EQUIPO NIZKOR |
|
24Aug10
Microsoft releases security advisory
Micorsoft has released an advisory on Monday for application developers and customers about a security issue impacting hundreds of third-party programs, according to eweek.com reports.
The company declined to confirm whether any of its own applications are vulnerable, saying that it is currently investigating Microsoft-made software.
According to Acros Security CEO Mitja Kolsek, the company found more than 200 vulnerable applications from about a hundred different vendors, with 520 binary planting issues identified in those applications.
This is Microsoft's first public reaction to a wave of reports from researchers that developers have left a large number of Windows programs open to attack.
The attack works because many applications ignore best security practices and search for the library based only on the file name, rather than the full directory path, the advisory said.
[Source: Xinhua, Beijing, 24Aug10]
This document has been published on 29Aug10 by the Equipo Nizkor and Derechos Human Rights. In accordance with Title 17 U.S.C. Section 107, this material is distributed without profit to those who have expressed a prior interest in receiving the included information for research and educational purposes. |