Microsoft identifies GDI vulnerability
Wednesday, September 10, 2008
Microsoft has identified a number of network security issues in its GDI+ software development platform.
According to the firm, a number of privately reported flaws could potentially allow hackers to execute code on compromised machines by developing specifically crafted image files or web sites.
The software giant warned that users operating with more system privileges were likely to be placed at greater risk than those with lower user rights.
Microsoft announced details of the network security threat in its monthly security update, which also identified bugs in Windows Media Encoder 9, Windows Media Player and Microsoft Office.
Elsewhere, Redmond Developer insisted that the GDI+ vulnerability is the one that is likely to catch the interest of network security researchers, as it echoes a similar vulnerability identified in 2005.
"There are four advisories and eight vulnerabilities this month but it comes down to GDI+ ... That is what is going to be on everyone's mind," commented analyst Tyler Reguly.
Related News:
Don't worry about network security: Nine-year-old Marko's got your back - 1.22.2010
Marko Calasan is a Macedonian IT whiz and systems administrator who remotely manages a network of computers owned by a nonprofit that helps connect people with disabilities. Not much of a story, except for the consideration of Calasan's age: He's nine years old.
Apple releases patches for OS X security flaws - 1.21.2010
Vulnerabilities in OS X 10.5 and 10.6 were addressed in Apple's first security update of 2010, patching a dozen known security holes in the Mac operating system.
British university slammed by unknown virus - 1.21.2010
Network security at the UK's University of Exeter was breached by an unidentified virus on Monday, taking down the entirety of the institution's computer capacity and, local paper the Express and Echo reports, even spreading to the school's telephone network.
Pioneering CEO of Real Networks steps down - and some say 'good riddance' - 1.19.2010
Rob Glaser, the controversial head of Real Networks, stepped down from his position last week amid comment from all corners of the tech world, but critics say that not enough accounts mention Glaser's record of spreading intrusive software.
Gmail improves network security for clients - 1.14.2010
Secure HTTP access to Google's free Gmail service is now active by default, the company announced earlier this week, making Gmail messages less susceptible to unauthorized access.
|
