About Us Company ProfileHardware & Software ProductsSoftware & IT ServicesTechnical SupportContact Us
  infoarch : alert : archive 2007 (Jan - Jun)  
 

 

System : 2007-June-5

We will be performing a bandwidth upgrade exercise on Saturday, 9th June 2007 from 10:00AM to 11:00AM. During this time certain services may become unavailable. Affected sub-systems include email and webmail.

 

Vulnerability : 2007-Apr-3

There is a very serious flaw in all versions of Windows 2000, Windows XP and Windows Vista. If you are using Internet Explorer 6 or 7, simply visiting a web site with a malicious animated icon file (.ani) can cause your system to continuously reboot, rendering it unusable. The flaw can be exploited to allow remote access.

The proof-of-concept appeared to be originating from one of the following sites, which should be blocked by your firewall until all vulnerable systems have been patched:

85.255.113.4
fdghewrtewrtyrew.biz
newasp.com.cn
wsfgfdgrtyhgfd.net
uniq-soft.com

As the exploit is spreading exponentially to hundreds of web sites, and a worm has been reportedly spreading from China, all affected users are adviced download and apply the patch from Microsoft immediately.

To directly access the patch or for more information:

Microsoft Security Bulletin MS07-017

UPDATE: If your computer has Realtek audio chipset and you are using the Realtek HD Audio Control Panel, you may receive the following error after applying the patch:

Illegal System DLL Relocation

The system DLL user32.dll was relocated in memory. The application will not run properly. The relocation occurred because the DLL C:\Windows\System32\Hhctrl.ocx occupied an address range reserved for Windows system DLLs. The vendor supplying the DLL should be contacted for a new DLL.

To resolve it, Microsoft has issued patch KB935448 to patch the problem caused by patch MS07-017:

Microsoft WindowsXP-KB935448-x86-ENU.exe

 

Network : 2007-Apr-2

Many Streamyx lines in Johor Bahru are down. Reasons unknown.

The problem manifested itself as name query failure from 31st March, and expanded to dropped line. Affected areas and customers are still expanding as at 12:30PM.

 

Network : 2007-Jan-29

The connection between Streamyx and Jaring is unstable. The problem seemed to be originated from TMNet. Jaring users may have difficulty connecting to TMNet servers. Emails between the two networks are also delayed.

 

Vulnerability : 2007-Jan-3

Apple's QuickTime software has a series flaw that can be easily exploited by malicious web sites.

QuickTime Version 7.1.3, once installed, automatically handles addresses starting with "rtsp://" by default. By using HTML, JavaScript or a QTL file, hackers can cause a stack-based buffer overflow to upload execute malicious code and take over the system.

The flaw affects both Windows and Mac OS. Users are advised to uninstall QuickTime or disable its rtsp handler.

 

 

  
Alert Archive

 


Latest alerts:

Current Alert

Older alerts are available here:

  
 
     
     

 

  

 

© Copyright 1999-2009, 2010 Infoarch Sdn. Bhd. All Rights Reserved
147A Jalan Perisai, Taman Sri Tebrau 80050. Johor Bahru, Johor, Malaysia.
Our Privacy Policy