April 2013 Issue

Threat of the month

Threat of the month: Universal Plug and Play vulnerabilities

Subscribe
Archive

Subscribe	Advertising

Archive	Login \| Register

House Intelligence Committee OKs amended CISPA

Poll results: Is the cyber security executive order good enough?

LIVE NOW: Mobile security eSymposium

SC Editions

Chuck Miller

March 27, 2009

Microsoft denies code flaw

On its TechNet blog, Microsoft denied that a recently uncovered GDI+ EMF buffer overflow problem will result in a crash that is “exploitable for code execution.” The flaw had been reported Tuesday by SecurityFocus. Microsoft said it was continuing its investigation, but that mitigating defenses already in place effectively counteract the threat, even when the flaw causes termination of an application. — CAM

Next Article in News

Conficker detection tool released as D-Day nears

Sign up to our newsletters

SC Magazine Articles

Bitcoin mining botnet has become one of the most prevalent cyber threats

Fortinet researchers have tracked 100,000 new ZeroAccess trojan infections per week, making the botnet very lucrative to its owners.

House Intelligence Committee OKs amended version of controversial ...

Despite the 18-to-2 vote in favor of the bill proposal, privacy advocates likely will not be satisfied, considering two key amendments reportedly were shot down.

Judge rules hospital can ask ISP for help ...

The case stems from two incidents where at least one individual is accused of accessing the hospital's network to spread "defamatory" messages to employees.

Editorial