Welcome to TechNet Blogs Sign in | Join | Help

Browse by Tags

All Tags » timing attack   (RSS)
Tuesday, October 14, 2008 10:14 AM

MS08-065 : Exploitable for remote code execution?

Today, we released MS08-065 to fix an issue in MSMQ. You’ll notice that the bulletin was rated “Important” and indicates that remote code execution is possible. However, we would like to show you that in practice the severity of the fixed issue is limited
Posted by swiblog | (Comments Off)
Tuesday, August 12, 2008 11:30 AM

MS08-041 : The Microsoft Access Snapshot Viewer ActiveX control

MS08-041 fixes a vulnerability in the Microsoft Access Snapshot Viewer ActiveX control. It’s an interesting vulnerability so we wanted to go into more detail about platforms at reduced risk and also more about the servicing strategy for this vulnerability.
Posted by swiblog | (Comments Off)
Tuesday, June 10, 2008 11:50 AM

MS08-030: All bark and no bite? The case of the Bluetooth update

This morning we released a critical update for Windows addressing a vulnerability in the Microsoft Bluetooth stack (MS08-030). The bulletin is rated Critical since it allows an attacker to corrupt memory in the Windows kernel, which theoretically could
Posted by swiblog | (Comments Off)
Tuesday, January 08, 2008 1:15 PM

MS08-001 (part 3) – The case of the IGMP network critical

This is the final post in the three-part series covering MS08-001. In this post we’ll look at the IGMP vulnerability (CVE-2007-0069) and why we think successful exploitation for remote code execution is not likely. This vulnerability is around Windows’
Posted by migrady | (Comments Off)
 
Page view tracker