There are reports that two softwares will be available which installs features that are missing from Vista.

The first software is called Fiji which includes most of the features that Microsoft decided to remove from Vista such as Windows Live integration, a full-featured sidebar, the ability to playback High Definition DVD discs, a music software called Monaco, and a WinFS which is a file system (like FAT and NTFS).

Vienna is the name of the second software. It will include more features than Fiji and it is planned to be compatible with all applications.

A new update has been released by Microsoft about their Windows Media Player version 10 for Media Center 2005 edition users.

The update fixes the problem of the error message which says “A more recent version of Windows Media Player is already installed” which happens after a user manually downloads an update or by an automatic update.

The reason why the error message occurs may be based on a previous update about the software’s ability on handling Digital Rights Management protected files.

A flaw has been reported under the WINSRV.DLL library.

The flaw allows local users to have administrative priviledges on Microsoft Windows operating systems. After some analysis, it has been concluded that the flaw cannot be exploited on remotely via the internet.

The affected versions of Windows OSs are:
-2000 SP4
-2003 SP1
-XP with SP1 or SP2
-Vista

Microsoft does not think that the flaw is significant because of the reason that remote attackers cannot exploit the flaw.

For more info, read the blog from Microsoft’s security response here

Freelance working - you get to be your own boss, go to work when you like, answer the phone how you like, dress how you like - right? Wrong! If you want to get work, that is.
Read the rest of this entry »

A person named Ruben Santamarta has recently discovered a flaw in Microsoft Windows which let local users acquire sensitive information.

The affected Windows operating systems are:
-2000 Advanced Server
-2000 Datacenter Server
-2000 Pro
-2000 Server
-XP Home
-XP Pro

The flaw is based on an executable file which is CSRSS.exe. When the method NtRaiseHardError is used, CSRSS.exe does not do a proper validation on the arguments that will be passed through this method. Therefore, the process memory of CSRSS can be viewed.

Both Windows 2000 SP4 and XP SP2 has been tested and both got positive results.

A flaw in Internet Explorer version 7 and on Microsoft Windows Vista OS has recently been located.

Hackers can take over a computer by using the flaw in IE7. The method is that they set up a website which injects a virus into a user’s PC.

The flaw in Vista is located on a code when users upgrade their computer. The potential problem is that hackers can install malicious programs on affected computers.

Microsoft believes that the probability on exploiting these holes are low.

It has only been been a month since Microsoft released Vista to corporate consumers.

Ever wonder which program has a certain file or folder open? Now you can find out. Process Explorer displays a list of currently running processes and DLL’s on a the local Windows based system.
It is very useful for finding viruses and malware. For example, if the computer is launching popups every few minutes, Process Explorer will allow you to see the parent program that is launching it which will be your culprit. This is a must have in any computer technicians toolbox.
Read the rest of this entry »

FrSirt (French Security Incident Response Team) has announced that they have found a vulnerability on Windows workstation computers.

The affected Windows versions are 2000 Service Pack 4, XP Service Pack 1 and 2, and XP Pro x64 Edition.

They are recommending to block ports 139 and 445 on a user’s configuration on their firewall settings.

The vulnerability let attackers to cause a denial of service on a person’s PC and it is due to an error performed while processing “NetrWkstaUserEnum()” requests.

The flaw is rated as a moderate risk. Currently, there is no known patch to fix the flaw.

The draft version of Application Programming Interfaces (API) has been released by Microsoft. The APIs let third-party security products (such as the products that are made by Symantec and McAfee) to run through Vista’s kernel protection called Patchguard.

These APIs are available to security vendors so they can test it and give comments about it. The version will expire at the end of January.

Microsoft had announced these set of APIs last October. The purpose is to let vendors create advance security features.on their products.

The final version will be released in the middle of 2007 when Microsoft release the Service Pack 1 for Vista.

Welcome to the expert section of the Computer Technician series. Although the topics we’re going to deal with here are mostly organizational in nature (with a couple of really troublesome, migraine-inducing problems), the “expert section” title isn’t misleading. Both small and large-scale, short or long-term, planning always takes a lot of knowledge and a great deal of intuition.
In some cases, more knowledge than fixing a computer problem, because the variables you have to count in are much more numerous. With any science, be it electronics, chemistry or digital circuitry, synthesis (creation) is much more complicated than analysis (disassembly).
In this issue we will discuss tailoring a computer configuration to a specific task, currently available components, and, of course, the depth of the client’s pocket. By doing a bit of planning you can ensure you know exactly what kind of workplace needs what kind of machine.

Read the rest of this entry »