Tag Archives: Microsoft

Hackers exploit latest Microsoft zero-day bug

Posted on by
1

Microsoft has warned users that hackers are exploiting the unpatched bug in ASP.Net to hijack encrypted Web sessions.

In a Monday update to a previously-published security advisor, Microsoft said that it was seeing “limited, active attacks at this time.”

Symantec, which has a massive global network of sensors and honey trap-like systems to detect and capture exploits, said it had not seen any attacks, however.

The vulnerability exists in all versions of ASP.Net, the company’s Web application framework used to craft millions of sites and applications, and lets attackers access Web applications with full administrator rights; decrypt session cookies or other encrypted data on a remote server; and access and snatch files from a site or Web application that relies on ASP.Net.

Microsoft acknowledged the flaw last Friday, the same day that a pair of researchers demonstrated how the “oracle padding” bug can be exploited by force-feeding cipher text to an ASP.Net application and noting the returned error messages it returns.

The company again promised to patch the vulnerability, but like last week, did not set a delivery date for the fix.

“We will be releasing a patch on Windows Update, so all machines will get it,” said Scott Guthrie, the Microsoft executive who runs the ASP.Net development team.

Share

HP, Microsoft to come out with tablet computer this year

Posted on by
Reply

ASPEN : Hewlett-Packard will team up with Microsoft to come out with a tablet computer for the enterprise business market this year, a senior HP executive said on Thursday.

HP executive vice president Todd Bradley said the US computer giant was developing tablet, or slate, computers using the WebOS operating system of newly acquired Palm but had not abandoned the US software giant.

“I think you’ll see us with a family of slate products, clearly Microsoft for the enterprise, and a WebOS product,” he said at the Fortune Brainstorm Tech conference here.

“Our focus is working with still our largest software partner, Microsoft, to create a tablet, a slate, for the enterprise business,” Bradley said, adding that the device was expected to hit the market this fall.

“Slates are going to be an enormous category,” he said of touch screen tablet computers like Apple’s popular iPad. “This is just in its infancy.”

Bradley added that HP, the world’s top computer maker, is “still Microsoft’s largest customer.”

“We have a deep partnership with them, from distribution to development that we’re very, very deeply committed to,” he said.

Share

Microsoft set to co-fund Windows Phone 7 software development

Posted on by
Reply

Company is willing provide developers with support, including possible co-funding, a tactic the company says isn’t new

Microsoft, which has witnessed competitors like Apple and Google grab the spotlight in the mobile phone space, acknowledged Thursday that it is willing to co-fund software development projects for its Windows Phone 7 platform.

This tactic, however, is not new to Microsoft, according to a statement from the company. But a company representative said Microsoft itself had not previously co-funded development projects in such a manner.

Share