MS Windows CSRSS Vulnerability

Hello everyone. I have a dell desktop running windows xp home edition. AVG virus checker found an
exploit in Firefox's application database in My Documents. I moved it to the "vault" in AVG.
I have several clients to check the safety of my computer and it seems like my machine is secure,
however, there is one problem. My DHCP-cable modem is directly hooked to my computer. However,
even when the computer is idle, the "Send/recieve" LED's (lights) constantly blink. Do I still
have the exploit or somehow I can't catch the "Trojan" the exploit installe...

QUOTE The phpBB application is prone to an arbitrary PHP code-execution vulnerability. If
successful, attackers can execute script code with the privileges of the webserver process.
QUOTE Vulnerable: phpBB phpBB 2.0.21 phpBB phpBB 2.0.20 phpBB phpBB 2.0.18 Not Vulnerable:
phpBB phpBB 2.0.22 So , upgrade to phpBB phpBB 2.0.22 ....

According eWeek.com, a new vulnerability was found in all the major Web browsers ( IE, Firefox,
Safari). This Spoofing Flaw can be exploited by malicious hackers to trick surfers into disclosing
confidential information. QUOTE "The problem is that JavaScript dialog boxes do not display or
include their origin, which allows a new window to open a prompt dialog box, which appears to be
from a trusted site," Here is the place for you to test your broswer whether vulnerable or not.
http://secunia.com/multiple_browsers_dialo...erability_test/ source: http://www.e...

QUOTE WinZip is prone to a remote code-execution vulnerability in an ActiveX control that is
installed with the package. Exploiting this issue allows remote attackers to execute arbitrary
machine code in the context of applications using the affected ActiveX control and possibly to
compromise affected computers. WinZip versions in the 10.0 series prior to build 7245 are
vulnerable to this issue. Here is an exploit source code :
http://downloads.securityfocus.com/vulnera...-vs-MS-winzip.c used a shellcode that binds a port on
4444. ...

I am trying to figure what is wrong with this one copy of Windows that has slowed to crawl since I
installed sp2. I certainly hope that sp2 is not the cause so I am searching for malicious software
undetected by spybotS&D, avast, and AdAware. My troubles with ZoneAlarm has left my computer
unprotected by any firewall at times and then the efforts to fix my DSL connections had me
connecting directly to the modem rather than through the router as I usually do. So it is possible
that something has gotten through. I am particularly suspicious of the services I cannot s...

Another vulnerability to XP has been found by Security research firm Secunia. QUOTE
Description: A vulnerability has been reported in Microsoft XML Core Services, which can be
exploited by malicious people to compromise a users system. The vulnerability is caused due to an
unspecified error in the XMLHTTP 4.0 ActiveX Control. Successful exploitation allows execution of
arbitrary code when a user e.g. visits a malicious website using Internet Explorer. NOTE: The
vulnerability is already being actively exploited. QUOTE Solution: Microsoft has recommended
va...

Dear Members As you all may be aware of the spywares, trojan horses,viruses which are troubling us.
I have found out a descent way of protecting owr PC's from these harmful stufs. I run a cyber
cafe and use windows xp home version. I am describing my way of protecting pc's:- 1. Frist of
all I have downloaded the windows XP service pack 2. 2. Then I have downloaded Avg Free. 3. Lastly
I have downloaded Windows Defender. 4. What I do is that, I have created two accounts in my
computer. One Admin which have Administrator rights another guest account. I use the ...

Ugggg, I just found out (from my computer!) that my Operating System (XP Pro) isn't
genuine /mad.gif" style="vertical-align:middle" emoid=":angry:" border="0" alt="mad.gif" /> I
got a great deal on a used computer from a Swap Meet a few months ago. Will Microsoft accept a
letter or something, along with a little toy cash register receipt and give me a license key, or
will I have to buy a new copy? Dang, I should have known better, from now on, I'm building my
own systems (I've been studying!) ...

is it working now...? QUOTE An attacker can reset any Microsoft Hotmail/.Net Passport user
account with no prior information like state, zip, country, answer to the secret question and the
old password. Normally, a user has to answer the security questions and than answer the secret
question if he wants to reset his password. By exploiting this vulnerability, an attacker can submit
a specially crafted URL to get the password reset instructions and reset any user?s password.
TECHNICAL DETAILS Due to the nature of this vulnerability and the fact that there is no fix...

Microsoft has issued a Security Advisory (912840) on 28 Dec. It concerns the recent WMF
vulnerability exploit. Microsoft also gave a temp solution to protect your PC until they issue a
patch. It's a good idea to use this before the patch comes out. The following is a quote from
the Microsoft Security Advisory. QUOTE Un-register the Windows Picture and Fax Viewer
(Shimgvw.dll) 1. Click Start, click Run, type "regsvr32 -u %windir%\system32\shimgvw.dll"
(without the quotation marks), and then click OK. 2. A dialog box appears to confirm that the
un-registr...

A vulnerability in Flash Player 7 has been identified by Macromedia. Microsoft urges users to apply
a critical update from Flash Player update from Macromedia. This vulnerability affects Flash
Player 7.0.19.0 and earlier. Flash Player (8.0.22.0) contains a fix for the vulnerability. If you
have Flash Player 7 installed, it is the time to upgrade to this new version. It is very
interesting. Microsoft is advising to upgrade an application that is not Microsoft's. But it is
nice to see just how much MS is becoming dedicated with security. And the developer can m...

A new worm has been detected by multiple antivirus and security specialists. It's called ZOTOB
and is exploiting security holes that have been earlier highlighted in Microsoft Security Bulletin
MS05-039 . The worm affects Win2000 systems and newer. Win 98, ME etc. are not currently thought to
be at risk although, one must always keep the holes plugged. Details regarding what it does exactly
and removal instructions can be found at Symantec's site and also at Microsoft's ZOTOB
Advisory page The hole allowing Zotob to infect and spread can be fixed by i...

When I was shocked when I saw this QUOTE MICROSOFT'S bid to refuse access to updated
versions of Windows has been foiled by hackers. The Vole had demanded that those who wanted Windows
updates, other than security improvements, had to download an Active X program that sniffed their
operating system to see if their OS had been pirated. It took about 24 hours for hackers to come up
with a solution involving IE script, the hackers claim. source:
http://www.theinquirer.net/?article=24961 If I am not wrong, Microsoft spent more than one year to
build up this...

Unbelieveable but true - ever since I've reinstalled windows, I've been getting this message
from windows security centre in a dialogue box that my computer is not properly protected and blah,
blah.... and it asks me whether i want to learn how to protect my computer (as if i don't know)
if i click yes, it opens firefox and takes me to this site which obviously is not a microsoft
site. also, many times i get a baloon with a similar message. when i click it, norton says that a
"trojan horse" was detected and deleted. so is this how microsoft protects my comp...

Okay, so I was talking to my friend on IM yesterday and then she sends me a message saying OMFG LOOK
AT HER or something like that and then a link. I stupidly opened it and then two seconds later she
IMs me telling me not to cause it seems to be a virus. Usually I don't accept those kind of
things but it was from her so I let my guard down. Apparently she had got it from another one of her
friends. It's a .pif virus I know that much but it doesn't do much, I can still open AIM
and my task manager with no weird things but when I reboot my computer, my C:\WIN...

I doubt this can even qualify as an exploit, but here is a way to obtain admin access for windows xp
in less than 5 minutes. 1. Restart the computer in safe mode 2. When the computer boots up you will
be at the user's screen. All users will be displayed here, and one extra should appear at the
top of the screen 'Admin'. 3. Use the Admin user, it doesnt require a password. Here you
can do anything you can normally do as admin, change user restrictions, create users...the works.
Almost everyone here probably know this, but for those who dont...have fun. ...

From SecurityFocus http://www.securityfocus.net/archive/1/395...10/2005-04-16/0 There is a _New_
exploit which affects the MSHTA (Microsoft HTML Application Host), using a simple program it's
possible to create file from a *.hta with a _strange_ extenstion(*.foo *.ghgh *.asd) and this file
will be executed by the MSHTA so if u put some malicious Vbs or JS in the *.hta the risk is very
high.... http://www.frsirt.com/exploits/20050414.ms05016.php this is the source of the program
to create the malicious files I've tested it on Xp Sp1 and Xp SP2 and both sy...

http://secunia.com/advisories/14820/ It is about JavaScript Engin, This vulnerability is rated as
Moderately critical. System information will be exposured to malicious people. Patch has not
available yet. The vulnerability has been confirmed in versions 1.0.1 and 1.0.2 Does turning off
the java script help in this suitation???? Firefox does has much user as IE, but more and more
vulnerability are found. I remember that some people said firefox is the most securest internet
browser. How about now??...