New Windows Security Flaws

By Jimmy Daniels
Contributing Writer, RealTechNews

This evening, Microsoft warned of a couple security problems that could put users at risk of attack, and that they were investigating a third one. The first flaw affects only in IE 5.01 with Service Pack 4 on Windows 2000 and IE 5.5 with Service Pack 2 on Windows ME and is related to how IE handled malformed Meta File images, and it could let an attacker take complete control of a system. They said the problem could be fixed by upgrading to IE6 with Service Pack 1.

The second issue has to do with permissive access controls in XP and Windows 2003 and only exists in versions that have not had the latest service packs installed. Microsoft recommends upgrading to service pack 2 on XP and service pack 1 on Windows 2003 or by changing permissions of course.

The third problem they are looking at only affects systems that have the HTML Help SDK installed, usually software developers.

We Say: Business as usual? At least in the third flaw, software developers themselves are affected, maybe it will spur them along to writing better code to start with.

Source: News.com.