Microsoft IE Bug resurfaces

This has been a tough week for the Microsoft security team. Four security related bugs were announced earlier this week, one of which was originally announced in May of this year. This causes alot of fingerpointing between cyber security experts and the software giant. Analysts claim the bug should've been fixed but was ignored by Microsoft. However, Microsoft claims the bug was not reported to them appropriately in the correct fashion and therefore did not gain the adequate attention it required.

The bug is exposed when a call to the Windows() function occurs from within the Javascript of a web page. Hackers would trick users into clicking a link that would launch a web page containing the malicous code and eventually give the hacker access to the system. Win2003 machines with SP1, having the default Enhanced Security Configuration activated are exempt from this vulnerability.

For more information, please go to http://www.computerworld.com/printthis/2005/0,4814,106638,00.html

Comments

Post a Comment

Popular posts from this blog

Using VB Script to display part of an IP address

Q: How can I use VB Script to display the first 3 octets in a TCP/IP address? A: Since IP addresses are not fixed length, you will have to count the number of separators before you can extract the octets. With that said, listed below is the sample VB Script code. strIP = inputbox("Enter an IP Address for testing to extract the first 3 Octets:") intLastDecimal = 1 For intCounter = 1 to 3 intLastDecimal = InStr(intLastDecimal, strIP, ".") + 1 Next iNewLength = intLastDecimal-2 strNewIP = Left(strIP, iNewLength ) MsgBox "strNewIP=" & strNewIP To run this code, simply copy and paste it into a flat file and name it with a .VBS extension. For more resources on VB Scripting, please visit the following links: http://msdn2.microsoft.com/en-us/library/3ca8tfek.aspx http://msdn2.microsoft.com/en-us/library/ms974570.aspx http://www.w3schools.com/vbscript/vbscript_ref_functions.asp
Read more

Working with double quotes (") in VB.Net

String manipulation in VB2005 is fairly simple. However, things can get a little tricky with the double quote character. How do you look for it in a string? How can you insert into a string? How do you remove it from a string? These are questions that may lead to confusion if you don't know what you're looking for. Ironically enough, in VB the double quote can also be used as an escape character when searching for it in a string. For example: Dim strTest As String strTest = """123""" 'Displays "123" (double quotes appear in the final result) strTest = """""123""" 'Displays ""123" (double quotes appear in the final result) strTest = "test\""test" 'Displays test\"test strTest = "test""test" 'Displays test"test In cases where you want to insert a double quote character, simply reference it unicode character designation, ch
Read more

Sep '19 Announcements

Listed below are announcements of developer events local and regional to the Cleveland area.  In addtion there are links to job openings and videos of past presentations. Local Events: Oct 1: ONSQL-Cleveland ( https://www.meetup.com/Ohio-North-SQL-Server-User-Group-Cleveland/ ) Oct 16: Hudson Software Craftsmanship Group ( https://www.meetup.com/Hudson-Software-Craftsmanship-Meetup/ ) Oct 24: Cleveland C#/VB.Net User Group ( https://www.meetup.com/Cleveland-C-VB-Net-User-Group/ ) Regional Events: Oct 1: ONSQL-Cleveland ( https://www.meetup.com/Ohio-North-SQL-Server-User-Group-Cleveland/ ) Oct 16: Hudson Software Craftsmanship Group ( https://www.meetup.com/Hudson-Software-Craftsmanship-Meetup/ ) Oct 24: Cleveland C#/VB.Net User Group ( https://www.meetup.com/Cleveland-C-VB-Net-User-Group/ ) Job Openings: TekSystems:  https://www.teksystems.com/it-jobs Inedo:  https://inedo.com/company/career-culture Video: Please subscribe to  https://www.youtube.com/channel/UCU4ffaIzhsvMr_cCt9kjQMw  t
Read more