dark_15 writes: "The latest patch for IE7, which fixed several bugs has apparently introduced a new problem for users. According to Network World, after patching a machine the user is presented with a 'File Download — Security Warning' dialog box when they restart IE7. When a user closes the dialog box, IE7 refuses to start.
The bug shows up when a user has moved their Temporary Internet Files folder from its default location. IE7 does not seem to have the correct permissions to read the Temporary Internet Files folder at the user-specified location. There is some speculation that the phishing filter inside that directory is the root cause of this issue.
Microsoft has responded with two workarounds which involves moving the Temporary Internet Files folder back to the default location, or by resetting the permissions at the new location."
dark_15 writes: "'Cisco says a flaw in the FTP server utility in its IOS router/switch software could be used as a backdoor by attackers. IOS FTP, which comes disabled by default in IOS, is used to upload IOS software images and other software to routers and switches remotely. However, Cisco says attackers could exploit a vulnerability in the FTP server to gain access to the file system of an IOS-based router or switch and affect configuration settings.'
dark_15 writes: "Cisco is warning users that nearly 80 of its routers are vulnerable to a hack tactic that got play last week.
Dubbed "drive-by pharming" by Symantec and university researchers who first publicized the danger in a paper, the attack involves luring users to malicious sites where a device's default password is used to redirect them to bogus sites. Once they are at those sites, their identities could be stolen or malware could be force-fed to their computers."
dark_15 writes: "Microsoft has apologized for serving malware via its websites and Windows Live Messenger software.
APC reader Jackie Murphy reported the problem:
'With Microsoft launching Vista along with their Defender software to protect users from viruses and spyware, it seems therefore to be an oxymoron that they have started to putting paid changing banner advertisements for malware, on the popular MSN groups servers.'"