BugBlog Home
BJK Research Home
BJK Research Home

Did the BugBlog help you? Donate via PayPal to say thanks.

Even better, subscribe to the BugBlog Plus for even more coverage of bugs and their fixes.

Amazon Honor System Click Here to Pay Learn More

Jump to the BugBlog archives

Dec 06
Nov 06
Oct 06
Sept 06
Aug 06
July 06
June 06
May 06
Apr 06
Mar 06
Feb 06
Jan 06
Dec 05
Nov 05
Oct 05
Sept 05
Aug 05
July 05
Jun 05
May 05
Apr 05
Mar 05
Feb 05
Jan 05
Dec 04
Nov 04
Oct 04
Sep 04
Aug 04
Jul 04
June 04
May 04
Apr 04
Mar 04
Feb 04
Jan 04
Dec 03
Nov 03
Oct 03
Sept 03
Aug 03
July 03
June 03
May 03
April 03
Mar 03
Feb 03
Jan 03
Dec 02
Nov 02


View vintage BugNet coverage here

Cleveland-area blogs*:

Backup BugBlog

Economic Development Futures

Brewed Fresh Daily


Working with Words


Sardonic Views

Filtering Craig

Hotel Bruce


Up Yours

Kevin Holtsberry

Steve Goldberg

Red Wheelbarrow

Anita Campbell

Swerb's Blurbs

Rachel's Law

*there are more blogs in Cleveland, these are just from people I've met or know. Some of the above are actually farther away, but are bloggers I've met here.





Here is the daily bug, incompatibility or other computer problem from the BugBlog

The BugBlog is free- but if you want to help support its existence, subscribe to the BugBlog Plus. A three month subscription is only $5. XML The BugBlog uses monthly archives. All the current July bugs are here. Use the links on the left or below to jump back to past months, or use the search form.

7/31/2006 Windows Driver Bug Can Cause A Blue Screen

There is a bug in the server driver (srv.sys) in many different versions of Microsoft Windows. The bug, discovered by ISS X-Force, may let attackers trigger a blue screen of death. Read their details at http://xforce.iss.net/xforce/alerts/id/231. Microsoft acknowledges the problem at http://blogs.technet.com/msrc/archive/2006/07/28/443837.aspx, and has some temporary defenses.

Today's BugBlog Plus has five more bugs and fixes for Adobe, Apple, IBM, and Microsoft.

7/30/2006 Mac OS X Trashes a Parent (Folder)

If you create a new folder in Mac OS X 10.2 through 10.3.9, and then you delete before you rename it, the parent folder may also get moved into the trash. Apple says this happens if the Finder window is in column view, and then you use Command-delete, or Move to Trash. The first thing to do is go get the parent folder out of the trash. If you don't know how, see http://docs.info.apple.com/article.html?artnum=107313. What you don't want to do is empty the trash.

Today's BugBlog Plus has five more bugs and fixes for Adobe, Apache, Apple, Google, and Mozilla.

7/28/2006 Symantec Anti-Spam Slips Up

Symantec says that all versions of their Brightmail AntiSpam don't do a good job of sanitizing file names. Because of this, an attacker may be able to impersonate the BrightMail Control Center, and then possibly steal confidential information. As a fix, Symantec wants you to upgrade to another one of their products, Symantec Mail Security (SMS) for SMTP 5.0, which is a free upgrade if you have a service contract. For others, they have SBAS 6.0.4, which fixes the bug. Get information on both from http://securityresponse.symantec.com/avcenter/security/Content/2006.07.27.html.

7/27/2006 Mozilla Fixes JavaScript Bug

A bug snuck into Mozilla Firefox and Thunderbird 1.5's JavaScript implementation that may lead to a crash, or possibly memory corruption. The problem happens when the software handles simultaneously happening XPCOM events. A malicious website may be able to exploit this to crash the browser, or run hostile code. This only affects Thunderbird if JavaScript is turned on for mail. This is not the default setting, and Mozilla advises against it. This has been fixed in Firefox and Thunderbird, and in SeaMonkey 1.0.3. Mozilla credits Secunia Research for finding this bug.

Today's BugBlog Plus has five more bugs and fixes for Microsoft and Mozilla.

7/26/2006 XP Media Center Edition Gets an Upgrade

Microsoft has released the July 2006 Update Rollup for Microsoft Windows XP Media Center Edition 2005. (If it takes 12 words to make up a product version name, maybe it's time to come up with a different naming scheme.) This rollup replaces a number of earlier hotfixes for the Media Center Edition, including those listed in Knowledge Base article 914548, 908250, 912067, and 913437. However, it does not replace Update Rollup 2. You need to have that installed first. (Get it at http://support.microsoft.com/kb/900325/.) Only after that's in place should you get the latest at http://support.microsoft.com/?kbid=919803.

Today's BugBlog Plus has ten more bugs and fixes for Adobe, Microsoft, Mozilla, MySpace, and Red Hat

7/25/2006 Misbehaving MacBook Cursors

Sometimes it may appear that the cursor on your MacBook or MacBook Pro has a mind of its own, and jumps all over the place. Actually, it may be picking up accidental touches to your trackpad while you are typing. Apple says you can instruct the trackpad to ignore these accidental inputs. See the details at http://docs.info.apple.com/article.html?artnum=304052.

Today's BugBlog Plus has ten more bugs and fixes for Adobe, Apple, Microsoft, MySpace and Sun Microsystems.

7/24/2006 A Look At Zero-Day Microsoft Attacks

A disturbing new trend is the release of new attacks against buggy Microsoft Office documents, one day after Microsoft makes its Patch Tuesday announcements. It appears to be more a case of corporate espionage, rather than malicious mischief. Read the whole thing at http://reviews.cnet.com/4520-3513_7-6556007.html.

7/20/2006 Microsoft Patch is Re-Patched

Microsoft's MS06-034 patch for Internet Information Server (IIS), released on July 11, had an installation problem. If the patch was installed on Windows Server 2003 Service Pack 1 while IIS was being used, then the ASP.DLL file wasn't upgraded. Although it appeared that the patch was installed correctly, it would continually show up in either Auto Update or Windows Update as being needed. Microsoft has corrected the security bulletin, so that the patch is now installed corectly. See http://support.microsoft.com/kb/917537 for the details on this.

7/21/2006 Copying A LISTNUM Crashes Word

In Microsoft Word 2003, if you copy and paste a LISTNUM field between documents, the pasting may not take place. Another LISTNUM in the destination document may also disappear. In some cases, Word will crash, and the error signature will look like this Winword.exe 11.0.6568.0 Winword.exe 11.0.6568.0 00006218 Microsoft has fixed this, and the fix will be in a future service pack. If you use LISTNUM fields a lot, you may want to get the hotfix right away. See http://support.microsoft.com/kb/921648 for the details on how to do that.

Today's BugBlog Plus has five more bugs and fixes for Adobe, Microsoft, Red Hat and Sun Microsystems.

7/19/2006 There's A Disturbance in The Web

Lots of websites seem unusually slow this morning. If you go to the Internet Traffic Report at http://internettrafficreport.com/, you'll see there was a distinct drop in traffic, and jump in packet loss in the past 24 hours, though things appear to have recovered. The Internet Storm Center sees something going on at http://isc.sans.org/diary.php?storyid=1497. Can't seem to connect to Slashdot, either. Maybe it's just everyone trying to get to Sysinternals and download all the utilities before they vanish into the Microsoft collective.

Today's BugBlog Plus has ten more bugs and fixes for Adobe, Apple, IBM, Linux, Microsoft, Oracle and Red Hat.

7/18/2006 DLA Software Incompatible with Some Adobe Video Programs

Some Adobe software, including After Effects 7.0, Encore DVD 2.0, Premiere Pro 2.0, or Adobe Production Studio, may have compatibility problems with Drive Letter Access software. (This may include many CD and DVD writing programs.) When you install the Adobe programs on a computer with DLA programs, you may get a crash with this error message:
Microsoft Visual C++ Runtime Error. This application has requested the Runtime to terminate it in an unusual way. Please contact the application support team for more information.
Adobe has a number of solutions, including turning off the DLA service, detailed at http://www.adobe.com/support/techdocs/329582.html.

Today's BugBlog Plus has five more bugs and fixes for Kerio, Microsoft, and Sun Microsystems.

7/17/2006 Flash Bug Allows System Takeover

Remote attackers may be able to construct an Adobe Macromedia Flash .SWF file, that when opened by the Adobe Macromedia Flash Player via a website, runs hostile code that could take control of your computer. This bug was discovered by the Fortinet Security Research Team in the Macromedia Flash Player v8.0.24.0. Adobe has an update at http://www.adobe.com/software/flashplayer/ that fixes this. You can read the details about this bug at http://www.fortinet.com/FortiGuardCenter/advisory/FG-2006-20.html.

Today's BugBlog Plus has five more bugs and fixes for Adobe, Apple, Microsoft and Novell.

7/15/2006 Adobe Update Manager Problems

After you use the Adobe Update Manager, you may see an error message that says
Need to reboot the computer.
After you reboot, and every time you reboot after that, you may see the same error message. Adobe has a number of steps to fix this, including deleting the AUM transaction file, doing a Registry edit, or deleting the AdobeUpdater.rbt file. See http://www.adobe.com/support/techdocs/332745.html for the details.

Today's BugBlog Plus has five more bugs and fixes for Apple, McAfee and Microsoft.

7/14/2006 Excel Remains Buggy

Although Microsoft issued a patch on July 11 that fixed eight bugs in Excel, at least two critical bugs remain unpatched. eWeek points out that code has been circulating on the Internet that proves these two bugs can be exploited. At least one bug exploits a Windows bug through Excel hyperlinks. For now, the only workaround is to avoid using untrusted worksheets. Read the whole story at http://www.eweek.com/article2/0,1895,1988145,00.asp.

7/13/2006 Cisco Forgot to Lock the Door

Cisco says they shipped the Cisco Router Web Setup (CRWS) application with many of their routers with the Cisco IOS (Internetworking Operating System) set at an insecure level. The affected routers include the Cisco 806, 826, 827, 827H, 827-4v, 828, 831, 836, 837, SOHO 71, SOHO 76, SOHO 77, SOHO 77H, SOHO 78, SOHO 91, SOHO 96, and SOHO 97. Cisco has changed the default configuration to tighten security, and have also posted diagnostic and workaround information at http://www.cisco.com/en/US/products/products_security_advisory09186a00806e0bc3.shtml.

7/12/2006 Acrobat Bug Could Trigger Attack

A bug in Adobe Acrobat 6.0 through 6.0.4 may allow malicious content in a document to trigger a buffer overflow when that document is converted by Adobe Acrobat Distiller into a PDF file. That buffer overflow could then be used to run hostile content on a computer. Adobe has fixed this in Acrobat 6.0.5, which is available through automatic update. They have labeled this a Critical bug.

Today's BugBlog Plus has ten more bugs and fixes for Adobe, Apple, ATI, Google, IBM and Microsoft.

7/11/2006 Graphics File Fixes for Microsoft Office

There are two bugs in graphics file filters for Microsoft Office. One affects PNG files, and the other is in the GIF file filter. If a Microsoft Office user opens a document that contains a maliciously designed PNG or GIF file, an attacker may be able to take complete control of your system. Office 2000 users may be vulnerable to a web-based attack. Users of Office XP and 2003 would actually have to open the corrupt file. Microsoft has patches for Office 2000 through 2003, as well as Microsoft Project, and Works, at http://www.microsoft.com/technet/security/Bulletin/MS06-039.mspx. Microsoft credits Fortinet Inc. for finding the PNG bug, and NSFocus Security Team for finding the GIF bug.

Today's BugBlog Plus has five more critical bugs and fixes for Microsoft.

7/10/2006 Red Hat Patches Kernel Bug

Red Hat has an updated kernel for Red Hat Enterprise Linux 4. This fixes a bug that they discovered in the kernel that may allow local users to gain privileges that may extend up to running as root. Note that this is a bug in the Linux kernel itself (covered in the 7/8/06 BugBlog Plus), so other Linux distributions will be issuing patches, too. Get the Red Hat patch at https://rhn.redhat.com/errata/RHSA-2006-0574.html.

7/9/2006 How to Uninstall WGA

I think I missed this while on vacation -- the Microsoft Knowledge Base has an article on how to disable or uninstall the pilot version of Microsoft Windows Genuine Advantage. They say that the easiest way is just to install the general release version. (Fit of giggling hits The Bugblog.) If you don't want to do that, they have uninstall steps at http://support.microsoft.com/kb/921914. Note that Microsoft states "Regardless of genuine status, users are not denied access to critical updates. However, users who have not validated their computers as genuine are not able to install other updates such as those for Microsoft Internet Explorer 7.0 and Microsoft Windows Defender."

Today's BugBlog Plus has three more bugs and fixes for Apple, Google and Microsoft.

7/8/2006 Yahoo! Wins Bug of the Month

Slightly delayed by vacation and by the Fourth- the Yahoo! Mail bug wins the Bug of the Month

Today's BugBlog Plus has seven more bugs and fixes for Apple, Linux and Microsoft.

7/7/2006 Seven More MS Security Bulletins Coming

It's getting close to "That Time of The Month", when Microsoft unleashes its latest batch of security bulletins. For 7/11/2006, there will be four security bulletins for Windows, at least one of which will be labelled Critical. There will be three security bulletins for Microsoft Office. At least one of those will be Critical. There will also be a new version of the Windows Malicious Software Removal Tool released. (Although it removes malicious software, I don't think it does anything about Windows Genuine Advantage.)

7/6/2006 Camera and Scanner Problems for Photoshop

Some digital cameras and scanners may create TIFF files that cause errors in Adobe Photoshop CS2. These include Olympus DP70 and Phase One P25 cameras, and Minolta Dimage 5400, SilverFastAI 6, Minolta Scan Multi Pro, or Minolta 5400 scanners. Adobe says that when you try to open them, some Exif metatdata may cause the error message Could not complete your request because of a program error. Fix this by upgrading to Photoshop CS2 9.0.1.

7/5/2006 Worm Pretends to be Windows Genuine Advantage

There is at least one worm spreading via AOL Instant Messenger (AIM) that is masquerading as the Microsoft Windows Genuine Advantage (WGA) anti-piracy tool. It's really the Cuebot-K worm, but uses the display name 'Windows Genuine Advantage Validation Notification." When it is active, it disables the Windows firewall and then opens a backdoor on computer to let in other malware. Read more at http://www.vnunet.com/2159630.

Today's BugBlog Plus has ten more bugs and fixes for Adobe, Apple, Google, Microsoft and Red Hat.

7/4/2006 Microsoft Says There Is No Kill Switch

There are various rumors floating around that the new Windows Genuine Advantage program includes a "kill switch" that will allow Microsoft to turn off what it thinks are pirated copies of Windows XP. This has been denied by Microsoft's PR firm, Waggener Edstrom, in Computerworld at http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9001559. Of course, with Microsoft's sterling reputation for security, there's no way that a kill switch could be exploited by hackers.

Today's BugBlog Plus has five more bugs and fixes for Apple, iD, Microsoft and Red Hat.

7/3/2006 iTunes Bug Allows Windows and Mac Attacks

A bug in the way that Apple iTunes 6.0.4 and earlier parses AAC files may allow an attacker to construct an .M4A or .M4P file that triggers a integer overflow error. This will corrupt memory, and may allow the attacker to run their own code on the computer. This has been fixed in iTunes 6.0.5 for both Windows and Mac OS X computers. Apple credits ATmaCA, TippingPoint, and the Zero Day Initiative for finding this bug. Get the update at http://www.apple.com/support/downloads/.

Today's BugBlog Plus has five more bugs and fixes for Apple, Novell, OpenOffice and Vivendi.

7/2/2006 Mac Update Helps Motorola Phone Sync

If you are having problems in synchronizing between your Mac OS X computer and a Motorola cell phone using iSync and Bluetooth, get the Mac OS X 10.4.7 update. Apple says this update gives much better support for the Motorola phones.

Today's BugBlog Plus has ten more bugs and fixes for Adobe, Apple, Microsoft, OpenOffice and Red Hat.

7/1 The BugBlog Is Back

Back from vacation. There are big bugs in the Tropics, but they aren't the kind to write about. New bug postings will be on the July page.

6/23/2006 BugBlog Is On Vacation

I'll be cut off from the Internet until 7/1. There won't be any new bugs till then.

6/23 Older Opera Has a JPEG Bug

There is a buffer overflow in the Opera 8.54 web browser that may allow an attacker to run their code on your system via a JPEG image. This has been reported by Secunia, who credits Vigilant Minds for finding the bug. As a fix, upgrade to the newly released Opera 9.0.

Web www.bjkresearch.com

Home | Contact | Writing | Online | News | Tips | CABE |

© 2006 BJK Research LLC