Your best source of information and news about secrets, hardware and microsoft on the internet

Vista ARTICLES TOP 50 Spyware Virus Vista SOFT Vista HELP

Business Computer Support

You are currently browsing the articles from MS Windows Vista Compatible Software matching the category Business Computer Support.

Important Notice of Apple MacBooks from Retrodata

It has come to our attention from the sheer volume of this particular drive received for recovery that they have a critical manufacturing flaw.

The faulty drives are all Seagate 2.5″ drives that are manufactured in China, with a Firmware revision of 7.01. They are also all SATA interface. No other drives seem (at this stage) to be affected.

We are receiving quantities of these drives for recovery, and nearly all display the same cause of failure. The read/write heads appear to fail mechanically, quickly causing deep scratches to the platter surface, and rendering the drives practically unrecoverable.

Should you have one of these drives in your system, we believe the problem is serious enough to warrant copying all your data off the drive and replacing it with an alternative drive, or a retail-version Seagate drive.

We at Retrodata believe that any sizeable manufacturer would by this stage be aware of such a problem and issue a product recall notice, or an offer to have the drive exchanged for a suitable alternative at their own expense.

Written by bardissi on October 30th, 2007 with no comments.
Read more articles on Student Computing and Seagate and Apple and Mac and Home Computer Support and Non-Profit Technology and Business Computer Support.

Watchguard Nominated by SC Magazine Best of 2008

WatchGuard® Technologies is proud to be nominated by SC Magazine in four of its Best of 2008 categories in the network security marketplace.

  • Best Anti-Malware Solution
  • Best Intrusion Detection/Prevention Solution
  • Best Endpoint Security Solution
  • Best Integrated Security Solution

We would like to take this opportunity to thank our reseller community for your commitment and expertise in providing WatchGuard solutions to the marketplace. As the price-performance leader, WatchGuard’s Firebox® X family of unified threat management (UTM) solutions is unsurpassed in its strong, reliable, multi-layered security with the best ease of use in its class. Please join us in our quest for better recognition and brand awareness by voting for WatchGuard in all four categories today.Please vote now!

Written by bardissi on October 27th, 2007 with no comments.
Read more articles on Computer Security and SC Magazine and Watchguard and Network Infrastructure and Non-Profit Technology and Business Computer Support.

Trend Micro Product End-of-Life Announcement: Standalone Anti-Spyware for SMB 3.x

Trend Micro has made a decision to discontinue the standalone version of Anti-Spyware for SMB 3.x effective October 31, 2007. Please review and refer to the helpful information below to assist you in informing your customers.
·         Product: Standalone Anti-Spyware for SMB·         Version: 3.x·         Form Factor: Software·         Target Audience: Small and Medium Business Customers ·         Reasons for End-of-Life Announcement: o    Lack of demand for a stand-alone anti-spyware solutiono    Overwhelming preference for an all-in-one solution ·         Important Dates: o    October 31, 2007: New and renewal SKUs will no longer be available; standalone Anti-Spyware for SMB 3.x will stop shippingo    March 31, 2009: Technical support will no longer be available for standalone Anti-Spyware for SMB 3.x o    October 31, 2009: Stop all product services; pattern file and engine updates will no longer be supported for standalone Anti-Spyware for SMB 3.x ·         What to sell instead: o    Recommend Trend Micro Worry-Free Security Solutions, which have integrated AntiSpyware.o    If a customer needs a standalone anti-spyware solution, recommend they purchase Anti-Spyware Enterprise Edition.

Written by bardissi on October 26th, 2007 with no comments.
Read more articles on Windows 2000 and Anti-Virus and Computer Security and Trend Micro and Student Computing and Network Infrastructure and Windows XP and Business Computer Support and Home Computer Support and Non-Profit Technology and Windows Vista.

Update to “RealPlayer Vulnerability Discovered in the Wild”

More Vulnerabilities Found; More Platforms Affected

Severity: High

26 October, 2007

Update:

On Monday 22 October, we published an alert about a serious vulnerability that affects RealPlayer 10.5 and RealPlayer 11 beta running on Windows. By enticing one of your users to a malicious Web site, an attacker can exploit this vulnerability to execute code on your user’s computer, with your user’s privileges. In the worst case scenario, the attacker could gain total control of the victim’s PC. RealNetworks released a patch to fix that problem. However, it appears that update marked just the beginning of RealNetwork security holes.

Late yesterday, RealNetwork released the second batch of security updates this week, this time fixing six serious vulnerabilities in their media player product line. Here’s what you need to know about the new flaws.

The new flaws affect many more products than the earlier flaw did, including products that run in OS X and Linux. The affected products now include:

  • RealPlayer 8, 10, 10.5, 11 for Windows, Mac, and Linux
  • RealOne Player v1 and v2 for Windows, and RealOne Player for Mac
  • RealPlayer Enterprise
  • Helix Player 10.0.x for Linux.

Though these new flaws differ from one another technically, they share many similarities. For example, all six flaws involve buffer overflow vulnerabilities triggered when RealPlayer parses specially crafted media files. They also share the same scope and impact. If an attacker can entice one of your users into downloading a maliciously crafted media file, then playing it in RealPlayer, the attacker can exploit any of these vulnerabilities to execute attack code on that user’s computer. Depending on the user’s privileges, an attacker could even exploit these flaws to gain control of the victimr’s machine. The only notable difference among the flaws is that an attacker uses a different media file format to exploit each one. The potentially dangerous media files that trigger these flaws are:

Unlike the flaw covered in our 22 October alert, RealNetworks has not found attackers exploiting these new flaws in the wild yet. Nonetheless, these security holes pose a serious threat to RealPlayer users. You should download, test, and deploy these new patches as soon as you can, whether or not you applied the previous RealPlayer update from Monday. How you download the updates differs depending on which product you use. Refer to the “Instructions” section of RealNetworks security update for detailed directions on patching the different media player products.

As a convenient reference, we’ve duplicated the 22 October RealPlayer alert, below. You can also find it in the LiveSecurity Latest Broadcasts archive.

Summary:

Late Friday, RealNetworks released a patch for a critical vulnerability affecting RealPlayer 10.5 and RealPlayer 11 beta running on Windows. By enticing one of your users to a malicious Web site, an attacker can exploit this vulnerability to execute code on your user’s computer, with your user’s privileges. In the worst case scenario, the attacker could gain total control of the victim’s PC. If you allow the use of RealPlayer in your network, have your users upgrade immediately.

Exposure:

RealPlayer and RealOne Player are widely-used software for Internet media delivery. RealOne Player plays virtually every major Internet media format, including Windows Media, Quicktime, MPEG-4, and even DVDs. If you’ve watched streaming videos on the Internet, or listened to music samples while buying CDs online, you’ve probably encountered RealPlayer.

WatchGuard does not recommend using RealPlayer or RealOne Player, partly because both contain automatic communication features which, by default, let RealNetworks and RealNetwork’s “partners” (such as NASCAR and CNN) install software on your client computers. But in reality, many of your users have probably installed one of these products, with or without your permission.

In a security update released late Friday, RealNetworks warned of a new vulnerability that affects RealPlayer 10.5 and 11 beta running on Windows. (OS X and Linux users are not affected.) The flaw, discovered in the wild by Symantec, involves a buffer overflow vulnerability in one of RealPlayer’s ActiveX controls (specifically, ierpplug.dll). By enticing one of your users to a malicious Web site, an attacker can pass an over-long parameter to the vulnerable ActiveX control, which triggers the buffer overflow flaw. The attacker can then exploit the flaw to execute code on your user’s computer, inheriting your user’s privileges. Windows administrators often give users local administrator rights. If the exploit is successful in that context, the attacker would gain complete control of your user’s machine.

Symantec found attackers exploiting this vulnerability in the wild. In other words, the bad guys found the flaw first and are actively using it to break into computers. If you use RealPlayer in your network, this vulnerability poses a critical risk. You should apply RealNetwork’s update immediately.

Solution Path:

RealNetworks has released a patch to correct this vulnerability. Clients who use RealPlayer 10.5 or 11 beta in Windows should upgrade immediately, or remove the software entirely. You can download RealNetwork’s patch here.

For All WatchGuard Users:

The vulnerability described in our alert uses normal HTTP traffic, which you must allow for your users to browse the Web. If you use RealPlayer in your network, you should download RealNetwork’s update as soon as possible.

Status:

RealNetworks has issued a Security Update that fixes the problem.

References:

Symantec’s RealPlayer Alert

Written by bardissi on October 26th, 2007 with no comments.
Read more articles on Watchguard and Student Computing and Non-Profits and Spyware & Malware and Computer Security and Microsoft and Network Infrastructure and Windows XP and Business Computer Support and Home Computer Support and Non-Profit Technology and Windows Vista.

Adobe Reader and Acrobat Allow Attacks via PDFs

Severity: Medium

22 October, 2007

Summary:

Yesterday, Adobe released an update to fix critical security vulnerabilities that affect Adobe Reader 8.1 and Adobe Acrobat 8.1 (and all earlier versions) running on Windows XP. By enticing one of your users into opening a specially crafted PDF file, an attacker can exploit the worst of these flaws to gain control of that user’s system. If you use Adobe Reader or Acrobat in your network, you should download, test, and deploy version 8.1.1 as soon as possible.

Exposure:

In a security bulletin released yesterday, Adobe warned of several critical vulnerabilities in Reader 8.1 and Acrobat 8.1 (and all earlier versions) for Windows XP. While their advisory regularly mentions multiple vulnerabilities, they specifically refer to only one issue, which they describe in little detail. Adobe only says that if an attacker can convince a Windows XP user who also has Internet Explorer (IE) 7 into opening a specially crafted PDF file, the attacker can exploit this unspecified flaw to gain control of that user’s computer. Since you can embed PDF files into Web pages, simply visiting the wrong web page might trigger this flaw.

Petko D. Petkov (aka pdp) of GNUCITIZEN.org, first discovered this flaw last September. Following the tenets of responsible disclosure, he did not release any details about this flaw, instead waiting for Adobe to release a patch. However, he also promised to release Proof-of-Concept (PoC) code that demonstrates this flaw in action as soon as Adobe released their update. So expect to see exploits for this vulnerability shortly. Adobe users should upgrade as soon as possible.

Solution Path

Adobe Reader 8.1.1 and Acrobat 8.1.1 fix these vulnerabilities. Windows XP administrators should download, test, and deploy these updates as soon as possible.

For All WatchGuard Users:

Although many of WatchGuard’s Firebox models can block incoming PDF files, most administrators prefer to allow these file types for business purposes. You should download and install Adobe Reader 8.1.1 instead.

However, if you still want to block .PDF files, follow the links below for instructions:

  • Vclass
    • SMTP Proxy. You’ll have to create or adjust a custom proxy action based on SMTP-Incoming in order to strip .PDF files. If you have created your own Proxy Action based on SMTP-Incoming, you can edit it so that it blocks these files. In the Vcontroller software, click the Proxies button and double-click your custom proxy action. Under the Content Checking tab, change “Category” to Attachment Filename and click either the Add to Top or Insert After button (only one or the other will display). Next, type “PDF_files” as the new rule’s name, and choose Pattern Match. Next to Pattern Match, type “*.PDF” and select Strip as the Action. Now you can apply this new Proxy Action to your SMTP rule to ensure your Firebox blocks .PDF files.

 

  •  
    • HTTP Proxy. You’ll have to create or adjust a custom proxy action based on HTTP-Outgoing in order to strip .PDF files. If you have created your own Proxy Action based on HTTP-Outgoing, you can edit it so that it blocks these files. In the Vcontroller software, click the Proxies button and double-click your custom proxy action. Under the Request General tab, change “Category” to URL Paths and click on Add. Next, type “PDF_files” as the new rule’s name, and choose Pattern Match. Next to Pattern Match, type “*.PDF” and select Strip as the Action. Now you can apply this new Proxy Action to your HTTP rule to ensure your Firebox blocks .PDF files.

Status:

Adobe released Adobe Reader 8.1.1 and Acrobat 8.1.1 to correct these issues.

References:

Written by bardissi on October 23rd, 2007 with no comments.
Read more articles on Microsoft and Student Computing and Watchguard and Adobe and Network Infrastructure and Non-Profit Technology and Windows XP and Business Computer Support and Home Computer Support and Windows Vista.

Windows RealPlayer Vulnerability Discovered in the Wild

Severity: High

22 October, 2007

Summary:

Late Friday, RealNetworks released a patch for a critical vulnerability affecting RealPlayer 10.5 and RealPlayer 11 beta running on Windows. By enticing one of your users to a malicious Web site, an attacker can exploit this vulnerability to execute code on your user’s computer, with your user’s privileges. In the worst case scenario, the attacker could gain total control of the victim’s PC. If you allow the use of RealPlayer in your network, have your users upgrade immediately.

Exposure:

RealPlayer and RealOne Player are widely-used software for Internet media delivery. RealOne Player plays virtually every major Internet media format, including Windows Media, Quicktime, MPEG-4, and even DVDs. If you’ve watched streaming videos on the Internet, or listened to music samples while buying CDs online, you’ve probably encountered RealPlayer.

WatchGuard does not recommend using RealPlayer or RealOne Player, partly because both contain automatic communication features which, by default, let RealNetworks and RealNetwork’s “partners” (such as NASCAR and CNN) install software on your client computers. But in reality, many of your users have probably installed one of these products, with or without your permission.

In a security update released late Friday, RealNetworks warned of a new vulnerability that affects RealPlayer 10.5 and 11 beta running on Windows. (OS X and Linux users are not affected.) The flaw, discovered in the wild by Symantec, involves a buffer overflow vulnerability in one of RealPlayer’s ActiveX controls (specifically, ierpplug.dll). By enticing one of your users to a malicious Web site, an attacker can pass an over-long parameter to the vulnerable ActiveX control, which triggers the buffer overflow flaw. The attacker can then exploit the flaw to execute code on your user’s computer, inheriting your user’s privileges. Windows administrators often give users local administrator rights. If the exploit is successful in that context, the attacker would gain complete control of your user’s machine.

Symantec found attackers exploiting this vulnerability in the wild. In other words, the bad guys found the flaw first and are actively using it to break into computers. If you use RealPlayer in your network, this vulnerability poses a critical risk. You should apply RealNetwork’s update immediately.

Solution Path:

RealNetworks has released a patch to correct this vulnerability. Clients who use RealPlayer 10.5 or 11 beta in Windows should upgrade immediately, or remove the software entirely. You can download RealNetwork’s patch here.

For All WatchGuard Users:

The vulnerability described in our alert uses normal HTTP traffic, which you must allow for your users to browse the Web. If you use RealPlayer in your network, you should download RealNetwork’s update as soon as possible.

Status:

RealNetworks has issued a Security Update that fixes the problem.

References:

Written by bardissi on October 23rd, 2007 with no comments.
Read more articles on Apple and Student Computing and Watchguard and Windows 2000 and Network Infrastructure and Non-Profit Technology and Windows XP and Business Computer Support and Home Computer Support and Windows Vista.

« Older articles

Newer articles »