Program

Previous Certifiedbug: The Microsoft MVP Program, how it works

Toby Richards, General Manager for Community Support Services and the MVP Program at Microsoft, is interviewed by Ken Levy discussing the current state of the Microsoft MVP (Most Valuable Professionals) community and the roadmap for the MVP program and MVP summit.

Toby took over this role in early 2008, and he is responsible for programs that identify, award and enable community influencers around the world, creating deeper relationships and richer feedback opportunities that improve Microsoft products and services. Also discussed in the interview is online support strategies and how MVPs help users and developers who are not MVPs. For more information, go to the MVP Program Web site.

Interview

{ 0 comments }

From Patrick Kolla, developer of Spybot Search and Destroy.
http://www.safer-networking.org/en/home/index.html

Time for an update! To keep up with the latest threats, and solve some issues and feature requests users had, we’re proud to announce Spybot-S&D version 1.6. Some of the features include:

Improved Scan Speed

Reported a few weeks ago as one of the big issues users face, Spybot-S&D 1.6 integrates parts of the future 2.0 file scanning engine to speed up the on-demand scan.
Up-to-date browser support

Both immunization and the on-demand scan are able to access a dozen different browsers, which now include the latest revisions of the most popular ones, Firefox and Opera.

Easier On-Access Use

Until now, our on-access part was able to block bad entries, but at the same time, confused many novice users by asking for confirmation on changes of other monitored system entries as well. While this is a great feature for all experienced users who want full control over their systems, we decided that we need to make this easier for the average user, and integrated automated decisions based on the system entry database built through our RunAlyzer, containing more than quarter of a million decisions.

OpenSBI

Safer Networking also announces OpenSBI, our attempt at opening up the fight against malware to anyone who wants to participate. OpenSBI means we’ve published documentation and tools that anyone can use to create their own malware detection patterns for use with Spybot-S&D, and share those with other Spybot-S&D users.

• Diversity - everyone can create detection templates for any software, without depending on a central authority to acknowledge its threat.

• Neutrality - we cannot be bought to remove detections from our database, but if you do not believe us, you can simply publish your own rules against some malware.

• Continuity - OpenSBI ensures that you’ll get updates as long as someone is interested in updating the database (which does not mean we intend to do less work in adding new detections).

• Flexibility - as a system administrator using the network edition, you can make sure that working time is not wasted by employees playing the latest Moorhuhn clone if you add your own detection for it. Keep in mind that some relaxation is said to even improve work results.

And quite a lot more bug fixes and new features, which can be found on bug tracker.

{ 2 comments }

From Patrick Kolla, developer of Spybot Search and Destroy.

Scanning a bit faster… first beta of 1.6 available!
Eight years ago, Spybot-S&D originally started off as a very fast anti-spyware scanner, detecting some 30 small things, and you could watch it finish in under a minute.

Today, a full scan applies more than 600,000 tests, and you can watch that number grow weekly on our update list. Handling such numbers obviously is quite a bit different, and while we’ve tried to adjust to that with each version, a full scan might still take half an hour currently. Since this was one big major complaint issue, we decided to integrate parts of the new file scanner designed for a future 2.0 release and optimized for modern malware fighting, and got you a major push in speed now - that same scan will now take five to six minutes only, being about five times as fast as 1.5 was!

If you want to enjoy that speed and know a bit about beta testing, head over to our beta forums and get the first beta! If you prefer to wait for a thorougly tested public release, we hope to get around to that quite soon.

Oh, and one more thing… there’s more up for 1.6: a second big issue we hear often will be addressed, so stay tuned!

More…

{ 0 comments }

Ed Bott broke the news that Sysinternals Live is now open to the public.

The new service enables you to execute the most recent version of any Sysinternals tool directly from an Internet-connected PC, without having to hunt for the executable file and manually download it first.

What a treat for Sysinternals utilities fans.

Microsoft bought the company and its library in 2006. Sysinternals co-founder Mark Russinovich is now a Technical Fellow in the Platform and Services Division at Microsoft.

Sysinternals Forum
Sysinternals home page

{ 0 comments }

Securia reports highly critical vulnerabilities in Trillian the popular instant messaging client.

Description:
Some vulnerabilities have been reported in Trillian, which can be exploited by malicious people to compromise a user’s system.

1) A boundary error within the header parsing code for the MSN protocol can be exploited to cause a stack-based buffer overflow via a specially crafted X-MMS-IM-FORMAT header with an overly long attribute.
Successful exploitation allows execution of arbitrary code.

2) An error within the XML parsing in talk.dll can be exploited to cause a memory corruption via certain malformed attributes within an ‘IMG’ tag.

Successful exploitation allows execution of arbitrary code.

3) A boundary error when parsing messages (e.g. via the AIM network) with overly long attribute values within the FONT tag can be exploited to cause a stack-based buffer overflow.

Successful exploitation allows execution of arbitrary code but requires that the user is tricked into opening a malicious image file.

Solution:
Update to version 3.1.10.0.
http://www.ceruleanstudios.com/downloads/

Your Trillian client may not inform you of the updates. I used the drop down menu, “Check for updates” and was informed no updates were available.

After downloading and starting the installation of the latest version, I saw the Weather Channel and ASK toolbar were offered as pre-checked options to install with Trillian.

Inside those tiny EULA boxes was a full page of disclosures for each program, if you copy/paste the text into an editor you can read the EULA rather than squinting at a scroll box. Know what you are agreeing to if leaving the box checked to install.

Weather Channel:
“1. PURPOSE. The software you are installing (the “Software”) is provided by The Weather Channel Interactive, Inc. (”TWCi”) and provides you with a quick view of the current weather in a city you select, and provides other weather-related information and data on your desktop (the “Services”). This Agreement contains terms and conditions that apply to both the subscription version of the Software (”Desktop Max Software”) and Services (”Desktop Max Services”) and the advertisement-supported version of the Software (”Desktop Software”) and Services (”Desktop Services”).
14. DESKTOP MAX SERVICES. You agree that if you license Desktop Max Services, the following additional terms will apply:
A. You agree to pay TWCi the monthly or annual service charge for your use Desktop Max Services using a valid credit or debit card, plus any applicable taxes, in accordance with the billing terms and prices in effect at the time the fee or charge becomes payable. You authorize TWCi to automatically bill the charge card you provide each month or year (as applicable), or withdraw funds via electronic transfer from your checking account (depending on what type of charge card you are using), until you cancel Desktop Max Services. Payments are billed in advance at the beginning of the applicable month or year. You agree to provide TWCi with a valid credit or debit card and accurate, complete and updated information required by the subscription registration form. Failure to comply may result in the immediate termination of Desktop Max Services.
B. You agree to notify TWCi about any billing problems or discrepancies within 90 days after they first appear on your account statement. If you do not bring them to TWCi’s attention within 90 days, you agree that you waive your right to dispute such problems or discrepancies.”

ASK Toolbar:
“END USER LICENSE AGREEMENT/PRIVACY POLICY/TERMS OF SERVICES

IMPORTANT — PLEASE READ CAREFULLY - SHORT PLAIN ENGLISH SUMMARY OF END USER LICENSE

This is a legal contract between you and IAC Search & Media, Inc. You must agree to this contract and abide by its terms in order to download and use the toolbar. You must be 18 years of age in order to agree to this contract and download this product. IF YOU ARE NOT YET 18, PLEASE ASK YOUR PARENT OR GUARDIAN TO DOWNLOAD THE TOOLBAR FOR YOU.

UPON INSTALLATION OF THE TOOLBAR, THE FOLLOWING FEATURES WILL BE ADDED TO YOUR BROWSER:

SEARCH BOX is a toolbar to your Internet browser. The browser toolbar is customizable and will provide you access to Ask.com search results..

SEARCH ASSISTANT: This provides relevant links and results when your search request or browser address request is misspelled or incorrectly formatted.

In addition, an Easy Installer will be downloaded to install this software. It does not install any other software and is automatically deleted the first time you turn off your computer after installation of the above-described products.

THIS PRODUCT AND ALL THE FEATURES LISTED ABOVE ARE FREE.

NO REGISTRATION OR PERSONAL INFORMATION IS REQUIRED.”

Please read each EULA completely and if installing do so as an informed user.

{ 0 comments }

I have no doubt there will be more to follow… Stay tuned.

{ 23 comments }

Secunia Research 20/05/2008

Foxit Reader “util.printf()” Buffer Overflow.

1) Affected Software
* Foxit Reader 2.3 build 2825
NOTE: Other versions may also be affected.

2) Severity
Rating: Highly critical
Impact: From remote
Where: System access

3) Vendor’s Description of Software
“Foxit Reader is a free PDF document viewer and printer, with
incredible small size (only 2.55 M download size), breezing-fast
launch speed and rich feature set. Foxit Reader supports Windows Me/
2000/XP/2003/Vista. Its core function is compatible with PDF Standard
1.7.”.
Product Link:
http://www.foxitsoftware.com/pdf/rd_intro.php

4) Description of Vulnerability
Secunia Research has discovered a vulnerability in Foxit Reader, which
can be exploited by malicious people to compromise a user’s system.
The vulnerability is caused due to a boundary error when parsing
format strings containing a floating point specifier in the
“util.printf()” JavaScript function. This can be exploited to cause a
stack-based buffer overflow via a specially crafted PDF file.
Successful exploitation allows execution of arbitrary code.

5) Solution
The vulnerability is fixed in upcoming version 2.3 build 2912.

6) Time Table
23/04/2008 - Vendor notified.
08/05/2008 - Vendor notified again.
08/05/2008 - Vendor response.
20/05/2008 - Public disclosure.

{ 0 comments }

For all you social butterflies.

Using the Windows Live Messenger for Facebook application you can:

• Expose your Messenger status to your Facebook friends
• Receive instant messages from friends that visit your Facebook profile page
• View your friends’ Messenger status on Facebook
• Send instant messages to your friends on Facebook that are using Messenger
• Easily add your Facebook friends to your Messenger contacts

Developer Blog

{ 0 comments }

Channel8 announced a new program, which will give millions of qualified students the opportunity to download Microsoft professional-level developer and design tools at no charge.

It is our hope that the DreamSpark program will spark your creativity and help you harness software’s transformative magic to turn your good ideas into reality, by equipping you with the tools you need to succeed and excel during your academic experience and skills you will need after graduation.

The program starts off in 11 countries/regions: the United States, the United Kingdom, Canada, China, Germany, France, Finland, Spain, Sweden, Switzerland and Belgium. More countries will be added throughout the year.

Get started here.

Bill Gates talks about Free Software, Students, and Technology

{ 2 comments }