WHEN: 2008-91-16

1. Click on title of this posting
2. go to our advisory as posted on the web - PROTECT YOURSELF

   WHAT: This vulnerability Click on link - choose option called "Login as guest" - click on this link again and you get defintion - fast and easy is elevated for users whose PC runs on Windows and they have installed:

   • Excel versions other than Excel 2003SP3 and Excel 2007
   on their machine.

   WHO SHOULD WORRY?: If you are a Microsoft Windows user and have Excel installed you should be careful, especially if your machine is running on the following operating system:

3. this vulnerability does not affect systems running :
   • Excel 2003SP3 and Excel 2007, unfortunately,
   • most other versions are.
   
   please get the insights for minimizing this risk now through CASEScontact.org
   

   RISK ASSESSMENT: CyTRAP Labs rates the risk as elevated (2 on a five point scale) because it is a targeted attack.

   SOLUTION - Click on this story's headline: Visit CASEScontact.org - get the get the tips and tricks and that help protect your PC against this vulnerability.

   {originally published 2008-01-16
   Take your pick, get the newsletters, warnings, free tools, alerts that help you the most from CASEScontact.org's subscription center
   Keep yourself on top of the latest zero-day vulnerabilities and zero-day exploits by bookmarking CASEScontact.org's zero-day vulnerability list

   If this post was helpful to you, please consider stumbling it or subscribing to feeds from CyTRAP Labs. Cheers.

Update 1: 2008-01-16

Apple issued a PATCH for this vulnerability on 2008-01-15

1. Click on title of this posting
2. go to Patch Info section in our advisory as posted on the web - GET THE PATCH

   When: 2008-01-11

   WHAT: This vulnerability is critical for users whose PC runs on Windows or Apple and they have installed Apple QuickTime on their machine.

   WHO SHOULD WORRY?: If you are a:

3. Microsoft Windows users,
4. Mac users that have:
   • Apple QuickTime installed - error in how the Real Time Streaming Protocol (RTSP) handles message headers. RTSP is a protocol that is used by streaming media systems. The vulnerability
   • may allow the attacker to execute arbitrary code on the victim's machine
   
   please get the insights for minimizing this risk now through CASEScontact.org
   

   RISK ASSESSMENT: CyTRAP Labs rates the risk as moderately critical (3 on a five point scale) because if one is careful, it is difficult for the attacker to exploit this vulnerability.

   SOLUTION - Click on this story's headline: Visit CASEScontact.org - get the get the tips and tricks and that help protect your PC against this vulnerability.

   {originally published 2008-01-11

   ============>

   If this post was helpful, please consider stumbling it or subscribing to our feeds. Cheers.

   ==========>

WHEN: 2007-12-10

1. Click on title of this posting
2. go to our advisory as posted on the web - PROTECT YOURSELF

   WHAT: This vulnerability Click on link - choose option called "Login as guest" - click on this link again and you get defintion - fast and easy is elevated for users whose PC runs on Windows and they have installed:

   • Microsoft Media Player 2 - Version 6.4 or
   • Media Player Classic (MPC) 6.4.9 MP4 2007 for Windows 2000 and Windows XP

   Version 6.4 was the final version of Media Player 2, by now known as Windows Media Player. Version 6.4 was included with various version of Windows (95/98/NT/2000/XP), but was dropped in Windows Vista.

   Media Player Classic 6.4. runs under GPL license and allows playing of DVDs on their machine.

   WHO SHOULD WORRY?: If you are a Microsoft Windows users, especially if your machine is running on the following operating system:

3. Windows 95, 98, NT 2000 or XP., this vulnerability matters to you ONLY, if you run:
   • Microsoft Media Player 2 - Version 6.4 or
   • Media Player Classic (MPC) 6.4.9 MP4 2007 for Windows 2000 and Windows XP
   
   please get the insights for minimizing this risk now through CASEScontact.org
   

   RISK ASSESSMENT: CyTRAP Labs rates the risk as elevated (2 on a five point scale) because we are not aware of this published exploit being actively used on the Internet right now.

   SOLUTION - Click on this story's headline: Visit CASEScontact.org - get the get the tips and tricks and that help protect your PC against this vulnerability.

   {originally published 2007-12-10
   Take your pick, get the newsletters, warnings, free tools, alerts that help you the most from CASEScontact.org's subscription center
   Keep yourself on top of the latest zero-day vulnerabilities and zero-day exploits by bookmarking CASEScontact.org's zero-day vulnerability list

   ============>

   60% OF THIS ITEM'S READERS SUBSCRIBED ALREADY

   CyTRAP Labs invites you to get info about our zero-day exploits, tools, benchmarking and regulatory intell or just become one of our readers by subscribing right now

   ====>