- Is the Cisco MARS mission going to abort?
- First iPhone worm spreads Rick Astley wallpaper
- 10 stunning 3D buildings made with Google SketchUp
- Open source software ready for big business
- Four reasons to buy (and one reason to avoid) the Droid
Microsoft on Tuesday released a flood of information on new and previously disclosed holes in a wide range of software products, many of them rated "critical" and well-suited to use by malicious hackers or computer virus writers, according to one security expert.
The company published four security bulletins, MS04-011, 012, 013 and 014 containing patches for 20 unique software vulnerabilities. Critical holes were found in the Internet Explorer Web browser, a standard Windows component for managing local system security and authentication, the Microsoft Secure Sockets Layer library (SSL) and Remote Procedure Call (RPC) Runtime Library, which is installed with Windows, Microsoft said.
The software patches touched a wide range of Microsoft's products, from Windows 98 through Windows Server 2003 64-bit edition, as well as a number of versions of the Outlook Express e-mail program.
Among the most critical holes Microsoft warned customers about are:
An attacker who could exploit the PCT hole could take complete control of affected systems, installing programs, viewing, modifying or deleting data or changing user access to the system. Attackers could exploit the flaw by sending a TCP message to a vulnerable system using SSL. The message would have to be designed to cause the buffer overrun and run the attacker's code on the machine, the company said.
The PCT hole was rated "critical" for Windows NT 4.0 and Windows 2000, "important" for Windows XP and "low" for Windows Server 2003, Microsoft said.
While Microsoft disclosed a number of other critical security holes in its bulletins, the LSASS and PCT holes are particularly dangerous because they can be triggered remotely and without any action being taken by users on affected systems, said Firas Raouf, COO of eEye Digital Security in Aliso Viejo, Calif.
EEye researchers discovered the LSASS vulnerability and reported it to Microsoft, Raouf said.
The two holes can also be exploited using common techniques such as creating stack-based overflows. That will accelerate the development of exploits for the two vulnerabilities, which are well-suited to use in an Internet worm like the Blaster or SQL Slammer worms, he said.
Comment