Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec

Vista vulnerability results in patch

Finjan Software : 16 August, 2007  (Technical Article)
Potential for remote code execution in Vista discovered by Finjan now successfully patched by Microsoft.
Finjan has announced that a new Windows Vista security update released by Microsoft as part of its monthly security update resulted from security research by Finjan's Malicious Code Research Center (MCRC). The discovery of the vulnerability by Finjan's Malicious Code Research Center (MCRC) and Finjan's prompt action to alert Microsoft reflect the commitment of the two companies to work together to counter security threats posed by malicious hacker attacks to PC and Internet users.

The vulnerability associated with Windows Vista's Contact gadget could potentially lead to remote code execution on the Vista platform. An attacker could exploit the vulnerability with minimal user interaction with the Contact gadget that is available in Windows Vista.

Finjan has made a short video showing the exploit in action, available on its web site. Finjan recently presented findings related to the entire field of Widgets and Gadgets, and the implications for vendors using them, in the recent DefCon event held in Las-Vegas during the beginning of August.

Finjan provided Microsoft with full technical details, including proof-of-concept, concerning this vulnerability and worked with Microsoft until a fix was ready to be released to customers. "This discovery is the latest example of the close cooperation between our Malicious Code Research Center and Microsoft with the goal of securing users from potential malicious attacks," said Finjan CTO Yuval Ben-Itzhak. "Security is an industry problem and this type of collaboration and cooperation is critical to helping protect people using the Internet."

Ben-Itzhak noted that Finjan's patented real-time content inspection technology has demonstrated a solid track record in protecting Windows users against web exploits. Finjan's Vital Security Web appliances are free from the recent false positive problems associated with several anti-malware products.

Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo