Security Tab Fixer for Windows XP - Activate Security Tab Under File, Folder Property Menu
Unlike Windows Vista & Windows 7, Window XP do not show Security tab under file or folder properties dialogue box.
download -
comments -
28.6.2009 Microsoft Withdraws Private Folder App
Following an outcry from corporate customers, Microsoft is removing an add-on feature to Windows that allowed users to create password-protected folders.
microsoft -
comments -
16.7.2006 Windows Registry Editor, Task Manager and Folder Options Disabled by New Infection
January 2008 comes with a new trend when talking about computer security because lots of worms, Trojan horses, viruses or other pieces of malware attempt to disable important Windows functions in order to hide their files.
windows -
comments -
14.1.2008 The First XP SP3 Security Vulnerability
The third and final service pack for Windows XP is not even out, and Microsoft is already hammering away at it plugging security soles.
windows -
comments -
14.4.2008 Microsoft Windows XP Security Guide 2.2
The Windows XP Security Guide has been updated to provide specific recommendations about how to harden computers that run Windows XP with SP2 in three distinct environments.
download -
comments -
12.4.2006 Think XP and Vista Are Security Disasters? Have You Looked at Tiger and Leopard Lately?
Do you think that Windows Vista and Windows XP are security disasters? Well, in all fairness, chances are that indeed you would think that.
windows -
comments -
18.12.2007 XP SP3 and Vista SP1 Critical Security Patches
The latest Critical security patches for Windows XP Service Pack 3 and Windows Vista Service Pack 1 are available from Microsoft.
windows -
comments -
13.8.2008 Critical Security Patch for Windows XP Service Pack 3 Final
Windows XP SP3 was barely out the door, when Microsoft rushed to issue the first critical patch for the service pack. Concomitantly with the general
availability of the last service pack for XP, Microsoft dropped the first critical security update designed to patch Internet Explorer 7 running on XP SP3 RTM Build 5512.
windows -
comments -
8.5.2008 Vista Growing to Match the Lack of Security of XP, Mac OS X and Linux
Microsoft has touted Windows Vista as the most secure Windows operating system available, ever since the debut of the Wow.
windows -
comments -
15.8.2007 New Security Solutions Live in Time for Vista SP1 and XP SP3 Vulnerabilities
October 14 was synonymous not only with the availability of a new release out of the Microsoft monthly patch cycle but also with the introductions of a couple of new security from the Redmond company: the Microsoft Active Protections Program (MAPP) and Exploitability Index.
download -
comments -
15.10.2008 Vista SP2 and XP SP3 Patch Security Release ISO Image Available
A DVD5 ISO image file containing all the security bulletins made available on November 10th, 2009 for all supported Windows platforms, is now up for grabs via the Microsoft Download Center.
windows -
comments -
13.11.2009 XP SP3 and Vista SP1 September 2008 Security Release ISO Image
Following the four security bulletins released on Patch Tuesday, September 9, 2008, Microsoft has bundled all the Windows updates into a single ISO image offered through the Download Center.
download -
comments -
10.9.2008 Vista SP1 and XP SP3 Security Release ISO Image December 2008
On December 9, Microsoft made available for download the last bouquet of security updates for 2008. the company released no less than eight security bulletins, six of them Critical and two rated as Important.
download -
comments -
11.12.2008 Microsoft Security Advisory 927891 non security-Fix for Windows Installer
Ok this is the MSI fix (Windows Update Client 100%CPU issue) as discussed before here on Bink.nu. For best results also install the new update client . This client will be distributed worldwide in June through Microsoft/Windows Update and WSUS.
microsoft -
comments -
23.5.2007 Microsoft Windows Vista Security: Setting a New Standard for Security and Privacy Through Innovation and Collaboration
For more than 30 years, information and communications technologies have transformed the global economy and personal communications.
windows -
comments -
17.9.2006 May Security Bullitens
New Security Bulletins Microsoft is releasing the following security bulletins for newly discovered vulnerabilities.
microsoft -
comments -
9.5.2006 IE7 Security features
All web browsers make security decisions based upon URIs. Many security features, from Security Zones to the JavaScript same-origin policy, depend on the browser being able to consistently evaluate URIs to determine their components, and to compare them to other URIs.
microsoft -
comments -
New Security Flaw Discovered in IE
Security firm eEye released a
notice on Thursday saying it had discovered a new flaw within Internet Explorer on both Windows XP and XP SP2.
microsoft -
comments -
EXCLUSIVE: New security flaw in IE
A new flaw in Internet Explorer could be exploited to launch spoof-based attacks, or access and change data on vulnerable PCs, security experts have warned.
The problem lies in the way Microsoft has implemented a JavaScript component in its Web browser, security researcher Amit Klein wrote in a research document. Internet Explorer does not validate some data fields provided by a PC when the component, called XmlHttpRequest, is used, he wrote.
microsoft -
comments -
Vista and Security Bundling
Several reporters have asked me what the Windows OneCare Live widespread beta means to security software vendors, such as McAfee, Panda, Symantec or Trend Micro. What OneCare foreshadows is significant.
According to the release notes: "Windows OneCare will not be compatible with the Windows Vista operating system (formerly codenamed 'Longhorn') when that operating system is released."
windows -
comments -
2.12.2005 Security in Microsoft Products
Join Mike Nash, Vice President for the Microsoft Security Business Unit, and his team of security experts each month. Microsoft is working hard to improve security and Mike and his team invite you to join them in a candid Q&A session.
microsoft -
comments -
12.1.2006 Another security hole found in IE
Secunia published an advisory on Tuesday stating that an error could be exploited to fake the address bar in a browser window. This tactic could be used in phishing scams that attempt to trick people into believing they are on a legitimate site, when in fact they are viewing a fraudulent Web page. Phishing is a prevalent type of online scam that seeks to pilfer personal information from unsuspecting Internet users. The scams typically combine spam e-mail with fraudulent Web sites that appear to come from a trusted source, such as a credit card company or a bank.
microsoft -
comments -
7.4.2006 Security researchers look beyond Vista
The improved security in Microsoft's newest software products may leave some security researchers looking elsewhere for work.
windows -
comments -
3.10.2007 8 security fixes next Tuesday
I wanted to let you know that we just posted our Advance Notification for next week’s bulletin release which will occur on Tuesday, Dec. 9, 2008 around 10 a.m. Pacific Standard Time.
microsoft -
comments -
7.12.2008 Windows 7 security enhancements
Windows 7 makes remote connectivity to corporate networks seamless, protects data on thumb drives, and offers fewer user account control prompts to bug users compared to Vista, Microsoft said on Monday.
windows -
comments -
24.4.2009 Windows Vista's new security features
Microsoft's new operating system won't be out until late 2006, but here's a look at some of the new security features expected.
It seems that every time I sit down with Microsoft to discuss Windows Vista, something has been changed or added, which is good. In some cases, something has been removed, which is bad. One and a half years from launch, I understand that beta code changes frequently. Here's my standard disclaimer: the following article is based on the last build from Microsoft, Windows Vista build 5219, released September 2005.
windows -
comments -
Security in Microsoft Products Chat
Join Mike Nash, Vice President for the Microsoft Security Business Unit, and his team of security experts each month. Microsoft is working hard to improve security and Mike and his team invite you to join them in a candid Q&A session.
microsoft -
comments -
Security Update for Windows Vista
A remote code execution security issue has been identified in the Graphics Rendering Engine that could allow an attacker to remotely compromise your Windows-based system and gain control over it.
windows -
comments -
16.1.2006 Microsoft Security Advisory (904420)
Microsoft wants to make customers aware of the Mywife mass mailing malware variant named Win32/Mywife.E@mm. The mass mailing malware tries to entice users through social engineering efforts into opening an attached file in an e-mail message.
microsoft -
comments -
1.2.2006 Microsoft warns on serious IE security bug
Wanted to let you know that today we saw another public posting around a vulnerability in Internet Explorer. This one is different than the crash bug I wrote about earlier. The public posting speaks about createTextRange() and a way that this could be utilized to get code to run when visiting a specially crafted Web page.
We?re still investigating, but we have confirmed this vulnerability and I am writing a Microsoft Security Advisory on this. But we wanted to make sure customers knew we were aware of this and we will address it in a security update.
microsoft -
comments -
24.3.2006Sharing folders vulnerable to buffer overflow
Even though the recent webcam vulnerability in MSN/Windows Live Messenger was only just addressed, another exploitable bug has already surfaced. This
time it's a buffer overflow error that affects the Sharing folders feature in Windows Live Messenger 8.1 (and maybe other versions) running on
Windows XP.
The safety of the Sharing folder feature got questioned before, but we now have a concrete example of how it can be abused. A
Spanish security expert going by the name of Lostmon Lords has discovered that an attacker can cause a Denial-of-Service (DoS) or even execute
arbitrary code in Windows Live Messenger 8.1 by means of a specially crafted jpg, wmf, gif, ico or doc-file.
The attacker can "Create a
sharing folder" for its victim and then put the malformed file into the physical location of that folder on his hard drive (My Computer > My Sharing
Folders > victim@hotmail.com). Note that if the attacker would drag & drop the file directly into the Messenger window, his own client would crash.
Considering that the victim has accepted the sharing folder, the attacker can simply click the sharing icon to crash Windows Live Messenger, or even
Windows XP entirely when the process isn't terminated in time. The victim then needs to delete the sharing folder entirely to cease the
exploitation.
Read full story.....
neowin.net -
27.09.2007New tab switching added for Firefox 3.1
As
announced before, tab switching is getting a
dramatic update for Firefox 3.1 in both visual and behavior.
Press
Ctrl +
Tab (or
Shift +
Ctrl +
Tab) and you are presented with tab thumbnails and titles with the most recently visited ones first so you can more easily
determine which tab you want to go, have the one you most probably want to go closer, and as a result get to it faster. Hold
Ctrl pressed and
keep pressing
Tab to see the thumbnails smoothly scroll to the left while the status bar displays the tab web address.
winbeta.org -
16.07.2008Microsoft Withdraws Private
Folder App
Following a barrage of
criticism from security
experts and IT administrators,
Microsoft has withdrawn its
new Private Folder
application. The program was
introduced last week as a free
download for those who verify
their operating system as
genuine...
betanews.com -
15.07.2006Microsoft: No IE 8 tab-hang fix in the works
Back in May, the Internet Explorer (IE) team left open the possibility that
Microsoft might deliver a tab-responsiveness update for those of us suffering from IE 8 tab-performance issues.
Alas, that update isnt going to happen. Based on feedback from Windows 7 testers, Microsoft has scotched the idea. Not only is there no tab-hang
reporting functionality for the IE 8 release that is built into Windows 7, but there wont be any for us IE 8 users running Windows XP or Vista,
either.
winbeta.org -
29.08.2009Weird Windows Vista File/Folder Manipulation "Bug"
I think this could be considered as one of the weirder but non-critical "bugs" in both Vista RTM and Vista SP1. Thanks to Plax for the find:
1. Create a folder somewhere and put a file inside
2. Then open an Open file dialog from some application
3. Go
in the folder with the file and cut the file then rename the folder and paste the file somewhere else
4. Then you'll find out that instead
of the file a folder appeared
winbeta.org -
12.02.2008Tab Mix Plus for Firefox 3 stacks up a new version
For those of us who not only need to keep dozens of Firefox tabs open at once but need to see them to remember they exist, Tab Mix Plus' upgrade to
Firefox 3 compatibility is some of the week's best news...
betanews.com -
25.10.2008Apple releases Mac OS X Security update and Java updates
Apple has released the Security Update 2009-001 for Mac OS X today which improves the security of Mac OS X and recommended for all users. The
security update fixes the following: Safari RSS vulnerabilityDenial of service vulnerability in AFP serverA flaw in CoreTextA security flaw in Folder
Manager that allows other local users access to a user's Downloads folder and other vulnerabilities. The security update is available for Leopard,
Leopard Server, Tiger for Intel Macs, Tiger for PowerPC-based Macs, Tiger Server for PowerPC-based Macs and Server Universal. Two Java updates are
also available which addresses security and compatibility issues and are compatible with both Intel and PowerPC-based Macs & applies to Mac OS X
10.5.6 or later versions.
Read full story.....
neowin.net -
13.02.2009Judge reverses himself, finds placing MP3s in a public folder isn't 'sharing'
An August 2007 ruling from an Arizona district court says that placing files in a folder shared over a P2P network constitutes
"dissemination." Today, the same judge, in the same trial, reversed his own reasoning...
betanews.com -
30.04.2008Microsoft's Private Folder
App Criticized
Microsoft's release last week
of an application that makes
it possible for those who
share a PC or account to store
files in a private folder has
been criticized for a number
of different reasons over the
past week...
betanews.com -
11.07.2006Windows XP Gets Security
Certification
Touting the success of it's
new Security Development
Lifecycle (SDL) process,
Microsoft late Wednesday said
Windows Server 2003 and
Windows XP SP2 Professional
and Embedded have secured the
highest Common Criteria
security certification from
the United States
government's National
Information Assurance
Partnership...
betanews.com -
15.12.2005Sharing folders vulnerable to buffer overflow, remote exploitation
Even though the recent
webcam
vulnerability in MSN/Windows Live Messenger was only just addressed, another exploitable bug has already surfaced. This time it's a buffer
overflow error that affects the Sharing folders feature in Windows Live Messenger 8.1 (and maybe other versions) running on Windows XP.
The safety of the Sharing folder feature got questioned
before, but we now have a concrete
example of how it can be abused. A Spanish security expert going by the name of Lostmon Lords has
discovered that an attacker can cause a
Denial-of-Service (DoS) or even execute arbitrary code in Windows Live Messenger 8.1 by means of a specially crafted jpg, wmf, gif, ico or
doc-file.
blue screen of deathThe attacker can "Create a sharing folder" for its victim and then put the malformed file into
the physical location of that folder on his hard drive (My Computer > My Sharing Folders > victim@hotmail.com). Note that if the attacker would drag &
drop the file directly into the Messenger window, his own client would crash. Considering that the victim has accepted the sharing folder, the
attacker can simply click the sharing icon to crash Windows Live Messenger, or even Windows XP entirely when the process isn't terminated in time.
The victim then needs to delete the sharing folder entirely to cease the exploitation.
The vulnerability was discovered on the
20th of August 2007 and reported to Microsoft on the 23rd. The company responded one day later that it will address the issue in "the next service
pack". Although there have been no reports yet of actual exploitation via this method, you should note that in order to protect yourself you should
avoid sharing folders with contacts you don't trust.
winbeta.org -
26.09.2007Windows XP Common Criteria Administrator Guide 3.0
This guide provides sufficient guidance to allow an administrator to securely operate Windows XP Professional in accordance with the requirements
stated in the Windows 2003/XP Common Criteria (CC) Security Target (ST).
The Windows 2003/XP CC ST, henceforth referred to as the
Windows 2003/XP ST, provides a set of security requirements taken from the CC for Information Technology (IT) Security Evaluation. The Windows XP
Professional product was evaluated against the Windows 2003/XP ST and found to satisfy the ST requirements.
This guide is
targeted at the administrator and provides a description of how to perform the administrative security functions needed to securely operate Windows XP
Professional in accordance with the ST requirements.
winbeta.org -
15.09.2008IE8, and why fixing that pesky 'tab issue' sealed the deal
In my most recent piece, "IE8, and why it's almost my default browser", I outline a couple of factors that inhibited IE8 from holding the
default browser position on my PC. Since writing that article, due in part to some helpful Neowin members and some quality time with IE8, I have since
awarded IE8 that coveted position on my PC and have promptly thrown Google Chrome to the curb. Perhaps the most taxing of my issues was what has been
colloquially referred to as the 'tab issue'. Many users have complained of severe delays when opening new tabs in Internet Explorer.
Read full story.....
neowin.net -
03.04.2009Tracing the memory leak: Is it Firefox 3?
Yesterday, we mentioned that we've been noticing recent versions of Firefox, including 3.0.5, have exhibited the memory leak problems that used to
plague Firefox 2. We are noticing this on both Windows XP SP3 and Vista SP1.
We'd also noticed that systems where the add-on Tab Mix Plus
was installed, did not appear to exhibit the same memory leak. Today, we uninstalled Tab Mix Plus (reluctantly, because we like it) from one system.
On that system, the memory use pattern has
changed, perhaps moderated, though we're not sure the leak has gone away. It now appears to be
slower than in our tests yesterday, and from time to time, something in Firefox does clean up parts of memory from time to time. In one test,
we had two Firefox windows open with seven tabs open in one of them, a dozen in the other -- a pretty full slate. Task Manager is showing us that
Firefox grabs memory in one-megabyte chunks per second, for about a minute at a time, and then leveling back out to about 300,000 KB.
So if
it's not a leak right now, at least it's a
fight, and we'll let you know what else we find...
betanews.com -
20.01.2009New Security Flaw Discovered
in IE
Security firm eEye released a
notice on Thursday saying it
had discovered a new flaw
within Internet Explorer on
both Windows XP and XP SP2.
According to the notice,
"A vulnerability in
default installations of the
affected software could allow
for remote code
execution."..
betanews.com -
17.09.2005Edit iGoogle Layout
winbeta.org -
03.09.2007Microsoft Private Folder
Released
Microsoft released today a
file encryption program,
called Microsoft Private
Folder. The way it works is
that it automatically creates
you a folder and you can add
files in it, which are
encrypted as soon as you put
them in.
The
program is part of the Windows
Genuine Advantage Offers, so
you'll need to pass the
Windows Genuine Advantage
validation before installing.
You'll need to set your
location to United States
using the scrollbar at the top
of the page. Else, the offer
won't be there.
jcxp.net -
06.07.2006Mozilla Hires Microsoft
Security Exec
Mozilla strengthened its
commitment to security with
the hire of a former Microsoft
executive who was responsible
for some of the security
functionality within Windows
XP SP2 and Windows 2003.
Window Snyder will head
Mozilla's long-term security
strategy planning...
betanews.com -
07.09.2006Windows 7's Achilles' heel - XP Mode
According to security firm Sophos,
Microsoft risks
undoing much of the work it has done on the security front over the past few years by shipping XP Mode with Windows 7.
Sophos’s Chief Technology Officer Richard Jacobs doesn’t pull any punches when it comes to outlining the issues:
XP mode reminds us all that security will never be Microsoft’s first priority. They’ll do
enough security to ensure that security concerns aren’t a barrier to sales, but not so much that it gets in the way of
“progress”.
Ouch. It gets worse...
winbeta.org -
18.08.2009IE8 to be More Reliable
In a post on the IEBlog today, the development team announced some brand new features to IE8, which they say will improve the browser's reliability.
The most notable improvement is dubbed "Loosely-Coupled IE" (or "LCIE" for short). LCIE essentially splits the browser into several
pieces, therefore should one part of the browser crash, the rest of the browser can continue to function. So say a web page you are currently viewing
in one tab locks up, in IE7, this would mean all other tabs are locked as well, however with IE8; the remaining tabs are still accessible and fully
functional.
Another anticipated feature is the new Automatic Crash Recovery, in which IE8 is capable of recovering any tab, as well as
any unsaved form data within that tab, should it crash.
For details outlining the remaining features, continue reading at the IEBlog.
jcxp.net -
29.07.2008
