No. 1 Story

ACCC clears Optus to scrap HFC network and use NBN instead

The ACCC has cleared, provisionally, the proposed deal between Optus and NBN Co under which Optus is to be paid around $800m to shut down its HFC network and transfer customers onto the NBN. read more

Related Articles

Microsoft, warns, zeroday, DirectShow, vulnerability
The internal security agency MI5 has warned UK businesspeople that agents of the Chinese...
In what is one of the most potentially serious zero-day Microsoft Windows bugs this...
The Month of Apple Bugs may be over, but Kevin Finisterre hasn't given up...
Microsoft has joined forces with Celestix Networks and Network Engines to deliver appliances running...
Early WiMAX networks will have a number of security vulnerabilities, according to ABI Research,...

Microsoft warns of zero-day DirectShow vulnerability

Business IT - Security

The first - and recommended - involves the deletion of a registry key to disable QuickTime parsing in DirectShow. Microsoft has provided an automated process to make the job easy - you'll find it here.

That same page also explains how to implement the change manually.

"This is the best workaround because it's the most surgical. It only disables QuickTime Parsing in DirectShow. DirectShow's other functionality is not affected," said Microsoft officials.

"This workaround covers all known attack vectors. Therefore, if you are not concerned about QuickTime content playback via DirectShow, this is the workaround we recommend you apply."

You can find the other two workarounds here.

Earlier this month, Microsoft released another security advisory concerning a privilege elevation vulnerability in Internet Information Services (IIS) 5.x and 6.0. IIS 7.0 is not affected.

That vulnerability involves IIS's WebDAV extension, which is not enabled by default on IIS 6.0. It also requires anonymous users to be given write access, which again is not the default on version 6.0.