Blue lights, blue teeth, blue rinse.
AS THE INQ HEADED OUT of the Bluelight district, we spotted an item in the Bluetooth Daily News - the official organ for the Bluetooth Congress 2002.
According to the magazine, Microsoft is completing its volte face over Bluetooth. Who knows, it might even build Bluetooth drivers into Windows.
Anyway, Taiyo Yuden is claiming to have won a contract from Microsoft to supply Bluetooth modules to fit inside Bill's keyboards and mice. Apparently Microsoft's HID (Human Interface Device) software will be loaded onto Taiyo Yuden's Bluetooth modules.
The INQ understands that HID is one of the few Bluetooth 'standard profiles' that hasn't yet been generally agreed by the Bluetooth Special Interest Group (SIG). So, incompatibilities here we come.
Obviously, Taiyo wouldn't be drawn on actual numbers but did say 'high volumes' were involved. Of course, the INQ would have brought you this news earlier but a Bluetooth access point hasn't been installed in the show's Press Office. Apparently the organisers felt the technology was "too unstable" to do so. Oh ye of little faith! µ
News source: The Inquirer
AS THE INQ HEADED OUT of the Bluelight district, we spotted an item in the Bluetooth Daily News - the official organ for the Bluetooth Congress 2002.
According to the magazine, Microsoft is completing its volte face over Bluetooth. Who knows, it might even build Bluetooth drivers into Windows.
Anyway, Taiyo Yuden is claiming to have won a contract from Microsoft to supply Bluetooth modules to fit inside Bill's keyboards and mice. Apparently Microsoft's HID (Human Interface Device) software will be loaded onto Taiyo Yuden's Bluetooth modules.
The INQ understands that HID is one of the few Bluetooth 'standard profiles' that hasn't yet been generally agreed by the Bluetooth Special Interest Group (SIG). So, incompatibilities here we come.
Obviously, Taiyo wouldn't be drawn on actual numbers but did say 'high volumes' were involved. Of course, the INQ would have brought you this news earlier but a Bluetooth access point hasn't been installed in the show's Press Office. Apparently the organisers felt the technology was "too unstable" to do so. Oh ye of little faith! µ
News source: The InquirerMS02-028
This patch eliminates a newly discovered vulnerability affecting Internet Information Services. Although Microsoft typically delivers cumulative patches for IIS, in this case Microsoft have delivered a patch that eliminates only this new vulnerability, while completing a cumulative patch. When the cumulative patch is customer-ready, Microsoft will update this bulletin with information on its availability. The FAQ provides information on the circumstances surrounding the vulnerability, and why Microsoft believe releasing a singleton patch immediately is in customers' best interests. To ensure that servers are fully protected against past as well as current vulnerabilities, Microsoft strongly recommend installing the previous cumulative patch (discussed in Microsoft Security Bulletin MS02-018) before installing this patch.
Title: Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise (Q321599)
Date: 12 June 2002
Software: Internet Information Server
Impact: Run Code of Attacker's Choice
Max Risk: Moderate
View: Microsoft Security Bulletin ID MS02-028 for more information and patch availabilityMS02-029
A flaw exists in the RAS phonebook implementation: a phonebook value is not properly checked, and is susceptible to a buffer overrun. The overrun could be exploited for either of two purposes: causing a system failure, or running code on the system with LocalSystem privileges. If an attacker were able to log onto an affected server and modify a phonebook entry using specially malformed data, then made a connection using the modified phonebook entry, the specially malformed data could be run as code by the system.
Title: Unchecked Buffer in Remote Access Service Phonebook Could Lead to Code Execution (Q318138)
Date: 12 June 2002
Software: Windows NT 4.0, NT 4.0 Terminal Server Edition, 2000, XP, Routing and Remote Access Server (RRAS)
Impact: Local Privilege Escalation
Max Risk: Critical
View: Microsoft Security Bulletin ID MS02-029 for more information and patch availabilityMS02-030
Date: 12 June 2002
Software: Microsoft SQLXML
Impact: Two vulnerabilities, the most serious of which could run code of attacker's choice.
Max Risk: Moderate
View: Microsoft Security Bulletin ID MS02-030 for more information and patch availabilityMS02-022 (Revised: 11 June 2002, version 2.0)
On May 8 2002, Microsoft released the original version of this bulletin. On June 11, 2002 the bulletin was updated to announce that while the fixes issued on May 8 2002 resolved the vulnerability, they did not protect in all cases against the reintroduction of the vulnerable control. As a result, a new set of fixes is being released to ensure that systems are fully protected against the reintroduction of the vulnerable control. A new MSN Chat control, updated patch, updated version of MSN Messenger and an updated version of Exchange Instant Messenger have been made available. Customers who have applied any of the fixes released on May 8, 2002 are encouraged to consider applying the updated fixes.
Title: Unchecked Buffer in MSN Chat Control Can Lead to Code Execution (Q321661)
Released: 08 May 2002
Software: MSN Chat, MSN Messenger, Exchange Instant Messenger
Impact: Run Code of Attacker's Choice
Max Risk: Critical
Bulletin: MS02-022
View: Microsoft Security Bulletin ID MS02-022 for more information and patch availability
Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!
Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.