Dr. Strangelove
Super Member
From today’s SANS NewsBites Vol. 9 Num. 27
TOP OF THE NEWS
--Microsoft Will Release Emergency Fix for Animated Cursor Flaw
(March 30, April 1 & 2, 2007)
Microsoft says it will release an out-of-cycle patch for a remote code
execution flaw that is being actively exploited. The company released
an advisory about the animated cursor vulnerability last week and by the
end of the week, exploit code was circulating on the Internet. The
patch will be released on Tuesday, April 3, a week ahead of schedule;
Microsoft's monthly security update is slated for April 10. Microsoft
and law enforcement are working together to find those responsible for
the attacks.
http://news.com.com/2102-1002_3-6172364.html?tag=st.util.print
http://www.theregister.co.uk/2007/03/30/animated_cursor_vuln/print.html
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9015281
http://www.informationweek.com/shared/printableArticle.jhtml?articleID=198701798
http://www.computerworlduk.com/tech...cts/prevention/news/index.cfm?RSS&newsid=2422
http://blogs.technet.com/msrc/archi...e-for-microsoft-security-advisory-935423.aspx
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9015343
[Editor's Note (Ullrich): It appears Microsoft learned its lesson from
the WMF fiasco. A quick out of order patch will mitigate the technical
and the publicity fallout from this unfortunate bug.]
Doc
TOP OF THE NEWS
--Microsoft Will Release Emergency Fix for Animated Cursor Flaw
(March 30, April 1 & 2, 2007)
Microsoft says it will release an out-of-cycle patch for a remote code
execution flaw that is being actively exploited. The company released
an advisory about the animated cursor vulnerability last week and by the
end of the week, exploit code was circulating on the Internet. The
patch will be released on Tuesday, April 3, a week ahead of schedule;
Microsoft's monthly security update is slated for April 10. Microsoft
and law enforcement are working together to find those responsible for
the attacks.
http://news.com.com/2102-1002_3-6172364.html?tag=st.util.print
http://www.theregister.co.uk/2007/03/30/animated_cursor_vuln/print.html
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9015281
http://www.informationweek.com/shared/printableArticle.jhtml?articleID=198701798
http://www.computerworlduk.com/tech...cts/prevention/news/index.cfm?RSS&newsid=2422
http://blogs.technet.com/msrc/archi...e-for-microsoft-security-advisory-935423.aspx
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9015343
[Editor's Note (Ullrich): It appears Microsoft learned its lesson from
the WMF fiasco. A quick out of order patch will mitigate the technical
and the publicity fallout from this unfortunate bug.]
Doc
