Entries from November 6, 2011 - November 12, 2011

Friday
Nov112011

Vulnerability in TrueType Font Parsing Could Allow Elevation of Privilege

DateFriday, November 11, 2011 at 12:31PM

imageMicrosoft Security Advisory (2639658)

Updated: Tuesday, November 08, 2011

General Information

Executive Summary

Microsoft is investigating a vulnerability in a Microsoft Windows component, the Win32k TrueType font parsing engine. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. The attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. We are aware of targeted attacks that try to use the reported vulnerability; overall, we see low customer impact at this time. This vulnerability is related to the Duqu malware.

Upon completion of this investigation, Microsoft will take the appropriate action to help protect our customers. This may include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs.

We are actively working with partners in our Microsoft Active Protections Program (MAPP) to provide information that they can use to provide broader protections to customers. For information about protections released by MAPP partners, see MAPP Partners with Updated Protections.

Paul Thurrott has his on take on this posted Nov 8th 2011

AuthorBob Appleby | Comment1 Comment |
in , , ,
Sunday
Nov062011

Amazon Prime - A Potent Differentiator for Amazon

DateSunday, November 6, 2011 at 2:55PM
Amazon's Prime Program was originally set up to provide Amazon Members a service that gave them free 2 day shipping. Amazon has evolved this service into far more. The addition of free video streaming for Amazon Prime Members was an interesting addition and when compared to Netflix's streaming service while maybe not having as large of a library is still favorable. Netflix streaming costs about $95/per year, compare that with Amazon's $79. Now with the addition of the free lending library where you can get one book per month, compare this with a cost of $9.99 per for purchase that you are saving $119/year on average this service provides comparable $200's in services for just $79 with the added benefit of free two day shipping on the hard goods that you order. Makes me think of this as a one of those services that area really good value!


- Posted using BlogPress from my iPad

AuthorBob Appleby | Comment1 Comment |
in , ,
Errors occurred while processing template[pageRendered/journal.st]:
StringTemplate Error: Can't parse chunk: {settingHomePageKBArticle}" target="_blank">Learn how.</a></li>
<li>If you have already selected a front page, make sure it is enabled. Click on the Cubes icon (top right) and then click the "enable page" button.</li>
</ol>
</div>

: expecting '"', found '<EOF>'
StringTemplate Error: problem parsing template 'pageRendered/noDefaultModule': null
StringTemplate Error: problem parsing template 'pageRendered/noDefaultModule': null