Home > Windows Security Tips > What's new in Windows security > What's hot in Windows security: Updating Windows Update; new IE scare
Windows Security Tips:
EMAIL THIS
 TIPS & NEWSLETTERS TOPICS 

WHAT'S NEW IN WINDOWS SECURITY

What's hot in Windows security: Updating Windows Update; new IE scare


Serdar Yegulalp, Contributor
11.05.2007
Rating: --- (out of 5)


Advice for securing Windows
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


In October, Microsoft warned of a dangerous command execution vulnerability for users running Internet Explorer 7 on systems running Windows XP or Windows Server 2003. The flaw began as an issue in FireFox, but if a user is running FireFox on a system that also has IE7 installed as well as Windows XP or Windows Server 2003, a specially formed URL in IE7 could launch an attack in FireFox. Listen to security expert Serdar Yegulalp's take on this issue by playing our podcast below.

It was also revealed this month that Microsoft was downloading updates to their Windows Update service, even if users had specifically configured their systems not to allow such downloads. Can users take legal action in this type of situation? Is this similar to when companies in the past put data collecting rootkits on their products? Find the answers to this questions in our podcast.

Press play to begin the podcast.

0:33: Serdar's take on the recent URI vulnerability in Internet Explorer 7.

3:21: The risks of Microsoft automatically downloading updates to the Windows Update service.

5:39: The implications of future "stealth" downloads.

To save this "What's hot in Microsoft security podcast," play it with this URL and then save it to a disk.

About the author: Serdar Yegulalp is editor of the Windows Power Users Newsletter. Check it out for the latest advice and musings on the world of Windows network administrators -- and please share your thoughts as well!

Rate this Tip
To rate tips, you must be a member of SearchWindowsSecurity.com.
Register now to start rating these tips. Log in if you are already a member.




Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


RELATED CONTENT
What's new in Windows security
How to use a GPO to improve Windows folder security
Critical patches for IE and Office released
Do old certificates pose a Windows security threat?
Group Policy Object security in Windows
Deny access to Windows system properties with GPOs
What's hot in Windows security: Ins and outs of Windows Server 2008
Rights management in Windows: Security expert roundup
What's hot in Windows security? New Microsoft Office Security Guide
Windows server security management: Security expert roundup
Solving Windows networking security issues: Security expert roundup

Hardening
Web security features of Internet Explorer 8
How can I use Process Explorer as a Web security tool?
New Windows security tool protects users from keyloggers: XecureCK
Cross-site scripting 101: XSS attacks plague Web browsers
What's hot in Windows security? New Microsoft Office Security Guide
Data protection on the Web: Windows SSL security and other myths
Web security tactics that harden Windows networks
What do you know about Microsoft Internet security?
How can I run third-party antivirus software?
Internet Explorer security settings and controls

SUS/WUS
How do I properly configure WSUS?
Microsoft delivers 10 patches and tool update
Patch Tuesday will see the release of 13 security updates
Third-party patch management tools: Reasons to say yes, reasons to say no
WSUS 3.0 public beta is ready
Deploying WSUS for Exchange patch management
New R2 security features: Federation, not firewalls
Error connecting to the Windows Server Update Services database
Tricks for optimizing WSUS performance
SUS, WSUS, SMS and beyond

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.

HomeNewsTopicsITKnowledge ExchangeTipsAsk the ExpertsWebcastsWhite PapersIT DownloadsBlogs
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2004 - 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts