Security Vulnerability Research & Defense

Browse by Tags

Tuesday, March 11, 2008 1:40 PM

MS08-015: Protocol Handler and its Default Security Zone

MS08-015, CVE-2008-0110, addresses a vulnerability in Microsoft Outlook’s implementation of “mailto” URI handling. The attack can be launched via IE or other applications which invoke the “mailto” protocol. Applications can register pluggable protocol

Posted by swiblog | (Comments Off)

Filed under: Mitigations, registry, security zones, protocol handlers

Tuesday, January 08, 2008 1:16 PM

MS08-001 (part 2) – The case of the Moderate ICMP mitigations

This is the second post in the three-part series covering MS08-001 . In this post we’ll look at the ICMP vulnerability (CVE-2007-0066) in more detail. This vulnerability is caused by Windows TCP/IP’s handling of the ICMP protocol, specifically regarding

Posted by migrady | (Comments Off)

Filed under: ICMP, Mitigations, MS08-001, registry

Security Vulnerability Research & Defense

This Blog

Syndication

Search

News

Blogroll

Report a Vulnerability to Microsoft

Tags

Recent Posts

Archives

Browse by Tags

MS08-015: Protocol Handler and its Default Security Zone

MS08-001 (part 2) – The case of the Moderate ICMP mitigations