Page 1 of 3 123 LastLast
Results 1 to 15 of 32
  1. #1
    5 Star Lounger
    Join Date
    Jan 2011
    Location
    Seattle, WA
    Posts
    1,070
    Thanks
    42
    Thanked 132 Times in 86 Posts

    Microsoft tackles three zero-day exploits




    PATCH WATCH

    Microsoft tackles three zero-day exploits


    By Susan Bradley

    PC security in October is already more trick than treat. Three zero-day exploits came to light ó one apparently in use for years. As the so-called "Sandworm" threat shows, Windows vulnerabilities can be used to steal both personal information and state secrets.

    The full text of this column is posted at windowssecrets.com/patch-watch/microsoft-tackles-three-zero-day-exploits/ (opens in a new window/tab).

    Columnists typically cannot reply to comments here, but do incorporate the best tips into future columns.

  2. The Following 2 Users Say Thank You to Kathleen Atkins For This Useful Post:

    aczer (2014-10-18),csmart4125 (2014-10-21)

  3. #2
    3 Star Lounger
    Join Date
    Dec 2009
    Location
    Courtenay, BC
    Posts
    244
    Thanks
    9
    Thanked 16 Times in 15 Posts
    On my system (Win7 64), KB 2949927 was deselected by default. All else was pre-checked as usual.
    In the past, deselection has usually indicated problems...
    Thoughts?

  4. #3
    3 Star Lounger
    Join Date
    Dec 2009
    Location
    Fresno, California, USA
    Posts
    259
    Thanks
    0
    Thanked 71 Times in 45 Posts
    Quote Originally Posted by DavidFB View Post
    On my system (Win7 64), KB 2949927 was deselected by default. All else was pre-checked as usual.
    In the past, deselection has usually indicated problems...
    Thoughts?
    V2.0 (October 17, 2014): Removed Download Center links for Microsoft security update 2949927. Microsoft recommends that customers experiencing issues uninstall this update. Microsoft is investigating behavior associated with this update, and will update the advisory when more information becomes available.

    https://technet.microsoft.com/en-us/...curity/2949927

    My crystal ball wasn't good enough this time to see issues with this one. Bottom line, don't install it if it hasn't yet installed, if it has installed and you see no bad things happening, I would uninstall it just to be safe.

  5. #4
    Star Lounger
    Join Date
    Jan 2010
    Location
    Monterey, California, USA
    Posts
    72
    Thanks
    20
    Thanked 0 Times in 0 Posts
    In Ms. Bradley's latest message in Windows Secrets, the opening topic was
    " MS14-058 (3000061)
    "Two zero-day exploits already in the wild"

    At the end of that topic, she wrote:
    "What to do: Look for my updates on KB 3000061 (MS14-058) in the Windows Secret Lounge, using the link at the bottom of this article."

    I probably am being incredibly non-observant, but I cannot find her "link at the bottom of this article."

    I would very much appreciate learning where that link is.

    R.N. (Roger) Folsom

  6. #5
    Lounger
    Join Date
    Feb 2010
    Location
    Boston, Massachusetts, USA
    Posts
    44
    Thanks
    1
    Thanked 4 Times in 2 Posts
    Susan, In this week's Patch Watch you mention KB 2977292, the SHA2 "advisory," useful for VPN users. I do use a VPN and installed the "advisory." OK so far. Then I looked at the linked support article and it was useless. In order to use more than one version of TLS you apparently have to OR DWORD values in the new registry key. After half an hour of searching I can't find any information on how to do that. Some instructions on ORing DWORD values would have been helpful.

  7. #6
    Super Moderator
    Join Date
    Jun 2011
    Location
    New England
    Posts
    4,749
    Thanks
    171
    Thanked 650 Times in 573 Posts
    Quote Originally Posted by RNFolsom View Post
    In Ms. Bradley's latest message in Windows Secrets, the opening topic was
    " MS14-058 (3000061)
    "Two zero-day exploits already in the wild"

    At the end of that topic, she wrote:
    "What to do: Look for my updates on KB 3000061 (MS14-058) in the Windows Secret Lounge, using the link at the bottom of this article."

    I probably am being incredibly non-observant, but I cannot find her "link at the bottom of this article."

    I would very much appreciate learning where that link is.

    R.N. (Roger) Folsom
    The link (to this thread) is in the box "Feedback welcome" after the Patch Watch chart.

    Bruce

  8. The Following 2 Users Say Thank You to BruceR For This Useful Post:

    Hihomumio (2014-10-29),RNFolsom (2014-10-19)

  9. #7
    2 Star Lounger csmart4125's Avatar
    Join Date
    May 2012
    Location
    Michigan
    Posts
    199
    Thanks
    121
    Thanked 9 Times in 7 Posts

    recent updates

    Fellow members,

    Perhaps I missed them, but I was unable to find information on the following recent updates: kb2984976, kb2984981, and kb3001554.

    Please comment on the advisability of installing these updates.

    Thank you in advance for your opinion on these updates.

    Charles

    Genius is the ability to renew one's emotions in daily experience.
    Paul Cezanne

  10. #8
    WS Lounge VIP
    Join Date
    Dec 2009
    Location
    Earth
    Posts
    8,191
    Thanks
    48
    Thanked 985 Times in 915 Posts
    2984976 is related to 2984972 and is not even recommended by MS.
    2984981 is also RDP, but for server 2008. No sign of it in patch watch.
    3001554 is non-security, ignore.

    cheers, Paul

  11. #9
    Star Lounger
    Join Date
    Jan 2010
    Location
    Monterey, California, USA
    Posts
    72
    Thanks
    20
    Thanked 0 Times in 0 Posts
    Quote Originally Posted by BruceR View Post
    The link (to this thread) is in the box "Feedback welcome" after the Patch Watch chart.

    Bruce
    Bruce:

    Thanks for the help. I ended up going to
    Microsoft Security Bulletin MS14-057 - Critical, at MS14-058
    https://technet.microsoft.com/en-us/.../ms14-057.aspx

    where I was able to see, and copy, the list of Affected Software for my 64-bit Win7sp1 laptop.

    R.N. (Roger) Folsom

  12. #10
    2 Star Lounger csmart4125's Avatar
    Join Date
    May 2012
    Location
    Michigan
    Posts
    199
    Thanks
    121
    Thanked 9 Times in 7 Posts

    recent updates not mentioned in Patch Watch

    Quote Originally Posted by Paul T View Post
    2984976 is related to 2984972 and is not even recommended by MS.
    2984981 is also RDP, but for server 2008. No sign of it in patch watch.
    3001554 is non-security, ignore.

    cheers, Paul
    Paul,

    Thanks for your reply.

    I was unclear in my first posting. The reason I wrote first is that none of the updates appear in Patch Watch. The first two, KB 2984976 and KB2984981, appear in Windows Update and are listed under "important updates" as being "security updates." When I checked earlier, there were a few reports of these causing problems.

    The third, KB 3001554, also appears in Windows Update and is listed under "important updates" as being a "recommended" update that improves DVD playback. Since I'm not having problems with DVD playback, I thought I'd wait and see if problems develop playing DVDs. Also, there have been problems installing this third update. Your response confirmed my decision to wait a month or so on this one.

    If you or other members can shed light on the first two updates, I'd appreciate hearing from you.

    Charles

    PS
    OS Win 7 Pro, 3 GB RAM, Intel Core 2 Duo 2.2 GHz
    Last edited by csmart4125; 2014-10-19 at 17:48.

  13. #11
    Star Lounger
    Join Date
    Jan 2010
    Location
    Monterey, California, USA
    Posts
    72
    Thanks
    20
    Thanked 0 Times in 0 Posts

    Windows7 Sp1 Information and Mysteries

    In Ms. Bradley's latest Patch Watch Two zero-day exploits already in the wild section, her advice was "If you donít open sent Office documents, you can delay installation until I have more information on possible side effects. But if you must work with documents sent to you by others, I would install this update as soon as possible."
    So when I ran Windows Updates --- on my 64-bit Win7sp1 laptop --- I did not install the following five items, the first four because I do not receive Office documents (I get emails).

    I am posting the information about the first four security items below in case that it might be useful for others.
    I am posting the fifth item in order get information about a non-security item.

    I think it rather odd that Windows Updates wanted me to install Security Updates 1), 2), because to the best of my knowledge my laptop does not allow remote Desktop access, and 1) and 2) are about Remote Desktop Connection and Remote Desktop Protocol.

    I investigated the Microsoft link for each of the five items (but I have eliminated some information details here, as indicated by . . . .), so feel free to use the MS link yourself.

    1) Security Update for Windows 7 for x64-based Systems (KB2984972)
    More information:
    http://support.microsoft.com/kb/2984972
    Update for RDC 7.1 to support restricted administration logons on Windows 7 and Windows Server 2008 R2
    This Remote Desktop Protocol (RDP) 7.1 update ENABLES the Remote Desktop Connection client to perform restricted administration logons. It also ENABLES the Remote Desktop Service that is running on an RD host to perform restricted administration.

    2) Security Update for Windows 7 for x64-based Systems (KB2984976)
    More information:
    http://support.microsoft.com/kb/2984976
    RDP 8.0 update for restricted administration on Windows 7 or Windows Server 2008 R2
    This Remote Desktop Protocol (RDP) 8.0 update ENABLES the Remote Desktop Connection client to perform restricted administration logons. It also ENABLES the Remote Desktop Service that is running the RDP 8.0 host to perform restricted administration. . . .

    3) Security Update for Windows 7 for x64-based Systems (KB3000061)
    More information:
    http://support.microsoft.com/kb/3000061
    Vulnerabilities in kernel-mode driver could allow remote code execution. . . .

    4) Security Update for Windows 7 for x64-based Systems (KB3000869)
    More information:
    http://support.microsoft.com/kb/3000869
    Vulnerability in Windows OLE [Object Linking and Embedding] could allow for remote code execution. . . .

    Item 5 is not about security.
    5) Update for Windows 7 for x64-based Systems (KB3001554)
    More information:
    http://support.microsoft.com/kb/3001554
    Update for DVD playback in Windows 7 SP1
    This update helps Microsoft improve customer experiences in DVD playback in Windows Media Player and Windows Media Center in Windows 7 Service Pack 1 (SP1). Check out the Prerequisites before you install this update, and see the "References" section about DVD playback.
    Windows 7: If you're running Windows 7 Home Basic or Windows 7 Starter, you can upgrade to Windows 7 Home Premium, Ultimate, or Enterprise to add full DVD capability or buy and install a compatible DVD movie player app.

    My questions about item 5) are:
    5.1) What is a DVD playback?
    5.2) Shouldn't Windows Professional (which is what I am using) have been listed in the last item 5) sentence? If not, why not?
    (Full disclosure: I have no idea whether my computer is currently equipped to use DVD Playback. I would appreciate learning how to find that information)

    R.N. (Roger) Folsom

  14. #12
    3 Star Lounger
    Join Date
    Dec 2009
    Location
    Bozeman, MT
    Posts
    328
    Thanks
    2
    Thanked 3 Times in 3 Posts

    Something in MS Update crashing Opera 12.17?

    Win 8.1 Pro x64. For the past few days, Opera 12.17* has been crashing randomly, seemingly on graphics and video, and I'm starting to wonder if some part of last Tuesday's MS update is the culprit. I installed everything MS offered. Going through what else has been installed since then, and doing some uninstalls, disables and system restores to try to isolate the problem, hasn't turned up anything that makes sense. Here's what I've installed since the MS update:
    - FF33
    - Adobe AIR plugin
    - O&O Defrag Pro
    - Java 8 Update 25 (32/64 bit) - disabled in Opera and other browsers
    - Adobe Flash Player 15 update (15.0.189)
    - AMD Catalyst Install Mgr w/ MS Visual C++ 2012 Redistributable (x64) 11.0.50727 - uninstalled, crashes cont'd, then reinstalled

    The last crash occurred just now on the following page, well after it loaded:
    http://gallatinvalleybicycleclub.org...m_medium=email

    Another example was this afternoon, twice:
    http://www.golfchannel.com/news/asso...anabank-title/. At that time I had an FP beta installed. After replacing it with the latest public version, the video ran fine twice so I figured that was the problem. But another crash suggests otherwise. It's been a long time since Opera has been crashing like this, if at all.

    So I have to ask: does anyone see anything in the MS update that might be at issue? Thanks,

    * Just to head off a reply about Opera versions, 12.17 is Opera's only currently supported full-function browser. Opera 15+ (now 25) is explicitly a browser in development (e.g., bookmarks were only introduced two or three versions ago).
    Last edited by highstream; 2014-10-19 at 23:47.

  15. #13
    3 Star Lounger
    Join Date
    Dec 2009
    Location
    Fresno, California, USA
    Posts
    259
    Thanks
    0
    Thanked 71 Times in 45 Posts
    Quote Originally Posted by csmart4125 View Post
    Paul,

    Thanks for your reply.

    I was unclear in my first posting. The reason I wrote first is that none of the updates appear in Patch Watch. The first two, KB 2984976 and KB2984981, appear in Windows Update and are listed under "important updates" as being "security updates." When I checked earlier, there were a few reports of these causing problems.

    The third, KB 3001554, also appears in Windows Update and is listed under "important updates" as being a "recommended" update that improves DVD playback. Since I'm not having problems with DVD playback, I thought I'd wait and see if problems develop playing DVDs. Also, there have been problems installing this third update. Your response confirmed my decision to wait a month or so on this one.

    If you or other members can shed light on the first two updates, I'd appreciate hearing from you.

    Charles

    PS
    OS Win 7 Pro, 3 GB RAM, Intel Core 2 Duo 2.2 GHz
    The RDP updates only come into play in a domain and are only relevant in a domain. They really don't provide any additional security if you are not in a domain and your admin hasn't taken action. Right now I'm tracking issues with this updates causing issues with Terminal Servers and Remote Desktop Servers. For now hold back.

    September 2014 update for DVD playback in Windows 7 SP1:
    http://support2.microsoft.com/defaul...;en-us;3001554
    That one snuck in on me due to it's release way at the fifth week of a month. I haven't seen any side effects, it's not mandatory, if you aren't having issues, I'd say skip it.

  16. The Following 2 Users Say Thank You to SusanBradley For This Useful Post:

    aczer (2014-10-26),csmart4125 (2014-10-21)

  17. #14
    2 Star Lounger csmart4125's Avatar
    Join Date
    May 2012
    Location
    Michigan
    Posts
    199
    Thanks
    121
    Thanked 9 Times in 7 Posts
    Susan,

    Thank you for your lucid and succinct response. I'm going to follow your advice and hold off on these three updates.

    Charles

  18. #15
    Star Lounger
    Join Date
    Nov 2011
    Location
    Calgary, AB, Canada
    Posts
    54
    Thanks
    51
    Thanked 2 Times in 2 Posts
    Hi Highstream,

    I have been having sporatic crashes on Opera 12.17 for over a year now, since I went to W 8.0.0. Norway doesn't really care about those of us that really like the old comprehensive browser or legacey community. They have publicly stated that bookmarks is not a priority or a "real concern" for them. I too have an extensive and comprehensive volume of bookmarks. I also like the IRC capability. The download manager was also very well written and head and shoulders above their Chrome based browser.

    I need to find alternative Apps to take care of these functions that I care about but change sometimes comes slow for me. As far as browser is concerned, I need to try Firefox because I don't care for "Chrome/based" browsers for a primary, and I can't stand IE.

    So there you have it, more advanced websites, often are more problematic.
    Hope this helps,

    Best Regards,

    Crysta

Page 1 of 3 123 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •