reghakr
New member
Microsoft August 31 again abstained from naming which of its Windows programs, if any, contain bugs that could lead to widespread “DLL load hijacking” attacks.
Also August 31, the company published an automated tool to make it easier for users to block attacks exploiting vulnerabilities in a host of Windows applications.
The DLL load hijacking vulnerabilities exist in many Windows applications because the programs do not call code libraries — dubbed “dynamic-link library,” or “DLL” — using the full pathname, but instead use only the filename.
Criminals can exploit that by tricking the application into loading a malicious file with the same name as the required DLL.
The result: Hackers can hijack the PC and plant malware on the machine.
Although Microsoft again declined to call out its vulnerable software, outside researchers have identified as potential targets a number of its high-profile apps, including Word 2007, PowerPoint 2007 and 2010, Address Book and Windows Contact, and Windows Live Mail.
In another blog, an engineer with the Microsoft Security Response Center (MSRC) and an MSRC program manager, described how customers can deploy and use a tool Microsoft first offered August 23.
That tool blocks the loading of DLLs from remote directories, such as those on USB drives, Web sites and an organization’s network, and is aimed at enterprise IT personnel.
Source:
http://www.computerworld.com/s/article/9183078/Microsoft_still_mum_on_programs_prone_to_DLL_hijacking_attacks
Also August 31, the company published an automated tool to make it easier for users to block attacks exploiting vulnerabilities in a host of Windows applications.
The DLL load hijacking vulnerabilities exist in many Windows applications because the programs do not call code libraries — dubbed “dynamic-link library,” or “DLL” — using the full pathname, but instead use only the filename.
Criminals can exploit that by tricking the application into loading a malicious file with the same name as the required DLL.
The result: Hackers can hijack the PC and plant malware on the machine.
Although Microsoft again declined to call out its vulnerable software, outside researchers have identified as potential targets a number of its high-profile apps, including Word 2007, PowerPoint 2007 and 2010, Address Book and Windows Contact, and Windows Live Mail.
In another blog, an engineer with the Microsoft Security Response Center (MSRC) and an MSRC program manager, described how customers can deploy and use a tool Microsoft first offered August 23.
That tool blocks the loading of DLLs from remote directories, such as those on USB drives, Web sites and an organization’s network, and is aimed at enterprise IT personnel.
Source:
http://www.computerworld.com/s/article/9183078/Microsoft_still_mum_on_programs_prone_to_DLL_hijacking_attacks
My Computer
At a glance
Windows 7 Pro & Vista Home PremiumAthlon 64 3800+ (Orleans) 2.40GHz2GB DDR2 RAM DIMMNVIDIA GeForce 8500 GT 512 MB memory HDMI out
- Computer Manufacturer/Model Number
- Cheap $399.00 E-Machine
- OS
- Windows 7 Pro & Vista Home Premium
- CPU
- Athlon 64 3800+ (Orleans) 2.40GHz
- Motherboard
- Winfast
- Memory
- 2GB DDR2 RAM DIMM
- Graphics Card(s)
- NVIDIA GeForce 8500 GT 512 MB memory HDMI out
- Sound Card
- creative X-Fi Exteme 7..1 channel
- Monitor(s) Displays
- Acer V223W 22" widescreen DVI
- Screen Resolution
- 1680x1050
- Hard Drives
- WDC WD5 500GB
WDC WD25 250GB
- PSU
- OCZ 550 watt
- Case
- Gateway
- Cooling
- 2 fans
- Keyboard
- Dell
- Mouse
- Sony Vaio
- Internet Speed
- 18MB/s down - .72MB /s up