ANI has been patched, but bugs are known and workarounds are available

If you patched your system with the ANI patch from Microsoft, it may break certain drivers such as the Networking & Audio ones from Realtek. If you have this particular problem checkout this article: http://support.microsoft.com/kb/935448 (I guess if your network adapter is down, chances are … “ANI has been patched, but bugs are known and workarounds are available”

Read More

Microsoft releases patches for several GDI vulnerabilities including the new ANI vulnerability

This update is outside Microsoft’s standard security update cycle thus clearly sends a message of the seriousness of these issues. Customer using Windows should do Windows Update and/or read this article http://www.microsoft.com/technet/security/Bulletin/MS07-017.mspx where you can find more information about the patches available. This KB article … “Microsoft releases patches for several GDI vulnerabilities including the new ANI vulnerability”

Read More

eEye Releases Temporary Patch for Windows .ANI Exploit

Microsoft hasn’t released the patch, yet. So, if you are concerned about this exploitation, there’s a temporary patch available from eEYE which can fix the issue until Microsoft releases an official patch. Please test these files before using in production environment. Thie eEye patch should … “eEye Releases Temporary Patch for Windows .ANI Exploit”

Read More

If you use Windows 2000 DNS (for Active Directory ..etc) use only Secure Updates

Windows 2000 and later gives you the option to configure your DNS as Active Directory Integrated Zone (ADIZ). This mode is required for name and service automatic update and its super crucial to a successful Active Directory (and some of other MS products like Exchange) … “If you use Windows 2000 DNS (for Active Directory ..etc) use only Secure Updates”

Read More