PDA

View Full Version : M$ Patch Tuesday : Security Feature Byass! Huh?



SurferJoe46
06-01-2012, 11:30 AM
Patch Tuesday heads-up ||| Windows security holes ||| Microsoft plans to ship 7 bulletins, one rated “critical,” Microsoft’s highest severity rating.

Microsoft’s first batch of patches for 2012 will include fixes for security vulnerabilities in the Windows operating system and Microsoft Developer Tools and Software.

In all, Microsoft plans to ship 7 bulletins, one rated “critical,” Microsoft’s highest severity rating. A critical bulletin typically deals with security holes that allow remote code execution attacks with minimal user action.

The Windows vulnerabilities will apply to all versions of Microsoft’s flagship OS, including the newest Windows 7 and Windows Server 2008 R2.

Microsoft also announced that one of the bulletins will fix an issue described as a “Security Feature Bypass.” It is the first time Microsoft has used this label on a security update.

The patches will be released next Tuesday (Jan 10, 2012) at approximately 1:00 PM EST.

What the heck is a Security Bypass?

johcar
06-01-2012, 12:05 PM
A Security Bypass indicates that Microsoft have joined forces with either McAfee or Symantec - possibly both...

:D

Bobh
06-01-2012, 01:05 PM
What the heck is a Security Bypass?

Nothing like a Heart Bypass is it? :D

KarameaDave
06-01-2012, 01:10 PM
Big Brother, brother. :D

pctek
06-01-2012, 01:26 PM
http://computerworld.co.nz/news.nsf/security/microsoft-plans-big-january-patch-tuesday

tuiruru
06-01-2012, 03:10 PM
http://computerworld.co.nz/news.nsf/security/microsoft-plans-big-january-patch-tuesday

Err.......... What's all that really mean .......??? Is it stuffed?? ;)

wainuitech
06-01-2012, 03:41 PM
From the article:
Someone probably discovered a method to either turn off or bypass one of Windows security features that could let an attacker get in easier malware has been doing that for ages, some of it turns of certain security features, disables updating and other such actions.

Reading it, it may be fixing UAC, which is meant to stop programs installing that will alter your system until you click on the Yes/I agree that UAC is meant to do.

All the people that disable UAC because its a pain to them could be leaving themselves wide open. At the moment, Malware jumps in and has a big ol free for all , unless you have good protection to start with.