It seems Microsoft (M$) pushed (as in not telling/notifying anyone) a ‘stealth’ update of the Windows Update. This happened back on August 23rd or in my case (any many others running XP) July 30th. Further even if you told M$ you didn’t want their stinkin’ updates, you got updated. To see if your Windows Updates files were secretly updated find your windows/system32 folder and look for these files and see if they were updated to version 7.0.6000.381 (right click on the file, select properties then click the versions tab): Vista: wuapi.dll wuapp.exe wuauclt.exe wuaueng.dll wucltux.dll wudriver.dll wups.dll wups2.dll wuwebv.dll XP:…
September 14, 2007
From Mozilla Links GNUCITIZEN, a “creative hacker organization”, has disclosed details on a severe security vulnerability affecting Firefox users that have installed the QuickTime plugin on Windows or Mac OS X, which at a minimum includes all iTunes users. The vulnerability is based on QuickTime Media Link files (.qtl), simple XML files that include details about the media file to be played (like an .avi, .mov or .mp3) and other settings. However one of these parameters, qtnext, allows the publisher to specify a URL (web address) to be displayed when the media file ends. The URL could be a JavaScript…
NoScript can be described as a firewall for your Firefox. However much like a firewall, NoScript is going to require some configuration as you go. The extension blocks Java Script, Java and other executable content except from trusted domains you allow. Example on the Get Firefox Download (http://getfirefox.com) page, Mozilla has a script in place that automatically starts the download once you click on the Download Firefox – Free link from the green box. With NoScript enabled, until you allow mozilla.com the green download box won’t even appear. NoScript keeps an icon in your status bar which will inform you…