This section lists the latest news and blogs found via the daylife API (and for older items, the technorati API), which mention or otherwise discuss this vulnerability.
from: NewsFactor Network
Another month, another Patch Tuesday. For April, Microsoft has issued eight security bulletins that address 10 vulnerabilities, ... IT departments give three immediate attention: MS08-021, MS08-022 and MS08-023. These three
from: voip equipment
Sourcefire Vulnerability Research Team Protects Users from Latest Microsoft Windows Vulnerabilities Open source innovator and SNORT® creator, ... Enhancement Update (SEU) released today. Microsoft Security Bulletin MS08-021 – Critical
from: IT, computer and network security Portal
Critical Vulnerability Targets Windows Metafiles SkyRecon Systems has announced that StormShield blocks against a known vulnerability CVE-2008-1083 recently identified by the research engineers
from: Application - Network - Wireless Security
Microsoft Issues eight security patches for April 2008 MS08-018: Vulnerability in Microsoft Project Could Allow Remote Code Execution MS08-019: Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution MS08-020: Vulnerability in DNS Client Could Allow Spoofing MS08-021: Vulnerabilities in GDI Could Allow Remote Code Execution
from: BeOCD
So I managed to create a simple proof of concept for the vulnerability, thanks to the 010 Editor (which is just plain hawt) and a WMF template. Anyhow, here is what it looks like: We obviously need cjBitmapBitSize to return a value large enough to trigger the arithmetic overflow, which means we need something around 0xFFFFFF00
from: BeOCD
Those of you that are observant will notice that I removed the previous two posts regarding this vulnerability in favor of completely rewriting the ... . The one I chose to detail is CVE-2008-1083 which is an integer overflow when handling WMF files
from: Techachino
Hackers continue trying to exploit a patched vulnerability in Microsoft’s Graphic Display Interface (GDI), researchers said this week ... on Friday, three days after the issue was patched by bulletin MS08-021. “One method the bad guys use ... the updates detailed in MS08-021, said Bill Sisk, security response communications manager for Microsoft
from: Messaging & Collaboration
Virus hunters are tracking a booby-trapped file named TOP.JPG in circulation and exploiting one of the vulnerabilities described in Microsoft's MS08-001 bulletin. ... Check Out The #1 Technology Research Tool! SEARCH The Most Massive Development White Paper Library In The Industry.
from: Tech Freaks - Technology n yr Hands - Powered by Students
The third and final service pack for Windows XP is not even out, and Microsoft is already hammering away at it plugging security soles ... . When it released Microsoft Security Bulletin MS08-021 labeled with a maximum severity rating of Critical
from: InfoWorld - Information Technology News, Computer Networking & Security
The appearance and disappearance of a Windows XP installation snafu indicates that Microsoft patched a critical vulnerability in XP's still-unfinished Service Pack 3 (SP3) weeks before it fixed any other version of Windows. The glitch, which sent some PCs into an endless round of reboots,
from: Sûnnet Beskerming - Make the Most of What You've Got
As alluded to in the pre-advisory for Microsoft's April Security Patch Release, ... cycles. The biggest indication of this can be seen with the GDI library patch, MS08-021, which ... are vulnerable to the two critical vulnerabilities patched by MS08-021, including one WMF image handling
from: Harry Waldron - My IT Forums Blog
Based on ISC and Symantec's warnings below, it appears that MS08-021 is being actively exploited in the wild It is advised that folks apply the ... Updates - MS08-021 Exploit in-the-wild http://isc.sans.org/diary.html?storyid=4274 www.symantec.com ... are advised to apply the MS08-021 patches immediately. These attack attempts highlight the severity
from: Blogs - MSMVPS.COM
Based on ISC and Symantec's warnings below, it appears that MS08-021 is being actively exploited in the wild It is advised that folks apply the ... Updates - MS08-021 Exploit in-the-wild http://isc.sans.org/diary.html?storyid=4274 www.symantec.com ... are advised to apply the MS08-021 patches immediately. These attack attempts highlight the severity
from: Information Engineer - Technology News
Microsoft issued a critical patch for two vulnerabilities in the core graphics subsystem of Windows, ... in the industry as “Patch Tuesday.” MS08-021 fixes two vulnerabilities in Windows’ graphics device interface (GDI
from: Learning Remix Winter 2008
Following the release of Windows Vista Service Pack 1 and Windows Server 2008, Microsoft is serving up a number of fixes for both operating systems, ... McAfee, is MS08-021, which fixes two vulnerabilities in Windows that would allow an attacker
from: BAK2u.com - Anti-theft softwares for PDA phones, Blackberry, Mobile Phones, iPods, PSPs, USB Flash Drive, Laptops
Microsoft issued a critical patch for two vulnerabilities in the core graphics subsystem of Windows, ... as "Patch Tuesday." MS08-021 fixes two vulnerabilities in Windows' graphics device interface (GDI
from: The Microsoft Security Response Center (MSRC)
April 2008 Monthly Bulletin Release I'm Simon, Release Manager in the MSRC ... ) MS08-020 Vulnerability in DNS Client Could Allow Spoofing (945553) MS08-021
from: Fix Windows Vista Errors
In the first month following the release of Windows Vista Service Pack 1 and Windows Server 2008, ... , the critical vulnerability involving GDI — MS08-021 — will affect Windows 2000 SP4, Windows XP SP2, Windows XP
from: InfoWorld - Information Technology News, Computer Networking & Security
Microsoft issued a critical patch for two vulnerabilities in the core graphics subsystem of Windows, ... as "Patch Tuesday." MS08-021 fixes two vulnerabilities in Windows' GDI (graphics device interface
from: Tech-Blog by Jithesh
Patches for Critical Bugs in Windows ActiveX System Released Posted by Jithesh at April 8, 2008 [ Microsoft] ... in the industry as “Patch Tuesday.” * MS08-018, fixes for vulnerabilities in Microsoft Office * MS08-021 fixes ... . In Sarwate’s opinion, MS08-021, MS08-022 and MS08-023 are especially important for users because
from: WinBeta.org Beta News and Reviews
Microsoft Corp. today posted eight security updates -- more than half marked "critical" -- that patch 10 bugs in Windows, ... vulnerabilities disclosed today were the two plugged by MS08-021, a critical update for every currently
from: Security to the Core | Arbor Networks Security
Kraken, the spam botnet on everyone’s minds, has soaked up a good bit of out Monday evening and today ... . Go get patched! The ones that have me worried about widespread exploitation: MS08-021 –
