Beijing on Jan. 12 news this morning Microsoft released the security update for the first time in 2011, a total release two patches to fix Windows Vista and XP systems in the three holes. It is puzzling, however, after public exposure of the IE browser and Windows graphics rendering engine vulnerability has not been fixed.
It is understood that this security update Microsoft released two security patches only to repair three holes. The first bulletin MS11-001 is Bulletin MS11-002 as
compared to 17 last December released 40 patches fix vulnerabilities in the And even more surprise is that Microsoft did not fix Windows graphics rendering engine and IE browser security vulnerabilities public exposure, although the latter has already appeared for the attacks.
Microsoft Security Bulletin (2,490,606) openly acknowledged, Windows graphics rendering engine, there is a flaw that hackers could exploit this vulnerability to execute code remotely and could take complete control of the computer. Microsoft said it has not found the current use of the behavior of this vulnerability to attack, saying the solution as soon as possible.
However, in light of the IE 0DAY Christmas Eve vulnerabilities, but more dangerous. It is understood, November 29, 2010, a domestic security organizations issued the information about the vulnerability that IE8 CSS parsing denial of service vulnerability exists that may cause the user changes the computer cards, eventually leading to IE to crash. Microsoft Security Bulletin (2,488,013) also pointed out that the vulnerability exists in multiple versions of IE.
the same time, Jinshan Li Tiejun network security experts said that the IE 0day vulnerabilities there are some risks. Particularly popular in the New Year when the online shopping market, if the design of a hacker to use the IE 0day vulnerabilities page hijacking Trojan implanted transactions, will greatly increase the risk of online shopping.
According to CNNIC data show that the first half of 2010, with 59.2% of Internet users in the use of the Internet encountered a virus or Trojan attacks, 30.9% of Internet users account or password is stolen before. Security experts said the constraints of network security has become a major factor in the development of e-commerce market one.
the same time, Kingsoft Internet Security Center also recently published The report shows that in 2010 more than 1 million users dogged at least one security threat for online shopping, bringing direct economic losses will exceed 150 million online shoppers per capita economic losses from the rise in 2009 80 to 150 yuan, online shopping security without delay.
the face of the deteriorating security environment of the Internet, Kingsoft Internet Security experts suggest that the majority of Internet users: improving security awareness and timely repair system vulnerabilities; but because of the patch has a time protection of computer security software.
No comments:
Post a Comment