PDA

View Full Version : just a bit more news



03-01-2002, 08:50 PM
Here's word on some privacy timebombs that are included in some file-sharing programs. C|Net News has posted a storyhttp://news.cnet.com/news/0-1005-200-8335745.html?tag=mn_hd detailing, that the popular file-sharing programs Grokster and Limeware both include privacy timebombs. Aparently some experts have found malicious software bundled with them. Here's some stuff from the article:

A pair of popular file-sharing programs have become privacy time bombs, according to computer experts.

Antivirus company Symantec last week reported the presence of malicious software bundled with Grokster and Limewire, two popular file-swapping downloads. The code evidently does not damage computers, but it surreptitiously sends personal information such as user ID names and the Internet address of computers to another Web address.

Advertising software called 'Clicktilluwin' that comes bundled with the file-swapping programs is infected with a Trojan horse program called 'W32.DlDer,' Symantec said.

Although unrelated advertising programs are routinely bundled with free file-swapping programs--and have prompted some consumer criticism in the past--this appears to be the first time one of them has been infected by outside malicious software.

Downloader beware.

w00w00 Security Developement has found a security leak in AOL Messenger 4.7.2480 and beta version 4.8.2616. Here's what they have said on the leak:

AOL Instant Messenger (AIM) has a major security vulnerability in the latest stable (4.7.2480) and beta (4.8.2616) Windows versions. This vulnerability will allow remote penetration of the victim's system without any indication as to who performed the attack. There is no opportunity to refuse the request. This does not affect the non-Windows versions, because the non-Windows versions currently do not yet support the feature that this vulnerability occurs in.

Read the full article here. http://www.w00w00.org/advisories/aim.html

jv16 PowerTools the next generation of RegCleaner to keep your computer and your LAN up and running is out and up to version RC3 v0.0.0.121.

jv16 PowerTools is basicly the Tool to control your computer. Until now your computer might had been the one who is in charge, but with jv16 PowerTools you can take the control. The program contains all the tools needed for monitoring and cleaning the Registry and the file system. In addition to that, you can control all the computers in your LAN.

Grab it here.http://www.vtoy.fi/jv16/programs/jv16pt_setup.exe

CloneCD 3.3.3.1 is out with these new features and fixes:

New features:

Auto Insert Notification is now disabled for all CD-ROMs and CD-Writers as long as CloneCD is running (Windows 2000/XP).
Added support for CD-Writer MITSUMI 48XA

Bug fixes:

Fixed compatibility problems in ElbyCDIO under Windows NT/2000/XP.

Get it from these links: http://home.t-online.de/home/CloneCD/download/SetupCloneCD.exe http://www.brennmeister.de/files/clonecd/SetupCloneCD.exe

PopUp Killer version 1.45.2 has been released. Here's the deal on the program:

PopUp Killer is the original and most powerful popups destroying- machine ever created.

With PopUp Killer you will be able to browse the web without being molested by those annoying ads that popup when you visit some web sites.

With features such as the Smart! engine, PopUp Killer can identify possible popups and close them even before you can see them.

You can also control the amount of browser windows you permit to be opened at the same time, feature that becomes really handy when browsing really annoying sites that open new pages when you close a browser window.

Get it here.http://software.xfx.net/utilities/popupkiller/download.htm

Easy CD Creator Basic v5.1a Update has been released for all those non-platinum users of Cd Creator 5. Grab it from here.http://www.roxio.com/en/support/ecdc/ecdc_basic_xp_updt.html

Microsoft is recommending that all IE users check now to see whether your browser needs any of the security upgrades released by going to http://securitycheck.passport.com/default.asp. Meanwhile, here is some more detailed info on the latest security hole to be patched:

This update eliminates all known security vulnerabilities affecting Internet Explorer 5.5 Service Pack 2 (SP2) and Internet Explorer 6, and addresses the 'Incorrect Content-Disposition Handling Can Cause IE to Execute Code Automatically' security vulnerabilities in Internet Explorer 5.5 SP2 and 6, and is discussed in Microsoft Security Bulletin MS01-058. Download now to protect your computer from all previously discussed security vulnerabilities affecting Internet Explorer 5.5 SP2 and 6, as well as three newly discovered vulnerabilities: the File Execution vulnerability, a variant of the Frame Domain Verification vulnerability, and the File Name Spoofing vulnerabilty.

The patch can be downloaded here.http://www.microsoft.com/windows/ie/downloads/critical/q313675/default.asp

Another new virus has started circulating the net, this one is the worm called Maldal.D, also known as ZaCker and is a variant of the Maldal worm discovered last month.

Maldal.D is similar to a spate of recent computer viruses in its capability to delete antivirus, firewall and other 'critical system files. Virus experts are rating this one a three out of five threat as like most others of it's type, the worm spreads itself through Outlook e-mail and address books and contains e-mail messages such as 'Test this game,' 'Surprise!!!,' 'Send it to everybody you love,' '1+1=3' and 'See this file,' among others.

The worm, e-mailed with an attachment, sends itself with the regular subject line of the infected PC. When it relaunches as programmed, the subject is changed to ZaCker. In addition to spreading, the Maldal.D worm deletes files with extensions such as .INI, .PHP, .EXE, .COM, .MPEG, .DAT, .ZIP, .TXT, .EXE, .XLS, .DOC and .JPG, rendering your system unusable.

03-01-2002, 09:06 PM
tweak'e you really like all this security stuff don't you ;-)

JM

03-01-2002, 09:16 PM
Aren't we lucky for that! tweak'e is like our Guardian of PCs, keeping us all informed and safe.

Keep it up tweak'e and I'll stay a fan! LOL

03-01-2002, 09:48 PM
tweak'e

Did you get my emails? (3 of) I seem to be having trouble getting emails to h/mail users. Please confirm as I will send them again using my sons a/c if you didn't.

Cheers,
BC

03-01-2002, 10:10 PM
Sorry tweak'e, Ive just noticed the other address and I have pinged them on to that.

I must be going blind.

BC

03-01-2002, 10:15 PM
got email ok thx :) sorry i very rarly use h/mail but i can't email with my para addy while i'm connected to xtra.

the news is just a cut and paste from a site i like. if you like or don't like it please say so :)

sicruity is just a nessary evil. the curse of haveing a gaming machine, sole work pc and online 24/7.

03-01-2002, 10:23 PM
I installed the critical security patch for IE 5.5 SP2 Q313675 and now cannot insert pictures in my emails. 'error 195 'undefined' is null and not an object'. See m/s Q311750. No help to me as I have outlook express and win95 & cannot update to IE 6.
Somstimes these patches just cause more problems!

04-01-2002, 09:00 AM
...in addition to being unable to 'insert' photographs/images into your emails - you will also find you cannot create a hyperlink either.

To do so, click on Tools > Options > Security and then check (enable) the box marked 'Internet Zone [less secure but more functional]' > click Apply/Okay.

If that is already the setting, you will need to lower your security settings inside Internet Explorer - as follows:

In IE go Tools > Internet Options > Security Tab > and lower the default setting to either 'Medium' or 'Med - Low' > click Apply/Okay. Click 'Yes' if prompted to confirm you wish to change your security settings.

Done.

NOTE: Remember to reverse your settings *after* compiling and sending the email concerned.

Cheers!!!

e_