Alerts
Alerts and warnings about important events and problems.

 
Home

Broadcast Flag

Privacy Digest

Children's Books

DVD & VHS Movies

Cool Electronics

Video Games

Lots Of Good Deals

Jewelry

Gourmet Foods

Beauty

Lots Of Good Books(Law)

Lots Of Good Books(Health)

Lots Of Good Books(Medicine)

Lots Of Good Books(Biography)

Lots Of Good Books(Law)


Subscribe to "Alerts" in Radio UserLand.

Click to see the XML version of this web page.

Click here to send an email to the editor of this weblog.

 
 

  Saturday, February 10, 2007

A Dozen Patches Expected From Microsoft Next Week.
A Dozen Patches Expected From Microsoft Next Week.

Microsoft Corp. said today that it plans to release at least a dozen patch bundles next Tuesday to plug security vulnerabilities in its Windows operating systems and other software.

This patch batch could wind up breaking records for the most number of vulnerabilities fixed in one go by the company, as each patch can and often does address multiple security flaws. Microsoft said most of them will address "critical" flaws -- security holes so serious that they could be exploited by an attacker or computer worm to take complete control over the affected computer with little or any action on the part of the user.

The company said it plans to release at least three patches to fix security problems in its Microsoft Office productivity suites. Currently, there are more than a half dozen unpatched Office flaws for which exploit code is already available online, and most of those are already being exploited for targeted attacks.

Interestingly, Microsoft noted that one of the critical patch bundles will address security flaws in Windows Live OneCare, Microsoft Antigen, Microsoft Windows Defender, and Microsoft ForeFront -- Microsoft programs designed to defend Windows machines from spyware, viruses and worms.

As always, Security Fix will bring you the lowdown on these updates when Microsoft officially releases them on Tuesday.

[Security Fix]
5:53:44 PM    

Perils in Parallels? or Killing your Mac with windows?
Perils in Parallels?

Earlier this week Security Fix managed to install a new copy of Microsoft's Windows Vista Ultimate on top of Apple's Mac OS X operating system running on a Macbook Pro. I did this using Parallels, a powerful, free "virtual machine" program that lets users run two or more operating systems side by side at the same time.

When I went to behold the Frankenstein I'd created, I literally gasped when I realized that Vista now had complete access to read, write, or destroy files on my Mac's hard drive. The guest operating system -- in this case Vista -- has almost full run of the data on the underlying hard drive (the critical system files appear to be guarded). I later found a rather longish thread about this feature at the Parallels user forum.

In everything else, Parallels strikes me as an extremely powerful, elegant and useful application. But the Parallels people should change the default behavior of the software to disallow the sharing of directories between the operating systems by default. There may be more dangerous implications of this design: I am still in the process of monkeying around with different scenarios.

I found the whole situation to be rather ironic. After all, virtual machines, such as VMware, have been very popular among virus researchers because they typically were used to protect people from threats, not introduce new ones. Security researchers have long used virtual machines to execute malicious software in a controlled environment that can be reset back to its previous, pristine state with the push of a button.

In response, a number of online threats will check to see if they're being run in VMware or some other kind of virtual environment. If the answer is yes, those viruses or worms generally refuse to run, in an effort to escape analysis and live longer, undetected, in the wild.

This scenario with Parallels presents the opposite threat: Virus writers could, by default, simply begin to tell their creations to check whether they are being run in a Parallels virtual machine, and if so run some basic checks to see which operating system the host machine is running, and then drop appropriate malicious code in key places on the host system.

Such a scenario may sound far-fetched, but the reality is that if you can dream it up, the bad guys online are probably already doing it. Here's hoping the good folks at Parallels fix this feature in their next release.

It's worth noting that this sharing of files, directories, etc., between the host and guest operating system(s) also is quite possible on VMware products as well, except that the default setting on VMware is not to let the guest operating system have read, write and delete privileges pretty much anywhere on the host OS.

To disable this functionality in Parallels, close out of the guest operating system, an in Parallels Desktop click on "edit." From there, click on "Shared Folders" and uncheck the box next to the option "Enable global sharing for drag-and-drop." You can then add any specific folders that you'd still like to share from that menu.

[Security Fix]
5:48:18 PM    

Click here to visit the Radio UserLand website. © Copyright 2007 Paul Hardwick.
Last update: 3/4/07; 2:42:42 AM.

February 2007
Sun Mon Tue Wed Thu Fri Sat
        1 2 3
4 5 6 7 8 9 10
11 12 13 14 15 16 17
18 19 20 21 22 23 24
25 26 27 28      
Jan   Mar