Microsoft's Urgent Patch Precedes Black Hat Session

URL: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/Ra8yntxljXQ/Microsofts-Urgent-Patch-Precedes-Black-Hat-Session

Julie188 writes "Mystery solved! Microsoft's latest emergency out-of-band patch was weird beyond belief. A notice was sent to journalists and researchers late Friday evening that the patch was coming Tuesday, but Microsoft refused to explain the flaw and even put a cone of silence around researchers who would have otherwise talked about it. But finally, one researcher broke ranks and explained that the patch was caused by a flaw introduced in Microsoft's own development tools. This flaw was also the source of the emergency ActiveX patch, which took about 18 months to complete and which supposedly fixed the problem by turning off ActiveX (setting a 'killbit' on the control). Researchers at Black Hat on Wednesday will be demonstrating how to override the killbit controls and get access to vulnerabilities supposedly stopped with a killbit. What's really scary is that Microsoft has issued 175 killbits fixes so far."

Read more of this story at Slashdot.

Internet Explorer eo comodismo das pessoas - Zero Hora

URL: http://www.clicrbs.com.br/blog/jsp/default.jsp?source=DYNAMIC,blog.BlogDataServer,getBlog&uf=2&local=18&template=3948.dwt§ion=Blogs&post=208141&blog=222&coldir=1&topo=3994.dwt

Diário de Notícias - Lisboa

Internet Explorer eo comodismo das pessoas Zero Hora O Internet Explorer (IE) só é o browser mais utilizado no mundo por causa do comodismo das pessoas. Porque está longe de ser o melhor navegador de internet. Comodismo, sim. Afinal, o IE acompanha o Windows, o sistema operacional presente em nove em ... Microsoft vai oferecer opções de browser IT Web Microsoft não consegue escapar à severidade da crise Terra Brasil IDG Now! - W News - G1.com.br - TeK.sapo all 46 news articles

Yes Linus, Microsoft hating is a disease. And it's a pandemic

URL: http://www.freesoftwaremagazine.com/columns/yes_linus_microsoft_hating_disease_and_its_pandemic

The submission by Microsoft of twenty thousand lines of code to the Kernel has, predictably, caused many an eyebrow to arch. The phrase “beware Greeks bearing gifts” comes swiftly to mind. I checked the press release. I also checked the calendar just to make sure I hadn’t fallen into a wormhole and emerged back on April Fools Day. I hadn’t. That reaction was probably replicated right across the free software community. Given Microsoft’s track record it’s hardly surprising. Perhaps what was more interesting was Linus Torvalds’ reaction. After all, this is not an inconsequential flame war about using Gnome or KDE.

read more

Microsoft oferece opções de browsers na UE - Info Online

URL: http://info.abril.com.br/noticias/ti/microsoft-oferece-opcoes-de-browsers-na-ue-25072009-4.shl

Diário de Notícias - Lisboa

Microsoft oferece opções de browsers na UE Info Online SÃO PAULO – A Microsoft deve oferecer mais opções de navegadores, além do Internet Explorer, aos seus usuários na União Europeia. Proprietários das versões XP e Vista do Windows poderão escolher entre cinco browsers populares a partir de uma tela de ... Microsoft propõe que usuários escolham que browser usar, diz União ... G1.com.br Microsoft aceita oferecer opções ao Explorer AFP Público.pt - IDG Now! - epa - european pressphoto agency - Diário de Notícias - Lisboa all 26 news articles

Microsoft's Code Contribution Due to GPL Violation

URL: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/-EnzzJk6QIs/Microsofts-Code-Contribution-Due-to-GPL-Violation

ozmanjusri writes "While Microsoft presented its recent embrace of the GPL as "a break from the ordinary", and the press spoke of them as going "to great lengths to engage the open source community", as is often the case with Microsoft, it turns out they had an ulterior motive. According to Stephen Hemminger, an engineer with Vyatta, Microsoft's Hyper-V used open-source components in a network driver and the company released the code to avoid legal action over a GPL violation. Microsoft's decision to embrace the GPL was welcomed by many in the open source community, but their failure to honestly explain the reason behind the release will have squandered this opportunity to build trust, something which is sadly lacking in most people's dealings with Microsoft."

Read more of this story at Slashdot.

Microsoft Backs Down On Making IE8 Default At Upgrade

URL: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/F-3EisvqHVQ/Microsoft-Backs-Down-On-Making-IE8-Default-At-Upgrade

Barence writes "Internet Explorer 8 will no longer replace the default browser when a user selects the 'Use express settings' option during installation. Back in May, Mozilla and Opera accused Microsoft of force-feeding users Internet Explorer 8 through the Automatic Updates process. The object of their ire was the 'Use express settings' option which automatically sets Internet Explorer 8 as the default browser. The option was already ticked when Automatic Updates offered users the choice to upgrade their browser. 'We heard a lot of feedback from a lot of different people and groups and decided to make the user choice of the default browser even more explicit,' notes Microsoft in a blog post."

Read more of this story at Slashdot.

Attacks Against Unpatched Microsoft Bug Multiply

URL: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/rM7-qhvm-cc/Attacks-Against-Unpatched-Microsoft-Bug-Multiply

CWmike writes "Attacks exploiting the latest Microsoft vulnerability are quickly ramping up in quantity and intensity, several security companies warned today as they rang alarms about the developing threat. Symantec, Sunbelt Software, and SANS' Internet Storm Center bumped up their warnings yesterday after Microsoft announced that attackers were exploiting a bug in an ActiveX control used by IE to display Excel spreadsheets. There is no patch for the vulnerability; Microsoft didn't release one in today's Patch Tuesday. A temporary fix that sets the 'kill bits' of the ActiveX control is available, but experts believe it's likely most users won't take advantage of the protection. Symantec raised its ThreatCon ranking to the second of four steps. "We're seeing it exploited, but currently on a limited scale," said Symantec's Ben Greenbaum. Sunbelt also bumped up its ranking, to high." Firefox users can't be too complacent; Secunia is warning of a 0-day in version 3.5.

Read more of this story at Slashdot.