Building on the Networking Basics article previously written and a high-level overview of How Servers Serve Content, I wanted to write about how data actually moves over a network. That is, what happens when a user on a network node communicates with another networked node. There are two main models that are accepted: the Open Systems Interconnection (OSI) model separates … [Read more...]
Windows Updates Mend Critical Journal Vulnerability & More
Severity: High Summary: These vulnerabilities affect: All current versions of Windows (and related components like XML Core Services) How an attacker exploits them: Multiple vectors of attack, including enticing you to malicious web sites, or into interacting with malicious documents or images. Impact: In the worst case, an attacker can gain complete control of your Windows … [Read more...]
Windows Updates Fix GDI+, RDP, and TCP Vulnerabilities
Severity: High Summary: These vulnerabilities affect: All current versions of Windows (and related components like XML Core Services) How an attacker exploits them: Multiple vectors of attack, including enticing you to malicious web sites, or into interacting with malicious documents or images. Impact: In the worst case, an attacker can gain complete control of your Windows … [Read more...]
Four Windows Bulletins: Critical TCP/IP Vulnerability Allows Remote Root
Bulletins Affect TCP/IP, Active Directory, Windows Mail, and More Severity: High Summary: These vulnerabilities affect: All current versions of Windows and components that ship with it (though most only affect more recent versions of Windows) How an attacker exploits them: Multiple vectors of attack including sending specially crafted packets, or enticing users into opening … [Read more...]
Microsoft Black Tuesday: Windows Bulletins Primarily Affect Recent Versions
As expected, today's Patch Day has a Windows theme, since all of Microsoft's security bulletins affect Windows or components that ship with it. More importantly, most of the updates primarily affect modern versions of Windows, such as Windows Vista, 7, or Server 2008; only one of the Important bulletins affect older versions of Windows. A remote code execution flaw in the … [Read more...]