Mac version of design software...
pcworld.com -
31.08.2005MySQL Patches Security Flaws
Open source database company
MySQL issued a security update
to address flaws in its
product that could open up
users to attack. One of the
flaws involves a buffer
overflow that could allow for
code execution...
betanews.com -
05.05.2006Security researcher reveals iPhone design flaws
Apple's iPhone has two design flaws that could pose potential security problems, according to a researcher. The first one concerns the
iPhone's e-mail application, which automatically downloads images within an e-mail, said Aviv Raff, a security researcher, on Thursday.
That's problematic because the image will refer back to a server-side script when it is downloaded, indicating to the sender that the e-mail has
been opened and the e-mail address is valid. The address can then be spammed. E-mail applications usually are configured to block images from
untrusted sources to prevent the problem, Raff said. He suggests that users avoid using the e-mail application or be careful when clicking on links in
an e-mail that comes from an untrusted source.
neowin.net -
02.10.2008Apple Patches Eight QuickTime Flaws
Apple released an update to
its QuickTime media player on
Friday, patching eight
security flaws in the
application including code
execution and information
disclosure risks. Both Mac OS
X and Windows are affected...
betanews.com -
13.07.2007Microsoft to release fixes for
Windows flaws
As part of its monthly
patching cycle, Microsoft on
Tuesday plans to release one
security alert for flaws in
the Windows operating
system.
Th
e security bulletin is deemed
"critical," Microsoft's
highest risk rating, the
company said
http://www.microsoft.com/techn
et/security/bulletin/advance.m
spx]in a notice posted on its
Web site on Thursday. Last
month's "Patch Tuesday"
also included a critical alert
for Windows flaws. One of the
flaws was exploited days later
by the Zotob worm that wreaked
havoc on Windows 2000 systems
worldwide.
Microsof
t's Thursday notice did not
specify whether one of the
patches will be for Internet
Explorer. Over the last few
weeks, several security
researchers have come forward
with flaws in the Web browser.
Some of these vulnerabilities
could let an attacker gain
control of a user's
PC.
There are
several unpatched
vulnerabilities in IE 6,
according to Secunia. The
security monitoring company
has issued 85 alerts on the
Web browser since 2003; 19 of
those security bugs
http://secunia.com/product/11/
]remain unpatched, according
to Secunia's Web site...
winbeta.org -
09.09.2005Prize for zero-day Windows flaws: $20k
A security research company is offering $20,000 for information on undisclosed security flaws in Microsoft's Windows OS.
Digital
Armaments, which doesn't list a phone number or a headquarters address on its Web site, is offering the money as part of the "Hacker's Challenge"
through midnight EST, Feb. 29. The company is also soliciting for flaws in what they term "Windows Diffuse Applications."
Submitters need to illustrate a working exploit and document it, according to the
company's Web site, which is filled with misspelled words.
There's nothing illegal about paying security researchers for flaws, but it does tend to annoy software companies whose
products are affected.
winbeta.org -
16.01.2008Two New IE Flaws Discovered
Security researchers
discovered two new flaws in
Internet Explorer earlier this
week. While proof of concept
code is available for both,
there are no known exploits of
either flaw. Microsoft is
investigating the issue...
betanews.com -
30.06.2006Critical Windows Patch Fights
Takeover Attacks
Three image-rendering
flaws in the Windows operating
system could put millions of
Internet-connected users at
risk of PC takeover attacks,
Microsoft Corp. warned on
Tuesday.
T
he flaws could be exploited
via any software that displays
images, including the widely
used Microsoft Outlook,
Microsoft Word and Internet
Explorer programs.
The bugs are
considered particularly
dangerous because users could
be at risk by merely browsing
to a malicious rigged site
with rigged image files, or by
displaying images in the
preview pane of an e-mail
program.
Microsoft
tagged the update as
"critical," its highest
severity, and urges Windows
users to download and apply
the patches
immediately.
The
flaws affect Windows 2000,
Windows XP (including Service
Pack 2) and Windows Server
2003. ..
winbeta.org -
09.11.2005Real partially patches 'highly critical' RealPlayer flaws
Security firm Secunia said Tuesday that RealNetworks had fixed most of the security flaws within its RealPlayer software that were first highlighted
on Friday...
betanews.com -
30.07.20085 IE Flaws Patched with 14 Others
For May's Patch Tuesday,
Microsoft corrected a total of
19 security flaws across its
consumer and business product
lines, with an update for IE
fixing five remote code
execution vulnerabilities. A
highly-publicized DNS flaw was
also patched...
betanews.com -
09.05.2007Windows 7 From Idea to Feature: A view from Design
Steven Sinofsky: This post is jointly written by Samuel Moreau the manager of the user experience design team for the Windows Experience, Brad Weed,
Director of User Experience Design and Research for Windows and Windows Live, and Julie Larson-Green, the VP of Program Management for the Windows
Experience. With the number of comments that describe a specific feature idea, we thought it would be good to give you an overview of how we approach
the overall design process and how ideas such as the ones you mention flow into our process. Also for those of you attending the PDC, Sam will be
leading a session on the
design principles of Windows 7.
winbeta.org -
21.10.2008Windows Vista UI design spoof video
Making spoof videos would definitely top the list of talents by Microsoft employees. Heres a dated but rare video starring the infamous (and now
disbanded) MSX design team who worked on the Windows Codename Longhorn project.
This time they poke fun at the user experience
decision making process for Longhorn, what would become Windows Vista. Starring from left to right, Tjeerd Hoek - design director for Windows, Greg
Melander - visual design lead for Longhorn; Cees van Dok - lead product designer; Mark Ligameri - design manager & creative director for Longhorn; and
Chris Guzak - senior architect for Windows.
winbeta.org -
07.09.2007Adobe issues security update
Adobe has issued a new patch for certain versions of its Reader and Acrobat applications. The company is recommending that users and administrators
install the patches for systems running Acrobat and Reader 8. The update includes fixes for the 8.1.2 and earlier releases for Adobe Reader and
Acrobat Standard, Professional and 3D.
The patch addresses some 8 different security flaws, some of which could allow an attacker to
remotely execute code on the targeted machine. The update addresses flaws for both the Mac and PC versions of Acrobat and Reader. Among the flaws
fixed are input-validation errors, Java flaws and vulnerabilities in the Download Manager component.
Read full story.....
neowin.net -
06.11.2008Skype Flaws Open Users to
Attack
Two vulnerabilities within
Skype were made public on
Tuesday and resolved in a new
release of the VoIP software.
The flaws centered on boundary
errors in the way Skype
handles URLs meant to trigger
an action within the program,
and when importing VCARD
files. Both issues could be
used for a code execution
attack...
betanews.com -
27.10.2005Microsoft Remedies 14 Flaws in Nine Patches
Microsoft fixed a total of 14
flaws across 9 patches on
Tuesday, with six of those
patches reaching critical
status. While the number of
patches is far from the
Redmond company's record,
this month could prove
difficult for administrators...
betanews.com -
15.08.2007DHS finds flaws in 180 open source software projects
The US Dept. of Homeland Security and two research partners have detected significant flaws in Samba, Python, Perl, and about 180 other open source
projects -- but fixes are on the way...
betanews.com -
11.01.2008'Unfixable' Windows 7 exploit created by security experts
Windows 7 is quite possibly the most anticipated operating system at the moment; maybe even the most highly regarded one in the last few years, but
that doesn't mean it doesn't come without flaws. According to NetworkWorld, two security researchers have created an exploit for Windows 7
that they deem 'unfixable', which allows a hacker to take full control of a system. The researchers, Vipin Kumar and Nitin Kumar, have named
their exploit 'VBootkit 2.0', and they demonstrated it on a Windows 7 virtual machine. Kumar said, "There's no fix for this. It cannot be
fixed. It's a design problem." This may sound dangerous, but it's not entirely as bad as some would think.
Read full story.....
neowin.net -
24.04.2009Flaws found in Safari browser for Windows
An Argentinian security researcher has discovered two flaws in Apple's Safari for Windows browser. Juan Pablo Lopez Yacubian said the
vulnerabilities could allow hackers to remotely take control of a victim's computer. He described the most serious flaw as a vulnerability in the
Safari 3.1 browser for Windows which allows a hacker to “falsify the web address and enter another page or content".
This
essentially means that even though you see a trusted URL in the browser address bar, the web page could be displaying unauthorized content that could
put your PC at risk.
neowin.net -
27.03.2008
