June 2005 Meeting Notes

June 2005 Meeting Notes

Security
Three "Critical" updates were released June 14, 2005:
1.. MS05-025: Internet Explorer Update - fixes two problems:
a.. A remote code execution vulnerability exists in Internet Explorer because of the way that it handles PNG images. An attacker could exploit the vulnerability by constructing a malicious PNG image that could potentially allow remote code execution if a user visited a malicious Web site or viewed a malicious e-mail message. An attacker who successfully exploited this vulnerability could take complete control of an affected system.
b.. An information disclosure vulnerability exists in Internet Explorer because of the way that it handles certain requests to display XML content. An attacker could exploit the vulnerability by constructing a malicious Web page that could potentially lead to information disclosure if a user visited a malicious Web site or viewed a malicious e-mail message. An attacker who successfully exploited this vulnerability could read XML data from another Internet Explorer domain. However, user interaction is required to exploit this vulnerability.
2.. MS05-026: HTML help Update -- Microsoft HTML Help is the standard help system for the Windows platform. Authors can use HTML Help to create online Help files for a software application or to create content for a multimedia title or for a Web site. This is a remote code execution vulnerability. If a user is logged on with administrative privileges, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full privileges.
Users whose accounts are configured to have fewer privileges on the system would be at less risk than users who operate with administrative privileges.
Even though Windows 98, 98 SE, and ME are affected, no patch is available for those systems yet.
3.. MS05-027: Vulnerability in Server Message Block Could Allow Remote Code Execution -- Server Message Block (SMB), and its follow-on, Common Internet File System (CIFS), is the Internet Standard protocol that Windows uses to share files, printers, serial ports, and also to communicate between computers. To do this, SMB uses named pipes and mail slots. In a networked environment, servers make file systems and resources available to clients.
Clients make SMB requests for resources. Servers make SMB responses. This is described as a client server, request-response protocol. There are several different ways that an attacker could try to exploit this vulnerability. An attacker could try to exploit the vulnerability directly over a network by creating a series of specially crafted messages and sending them to an affected system. The messages could then cause the affected system to execute code. Windows 98, 98 SE, and ME are not affected.

Other Security Updates (non-critical):
a.. MS05-028: A vulnerability exists in the Windows Web Client Service that could allow an attacker to take complete control of an affected system.
b.. MS05-029: A cross-site scripting vulnerability exists in Outlook Web Access for Microsoft Exchange that could allow an attacker to run a malicious script in Outlook Web Access.
c.. MS05-030: A vulnerability exists in Outlook Express that could allow an attacker to take complete control of an affected system. User interaction is required to exploit this vulnerability and an attacker would need to persuade a user to connect to their News (NNTP) server.
d.. MS05-031: A vulnerability exists in Windows that could allow an attacker to take complete control of an affected system. Microsoft Windows Interactive Training is not installed by default.
e.. MS05-032: A vulnerability exists in Microsoft Agent that could enable an attacker to spoof trusted Internet content.
f.. MS05-033: A vulnerability exists in the Windows Telnet Client that could enable an attacker to retrieve unpredictable information from a system.



For more information check out
http://www.microsoft.com/technet/security/bulletin/ms05-jun.mspx.



To get just the security updates your computer needs:
a.. Just go to Windows Update. Use MS Internet Explorer to go to
http://windowsupdate.microsoft.com/
b.. The Windows Update program knows which updates are for your version of
windows.



A recent study shows that 30%-40% of all email is infected with a virus.
a.. This means that people are still opening attachments to make the virus
spread.
b.. Do not open any unexpected attachments, even from people you know.
c.. Agree beforehand that you will be expecting a specific attachment if
you need to send someone a file.



A Do-It-Yourself Reminder System (no extra software needed)
a.. Use notepad to create a list of tasks, dates, etc.
b.. Use the Scheduled Tasks program to schedule your file to open when you
log in (or at other times).
c.. In Windows 98, open My Computer, then double-click "Scheduled Tasks".
d.. In Windows XP, choose Start -> Control Panel -> Performance and
Maintenance -> Scheduled Tasks
e.. Double-click "Add Scheduled Task" to start the Scheduled Task Wizard.
f.. Click Next.
g.. Don't choose a program from the list, but click Browse.
h.. Navigate to where you saved your list of tasks and dates, click the
file, and click Open.
i.. Choose "Run When I log In" to have the file shown when you start up
Windows. Click Next.
j.. Click Finish.
k.. To adjust the schedule afterwards, open up the Scheduled Tasks list
and double-click an item. Choose the Schedule tab to change the schedule.
Unfortunately, Yearly is not an option.
l.. Another thing to try: record a message using Sound Recorder, and
schedule it to play using Scheduled Taks to have an audio reminder.



If you want a more polished reminder system (yet still free)
a.. Download a reminder/calendar program (there are many).
b.. I tried Birthdays and Anniversaries Reminder 1.0 from http://download.com.
Birthdays and Anniversaries Reminder (BAR) is a simple program that reminds
you of the birthdays of your friends & relatives (or even yours). All you
have to do is keep on adding the dates you know, set BAR to run at startup,
and rest assured that you will be notified of them as they approach. BAR has
a very easy-to-use interface and has several options like sorting,
formatting dates according to your locale and numbers of days in advance
should BAR check for approaching birthdays. Use it for some time, and you'll
start liking (and needing) it more.



If you want to build your own program:
a.. Free download: Visual Studio 2005 Express Editions (Beta 2 versions)
b.. Send me an email if you are interested.