Security Vulnerability Research & Defense : April 2008

Wednesday, April 09, 2008 9:02 AM

MS08-025: Win32k vulnerabilities

MS08-025 addresses several vulnerabilities in win32k.sys where you can execute arbitrary code in kernel mode. These bugs can only be exploited locally and there is no remote vector we are aware of. One of these vulnerabilities deals on how we can bypass

Posted by swiblog | (Comments Off)

Filed under: kernel, win32k.sys, ProbeForRead, ProbeForWrite

Wednesday, April 09, 2008 9:01 AM

MS08-023: Same bug, four different security bulletin ratings

Security bulletin MS08-023 addressed two ActiveX control vulnerabilities, one in a Visual Studio ActiveX control and another in a Yahoo!’s Music Jukebox ActiveX control. The security update sets the killbit for both controls. For more about how the killbit

Posted by swiblog | (Comments Off)

Filed under: activex, Internet Explorer, killbit, Kill-Bit, Security Bulletin, rating, classid, IE

Wednesday, April 09, 2008 9:00 AM

MS08-020 : How predictable is the DNS transaction ID?

Today we released MS08-020 to address a weakness in the Transaction ID (TXID) generation algorithm in the DNS client resolver. The TXID is a 16-bit entity that is primarily used as a synchronization mechanism between DNS servers/clients; in fact, you

Posted by swiblog | (Comments Off)

Filed under: dns, spoofing

Security Vulnerability Research & Defense

This Blog

Syndication

Search

News

Blogroll

Report a Vulnerability to Microsoft

Tags

Recent Posts

Archives

April 2008 - Posts

MS08-025: Win32k vulnerabilities

MS08-023: Same bug, four different security bulletin ratings

MS08-020 : How predictable is the DNS transaction ID?