Connected to Vista Bookmarks

December 2007 MSRC Security Bulletin Release

Corrine — Thu, 06 Dec 2007 23:43:00 GMT

On 11 December 2007 Microsoft is planning to release seven new security bulletins. Below is a summary in order of severity. For more information on affected software, see the Affected Software section of the Advance Notification page, linked below. Microsoft Baseline Security Analyzer can detect whether your computer system requires these updates.

In addition to an updated Malicious Software Removal Tool, Microsoft is also planning to release six non-security,high priority updates on Microsoft Update and Windows Server Update Services and one non-security high-priority update for Windows on Windows Update.

Maximum Severity Rating:Critical

Microsoft Security Bulletin 2

Impact of Vulnerability:Remote Code Execution
Restart Requirement: The update will not require a restart, except in certain situations.
Affected Software :Windows, DirectX, DirectShow.

Microsoft Security Bulletin 6

Impact of Vulnerability:Remote Code Execution
Restart Requirements:The update will not require a restart, except in certain situations.
Affected Software:Windows, Windows Media Format Runtime.

Microsoft Security Bulletin 7

Impact of Vulnerability:Remote Code Execution
Restart Requirement:The update will require a restart.
Affected Software:Windows, Internet Explorer.

Maximum Severity Rating: Important

Microsoft Security Bulletin 1

Impact of Vulnerability:Remote Code Execution
Restart Requirement: The update will require a restart.
Affected Software:Windows.

Microsoft Security Bulletin 3

Impact of Vulnerability:Remote Code Execution
Restart Requirement: The update will require a restart.
Affected Software: Windows.

Microsoft Security Bulletin 4

Impact of Vulnerability:Elevation of Privilege
Restart Requirement: The update will require a restart.
Affected Software:Windows.

Microsoft Security Bulletin 5

Impact of Vulnerability:Local Elevation of Privilege
Restart Requirement: The update will require a restart.
Affected Software:Windows.

References:

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Detect Changes to Windows Automatic Updates with WinPatrol 2007

Corrine — Mon, 29 Oct 2007 23:09:00 GMT

On September 13, 2007, Scott Dunn of Windows Secrets reported

"Windows Update (WU) started altering files on users' systems without displaying any dialog box to request permission. The only files that have been reportedly altered to date are nine small executables on XP and nine on Vista that are used by WU itself. Microsoft is patching these files silently, even if auto-updates have been disabled on a particular PC."

There has been a series of articles on numerous sites about mysterious changes to user Automatic Update settings, many of which are shown below as references. The most likely explanation to the changes in the AU settings is explained by Scott Dunn as attributable to Windows OneCare.

Well, instead of beating the drums, Bill Pytlovany took action. As of the WinPatrol update issued today, WinPatrol 12.2.2007 will alert you if changes are made to your Automatic Update settings. Bill explained the purpose of the update:

"Like most features, the intention is to protect users from changes made by malicious programs. As a side however, it will also detect if Microsoft or one of their applications decide to change these settings without your knowledge.
Also included in this new version will be detection of a few other unique settings like the prefix inserted by your browser (http://). If you don’t include http:// when you type in an address, Windows automatically adds it. If I changed this setting to http://www.billp.com/ no matter what you typed into your browser you’d always come to me. Depending on what comes after it, I could display a fake look-alike phishing page and grab your eBay, or Paypal account number."

As a devoted WinPatrol fan, I installed the update, launched the Security Center and selected "Turn Automatic Updating on or off". As you can see from the screen copy below, WinPatrol notified me that a change was detected in Windows Auto Updates (AU), providing the opportunity to prevent the change or restore the previous settings.

For a change intentionally being made to AU, tell Scotty "No" and WinPatrol will leave your changes untouched. However, if some unknown force attempts to change the settings without your permission, merely click "Yes" to give Scotty permission to restore the original settings.

Way to go Bill!

There is so much more that WinPatrol can do to monitor your computer. The WinPatrol update today is frosting on the cake.

Read about WinPatrol Features: http://www.winpatrol.com/features.html
Download WinPatrol: http://www.winpatrol.com/download.html
See Bits from Bill: Detect Changes to Windows Automatic Updates
Press Release (PDF)

References:

Scott Dunn, Windows Secrets (13Sep07): Microsoft updates Windows without users' consent
AeroXperience Blog (10Oct07): Automatic Updates feature forces machines across the globe to reboot
Nate Clinton, TechNet (12Oct07): Response to recent web posts [updated]
MaryJo Foley, ZDNet (12Oct07): Windows Update automatically changing user settings (again)
Scott Dunn, Windows Secrets (25Oct07): PC rebooting? The cause may be MS OneCare
Gregg Keizer, InfoWorld (19Oct07): Microsoft: We didn't change Automatic Updates
Gregg Keizer, InfoWorld (25Oct07): Microsoft's OneCare silently changes Automatic Updates
Windows Live OneCare Team (25Oct07): Understanding OneCare's integration with Microsoft Update

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Windows Home Server House

Corrine — Mon, 29 Oct 2007 23:08:00 GMT

Even if you are not considering Windows Home Server at this time, you will enjoy touring the Windows Home Server House with video stories of real people using Windows Home Server.

Click the image to visit the Windows Home Server House!

Windows Home Server is compatible with the following:

Windows XP Professional with Service Pack 2 (SP2)
Windows XP Media Center Edition 2005
Windows XP Tablet Edition with SP2
Windows Vista Ultimate
Windows Vista Business
Windows Vista Enterprise

Information:

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Setting Up a Home Network with Windows Vista

Corrine — Mon, 29 Oct 2007 23:05:00 GMT

The day has finally arrived -- the kids have their own computer for school work, your spouse has a new laptop and you have a remodeled home office. As a result, you are ready to set up a home network. The problem is that you have no idea where to begin, let alone what is needed and how to make sure it is secure.

Microsoft has prepared a series of instructions that will go a long way in assisting you in getting the job done correctly, available from Windows Vista Help:

Should you need some extra assistance, Vista 4 Beginners has some additional tutorials that may come in handy:

While you're at Vista 4 Beginners, you may also want to learn How to setup a Bluetooth connection.

There is so much to learn, I suggest taking it one step at a time. Read all the instructions first, assemble the parts, read the instructions again and start slowly. If in doubt, read the instructions again. Good luck!

After you have completed setting up you network, follow the instructions from the Vista Knowledgebase on how to create a Vista Network Map

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Microsoft Security Incident Report Available

Corrine — Mon, 29 Oct 2007 23:02:00 GMT

Vinny Gullotto reported in the Microsoft Anti-Malware Team Blog that the January-June 2007 Security Incident Report is now available from the Microsoft Malware Protection Center. Before you read Vinny's report, let me familiarize you with some of the acronyms:

FCS: Forefront Client Security
MMPC: Microsoft Malware Protection Center
MSRC: Microsoft Security Response Center
MSRT: Microsoft Malicious Software Removal Tool
SIR: Security Incident Report
TwC: Trustworthy Computing

Changes have been made to the SIR, including new sections and a new look and feel. One statistic I found interesting is that 65% less "potentially unwanted software" and 60% less malware has been found on Windows Vista machines than Windows XP SP2.

References:

Anti-Malware Team Blog: Microsoft Security Intelligence Report (January – June 2007) is Now Available

Microsoft Malware Protection Center: Microsoft Security Intelligence Report

Security Intelligence Report: SIR Volume 3 (January through June 2007) and Key Findings Summary

Webcasts:

Microsoft Security Intelligence Report: Overview of Latest Trends in Vulnerabilities and Malicious Software (Level 100)

TechNet Webcast: Microsoft Security Intelligence Report: Software Vulnerability Disclosure Trends (Level 200)

TechNet Webcast: Microsoft Security Intelligence Report: Malicious Software and Unwanted Software Trends (Level 200)

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Update on Microsoft Security Advisory 943521

Corrine — Mon, 29 Oct 2007 22:59:00 GMT

Bill Sisk reported in The Microsoft Security Response Center (MSRC) blog that Security Advisory 943521 has been updated after they became aware of publicly disclosed exploit code being used in limited attacks on customers.

"Third party applications are currently being used as the vector for attack and customers who have applied the security updates available from these vendors are currently protected. However, because the vulnerability mentioned in this advisory is in the Microsoft Windows ShellExecute function, these third party updates do not resolve the vulnerability – they just close an attack vector."

The reported attacks are limited, however, the normal warning applies regarding the not opening unsolicited attachments in emails, regardless of the sender. The additional caution of not visiting untrusted websites applies equally.

MSRC Blog Post: October 25th Update To Security Advisory 943521
Original SG post: Microsoft Security Advisory 943521 Released

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

October 2007 Microsoft Security Bulletin Release

Corrine — Tue, 09 Oct 2007 17:27:00 GMT

Microsoft has released the following six security bulletins, having withdrawn one bulletin from release:

MS07-055 addresses a vulnerability in Kodak Image Viewer, and is rated as a Critical bulletin.

MS07-056 addresses a vulnerability Outlook Express and Windows Mail, and is rated as a Critical bulletin for earlier versions of Windows and as an Important bulletin for Windows Vista.

MS07-057 is a Cumulative Security Update for Internet Explorer, and is rated as a Critical bulletin.

MS07-058 addresses a vulnerability in RPC, and is rated as an Important bulletin.

MS07-059 addresses a vulnerability in Windows SharePoint Services 3.0 and Office SharePoint Server 2007, and is rated as an Important bulletin.

MS07-060 addresses a vulnerability in Microsoft Word, and is rated as a Critical bulletin for earlier versions and as an Important bulletin for more recent versions.

In addition to the bulletins mentioned above, Microsoft also re-released bulletin MS05-004. This re-release updates detection includes Server 2003 Service Pack 2 and Vista as affected platforms. There were no changes to the update binaries, so if you have already successfully installed this update, you do not need to reinstall it. Customers who have applied MS07-040 are unaffected by this detection update, as their systems are up-to-date from a .NET Framework security stance. Please refer to the bulletin revision history for more information.

References:

MSRC Blog -- October 2007 Monthly Release

TechNet -- Microsoft Security Bulletin Summary for October 2007

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

IE7 Re-Released for Windows XP

Corrine — Thu, 04 Oct 2007 23:34:00 GMT

After reading Sandi's blog post yesterday -- posted while she is on Holiday -- I kept refreshing the IE Team Blog watching for the announcement of the re-release of IE7 for Windows XP. The announcement was finally made this morning {bold added in the quote}:

"Because Microsoft takes its commitment to help protect the entire Windows ecosystem seriously, we’re updating the IE7 installation experience to make it available as broadly as possible to all Windows users. With today’s “Installation and Availability Update,” Internet Explorer 7 installation will no longer require Windows Genuine Advantage validation and will be available to all Windows XP users. If you are not already running IE7, you can get it now from the Internet Explorer home page on Microsoft.com, get a customized version from a third-party site, or, if you haven’t already received it via Automatic Updates, this version will be delivered to you as we described previously. If you are already running IE7, you will not be offered IE7 again by Automatic Updates.
Additionally, we’ve made minor changes to IE7 for Windows XP based on customer feedback:
The menu bar is now visible by default.
The Internet Explorer 7 online tour has updated how-to’s. Also, the “first-run” experience includes a new overview.
We’ve included a new MSI installer that simplifies deployment for IT administrators in enterprises. Learn more about it here.

Thanks,
Steve Reynolds
Program Manager"

Actually, I think this bears repeating: "Internet Explorer 7 installation will no longer require Windows Genuine Advantage validation and will be available to all Windows XP users." With this change, even if you do not have WGA installed, there is no excuse now for Windows XP users not upgrade to IE7. Do it today to take advantage not only of the additional security features, but the other major improvements to Internet Explorer.

Before installing IE7, please see the instructions for Preparing for and Installing IE7.

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

XP Repair and Windows Update Issues

Corrine — Fri, 28 Sep 2007 23:49:00 GMT

Further to Aubrey's post, Nate Clinton (Program Manager, Windows Update) explained the problem as

"the latest version of Windows Update includes wups2.dll that was not originally present in Windows XP. Therefore, after the repair install of the OS, wups2.dll remains on the system but its registry entries are missing. This mismatch causes updates to fail installation."

If you are affected, contact Product Support Services. In the U.S. and Canada, help with security update issues or viruses can be obtained at no charge using the PC Safety line (1-866-PC-SAFETY). For locations outside the U.S. and Canada, go to http://support.microsoft.com/security for the number in your area.

See the blog post by the Windows Update Team and Microsoft Knowledge Base Articles:

KB 943144: Updates are not installed successfully from Windows Update, from Microsoft Update, or by using Automatic Updates after you repair a Windows XP installation

KB 916259: The Windows Update Web site and the Microsoft Update Web site do not scan for updates when you repair a failed installation of Windows XP Service Pack 2 or of Windows XP Service Pack 1

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Windows Vista Validation Issue Fixed

Corrine — Sun, 26 Aug 2007 14:48:00 GMT

There was a brief outage Friday evening into Saturday (24-25 August 2007) of the Microsoft Windows Genuine Advantage (WGA) server where Windows Vista validations were failing on genuine systems. The issue has been resolved and anyone affected needs to re-validate, followed by a shutdown/restart to ensure the genuine features have been restored.

Windows Genuine Advantage blog post:

"We've been receiving reports on our forum and through customer service starting last night that Windows Vista validations have been failing on genuine systems. It looks now as though the issue has been resolved and validations are being processed successfully.

Customers who received an incorrect validation response can fix their system by revalidating on our site (http://www.microsoft.com/genuine). We encourage anyone who received a validation failure since Friday evening to do this now. After successfully revalidating any affected system should be rebooted to ensure the genuine-only features are restored."

Corrine

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Take Ownership of Your Files and Folders

Corrine — Wed, 08 Aug 2007 01:41:00 GMT

The cartoon below from Userfriendly.org has been making the rounds.

Click image to see full size

As happens when migrating data or upgrading the operating system, the required permissions for accessing the files might be different or ownership lost. Vista4Beginners created an illustrated tutorial explaining how to take ownership of your files and folders if this happens to you.

See Change the permissions and take ownership of your files and folders, added to Connected to Vista Bookmarks in Features and Tutorials.

Submit a Bookmark

Corrine

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Major Counterfeit Software Bust

Corrine — Wed, 25 Jul 2007 02:03:00 GMT

As reported by the FBI:

"For Immediate Release
DATE: July 23, 2007

INTERNATIONAL INVESTIGATION CONDUCTED JOINTLY BY FBI AND LAW ENFORCEMENT AUTHORITIES IN PEOPLE’S REPUBLIC OF CHINA RESULTS IN MULTIPLE ARRESTS IN CHINA AND SEIZURES OF COUNTERFEIT MICROSOFT AND SYMANTEC SOFTWARE

A joint investigation conducted by the FBI and authorities with the People’s Republic of China’s (PRC) Ministry of Public Security (MPS) has resulted in multiple arrests and the seizure of more than a half billion dollars worth of counterfeit software, announced J. Stephen Tidwell, Assistant Director in Charge of the FBI in Los Angeles, and Steven Hendershot, the FBI’s Legal Attache in Beijing, China.

The operation, codenamed “Summer Solstice,” began in 2005 and since then, law enforcement in both countries have worked closely by sharing information to jointly investigate multinational conspiracies by groups who manufacture and distribute counterfeit software products around the world. This unprecedented cooperative effort led to the arrest of twenty five individuals, the search of multiple businesses and residential locations, asset seizures by the Chinese government worth over $7 million, and the seizure of over 290,000 counterfeit software CDs and COAs (certificates of authenticity) in China. The counterfeit software has an estimated retail value of $500 million. In addition, Agents with the FBI’s Los Angeles Field Office executed 24 searches and asset seizure warrants, yielding approximately $2 million in counterfeit software products, in addition to assets seized by the U.S. government worth over $700,000.

Operation Summer Solstice encompasses multiple investigations currently being conducted by the FBI in Los Angeles and the MPS, Economic Crime Investigation Department (ECID), in which criminal organizations responsible for manufacturing and distributing counterfeit software have been identified in both Shanghai and Shenzhen; as were distributors located in the United States.

As much as I protested WGA (Windows Genuine Advantage) being added to Windows XP, I have no objections to it being included as a part of Windows Vista. My reasoning? WGA was not part of XP when the license was purchased and the initial software caused many headaches. However, with a brand new operating system in Windows Vista, it is known that WGA is included from the start.

Complete report at Federal Bureau of Investigation.
Via Todd Bishop's Microsoft Blog

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Microsoft Announces Enhanced Privacy Protections for Customers

Corrine — Wed, 25 Jul 2007 01:59:00 GMT

Microsoft Announced an enhanced set of privacy principles for Live Search and online advertising data collection, use and protection. Microsoft's intention is to

"implement new privacy features and practices as it continues to develop its online services and offer new controls that help users manage the types of communications they receive from Microsoft."

I selected some of the key features from the announcement that caught my attention. For example, later this year, Microsoft plans to offer advertising services to third-party Web sites. Under the enhanced privacy, customers will have the ability to opt out of the behavioral ad targeting by Microsoft’s network-advertising service on those Web sites.

There will be specific policies around search query data and Microsoft will be explicit with customers about how long the company retains search terms in an identifiable way as well as informing people when and how to “anonymize” such data.

Following Google and others, Microsoft will make all Live Search query data anonymous after 18 months, unless the company receives user consent for a longer time period. According to the announcement, the policy will be both retroactive and worldwide. It will include removal of cookies and IP Address connected with search terms.

Another important feature change is the storage of store Live Search service search terms separately from account information. With so many "Live" features requiring a Hotmail/Live email address, it is reassuring the personal data associated with that account will not be tied to other services.

See the Press Announcement for complete information.

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Recent Bookmark Updates

Corrine — Sun, 15 Jul 2007 17:18:00 GMT

A number of new additions have been added to Connected to Vista Bookmarks. Windows Connected readers are encouraged to submit a bookmark as you come across helpful documents related to Windows Vista: Submit a Bookmark

Keep in mind that the Windows Connected Discussion Forums are a great place to share information or obtain help from the Windows Connected staff and members.

Bookmark Index

Updated Pages:

Corrine

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Windows Vista Drivers

Corrine — Sun, 15 Jul 2007 17:06:00 GMT

A major complaint by Windows Vista users, and an issue that may be keeping many people from upgrading to Windows Vista, is the slow response by vendors to release or update drivers for Windows Vista.

To that end, Ed Bott is doing his part to help Windows Vista users keep track of download locations for Windows Vista-compatible drivers for common hardware types in a single location. The rules Ed will be following for inclusion in the list are as follows:

"1. Only primary download locations (official sites run by hardware maker) are allowed. I don’t trust or recommend third-party sites that allow direct downloads of drivers.

2. Whenever possible, I’m linking to the information page or the search page rather than the driver file itself. Linking to the file runs the risk that you’ll grab the wrong driver, miss an update or a readme file, or bypass other important information that might be on the info page."

Have no doubts, the link to The Vista Master Driver List has been added to Vista Software, Drivers, and Hardware in Connected to Vista Bookmarks.

References:

Vista Software, Drivers, and Hardware (Connected to Vista Bookmarks)

Vista drivers (Ed Bott's Window Expertise)

(The) Vista Master Driver List (Ed Bott)

Submit a Bookmark

Corrine

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Connected to Vista Bookmarks

December 2007 MSRC Security Bulletin Release

Detect Changes to Windows Automatic Updates with WinPatrol 2007

Remember - "A day without laughter is a day wasted."May the wind sing to you and the sun rise in your heart...

Windows Home Server House

Setting Up a Home Network with Windows Vista

Microsoft Security Incident Report Available

Update on Microsoft Security Advisory 943521

October 2007 Microsoft Security Bulletin Release

IE7 Re-Released for Windows XP

XP Repair and Windows Update Issues

Windows Vista Validation Issue Fixed

Take Ownership of Your Files and Folders

Major Counterfeit Software Bust

Microsoft Announces Enhanced Privacy Protections for Customers

Recent Bookmark Updates

Windows Vista Drivers

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...