Microsoft issues Vista patches out of Monthly Patch Cycle!

KB957321,KB959108,KB959130


Microsoft issues Out of cycle patch for Vista.   These patches are as Followed:
[ad#ad2-right-1]

Kb957321

An update rollup is available for the Microsoft Windows Imaging Component (WIC) in Windows Vista or in Windows Server 2008. This update rollup resolves the problems that are documented in the following articles in the Microsoft Knowledge Base:

954708 An update to add support for the serialization of complex Extensible Metadata Platform (XMP) data types in the Windows Imaging Component

945060 There may be inconsistencies in the Extensible Metadata Platform (XMP) and Exchangeable Image File (EXIF) values for an image file in Windows Vista and in Windows XP

The Windows Portable Device (WPD) API collects and transfers Software Quality Metrics (SQM) data to Microsoft servers. The SQM data is collected only on an opt-in basis through the Microsoft Customer Experience Improvement Program. An update is available that disables the collection and transfer of SQL data to Microsoft servers.

This update affects Windows Vista-based computers, Windows Vista Service Pack 1 (SP1)-based computers, and Windows Server 2008-based computers that are in the Microsoft Windows Media Player Customer Experience Improvement Program.

On a Windows Vista-based computer or on a Windows Server 2008-based computer, you install a third-party Web browser. You set the third-party Web browser as the default Web browser. Then, you run the Connect to the Internet Wizard. However, if you select the Browse the Internet now option, Windows Internet Explorer starts instead of the third-party Web browser that you set as the default Web browser.


[ad#ad2-right]This seems to be not so important.  All of these are not really security related but it does surprise me that Microsoft wanted to release these out of Cycle.   If your planning on using your Vista laptop during the holidays you might want to update your vista machine before you go.  I don’t think there is going to be any major issues with this but if there is, you can always remove these updates later.

Some program Vulnebilities Detected!!

Just got done looking at some of my security sites and according to SecuriTeam there are are several programs that have vulnerabilities. here are the Ones that I’ve found:

Google chrome is vulnerable to URI Obfuscation vulnerability.
An attacker can easily perform malicious redirection by manipulating the browser functionality. The link can not be traversed properly in status address bar.This could facilitate the impersonation of legitimate web sites in order to steal sensitive information from unsuspecting users. The URI specified with @ character with or without NULL character causes the vulnerability.

[ad#ad2-right]iPhone Configuration Web Utility for Windows Directory Traversal
iPhone Configuration Web Utility lets “you easily create, sign and distribute configuration profiles using a web browser”. A vulnerability in iPhone Configuration Web Utility allows remote attackers to access files that reside outside the bounding root directory of the program’s files folder.

Streamripper Multiple Buffer Overflows
Streamripper “records Shoutcast and Live365 MP3 streams to a hard disk, creating separate files for each track. Runs under Unix and Windows.” Secunia Research has discovered some vulnerabilities in Streamripper, which can be exploited by malicious people to compromise a user’s system.

Amaya URL Bar Stack Overflow Vulnerability
A vulnerability in Amaya browser allows remote attackers to cause it to overflow an internal buffer which in turn can be leveraged to execute arbitrary code.

These are the ones that I found and wanted to let you know about these so you can make your system even more secure.   if I find any others I’ll let you know!!!

Fixing the Adobe Problem!!

If your have been having problems with Flash Players stoping after 2 seconds of playing.  I have a few ideas to try to get rid of the problem.  It used to happen all the time with Vista in the early days.  Here’s what I did to occasionally get the flash player to work:

[ad]

  • Cleaning out the Prefetch Directory! — Having seen this from time to time. If you have programs startup that might need to be refreshed this will refresh them so that they run like new. You occasionally can get programs that will load in a odd way and this will fix that also.

  • You want to be more anonymous? — Cleaning out your cache on your browser can sometimes fix the problem. It’s like anything else it can sometimes be corrupted.

  • Some Important programs to prevent yourself from having viruses and Malware!! — Having seen this with my own two eyes, if you have a viruses or malware on your system that too can cause problems with playback of flash media.  So just double check making sure you don’t have any viruses.

  • Adobe Flash tips and Tricks! — Also having found this out.  Adobe actually keeps the flash video on there servers cached or sometimes somewhat buffered to help with playback.  Clean the cache out at the source sometimes fixes the problem also.

[ad]

Now having used some of these tricks to get flash players to run has on occasion worked for some strange reason or another.  Although I don’t know if this will fix the 2 second playing video problem I get the feeling it should since in theory it has everything to do with cache and corruptions of the files. If you can come up with some other tips or tricks to fix the problem let me know!!

Run a Better Google Talk on Your Desktop with Prism

prism-gtalk.pngEver since Google updated the web-based Google Talk gadget, I’ve firmly felt that the web-based Google Talk is head and shoulders above the desktop client (if you don’t need file transfer or voice calls, that is). Last week we told you about Prism, Mozilla’s update to the stripped-down browser and web application environment WebRunner. Put the two together (using this URL when you create the Prism application) and you’ve got what feels very much like a desktop version of the Google Talk gadget. Prism is still very early in development, currently Windows-only, and—honestly—requires way more memory than I’d like (around 30MB for my Google Talk), but with more time and development, the single-use approach to web applications as desktop apps could catch on. Thanks Jon!

Joost Coming To The Browser?

Joost CEO Mike Volpi just suggested on stage at Web 2.0 that Joost is working on a browser-based version of its peer-to-peer Internet TV service. “At some point, when we can deliver the quality that Joost is known for, we will deliver an in-browser experience,” he told the audience here. I got up and asked him if he faces any legacy issues, since Joost is based on a peer-to-peer client that must currently be downloaded. His answer was that it is possible to separate the file-sharing from the viewing experience and that in fact Joost is working on just such a browser-based solution. It’s not clear whether people would still need to download a separate piece of software to do the P2P file-streaming or whether that could just be a browser plug-in. But with in-browser Flash video about to get a whole lot better over the next few months, Joost will have to respond with it’s own browser-based expereince.

Does that mean it will be integrated into Internet Explorer 8 when it comes out?