Explore the latest news and trends  

Sign up for our weekly security newsletter


Be the first to receive important updates on security





Send

Flaw Discovered In Microsoft Visual Studio 2005

This matter has gained much attention from the software making Redmond, Wash. It has released a security advisory with warnings about the flaw. It's stated that the flaw is already in use in zero-day attacks.

What is Visual Studio 2005? It is a Microsoft program for developing Internet applications. It helps users to create their websites Web services, Web sites and Web applications. This latest variant of the developer tools of Microsoft consists of Visual Basic, Visual C#, Visual C++ and Visual J#. Microsoft's investigation in this matter has been serious. The company has confirmed that it will protect its customers by all the necessary means. The company will launch a security patch via its monthly launch operations. Microsoft can also provide an "out-of-cycle" security patch, as per the customers' requirements.

Microsoft has located the cause of the unfortunate vulnerability. It's in the control of WMI Object Broker, enclosed in the WmiScriptUtils.dll file. Successful attacks tempt users into websites to take advantage of the flaw. The company warned against clicking on the links from anonymous senders as these could take the user to a hacker's site.

The company stated that attackers exploit the flaw badly by gaining absolute power over the affected systems. Microsoft has explained that hackers could host malign websites. Attackers employ social engineering maneuver to bait visitors. In its advisory, Microsoft has made it clear that mean and nasty Websites do use advertisements and other ways to send the Website's content to an affected system.

Microsoft has used different approaches to lessen the risks. It has tried to disable the efforts to instantiate ActiveX Control in IE by establishing the crucial bit to curb the registry.

In addition, Microsoft recommended the users of Visual Studio 2005 to set their internet properties correctly; they should switch their Internet Explorers to "prompt" when using Active Scripting online.

Related article: Flaw For PayPal Website, Opportunity For Fraudsters

ยป SPAMfighter News - 11/6/2006

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page
Next