Description: This update resolves a privately reported vulnerability in the Windows Internet Printing Service that could allow remote code execution in the context of the current user. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. The security update addresses this vulnerability by changing the way that memory is allocated within the Internet Printing Protocol (IPP) service. Keep reading →

Description: This security update resolves one publicly disclosed and two privately reported vulnerabilities in the Windows kernel. A local attacker who successfully exploited these vulnerabilities could take complete control of an affected system. The vulnerabilities could not be exploited remotely or by anonymous users. The security update addresses the vulnerabilities by correcting window property validation passed during the new window creation process, correcting the manner in which system calls from multiple threads are handled, and correcting validation of parameters passed to the Windows Kernel from user mode. Keep reading →

Description: This security update resolves five privately reported vulnerabilities and one publicly disclosed vulnerability. The vulnerabilities could allow information disclosure or remote code execution if a user views a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. The security update addresses these vulnerabilities by modifying the way that Internet Explorer handles the error resulting in the exploitable condition. Keep reading →

Of the 8 updates that will be released next Tuesday, 4 affect Vista (all ‘Important’) and 1 affects IE7 (’Critical’). Keep reading →

If you’re getting blue screens after installing iTunes 8, Ed describes the problem and notes that Apple has provided an ‘Update’ that fixes it. Keep reading →

Description: This security update resolves a privately reported vulnerability in Windows Media Encoder 9 Series. The vulnerability could allow remote code execution if a user viewed a specially crafted Web page. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. The security update addresses the vulnerability by performing additional parameter validation and modifying the way that controls in Windows Media Encoder interact with Internet Explorer. Keep reading →

Next Tuesday expect one critical update for the Media Player in Vista. Keep reading →

You try to install or run a program, or try to install an update on a Windows Vista-based computer.
You may receive one of the following error messages:

• Program too big to fit in memory
• ProgramName is not a valid Win32 application

In Windows Vista and in Windows Server 2008, software updates use a new technology to install .msu files. To manually install .msu files in a Windows Vista or Windows Server 2008 environment, you must have the Wusa.exe tool installed. However, this tool returns a “1 (S_FALSE)” error code when either of the following conditions is true:

• You try to install a software update that is already installed on the computer.
• You try to install a software update that does not apply to the computer.

Microsoft has released an update for Media Center Extenders for Windows Vista. This update is intended for computers that are running Windows Vista Home Premium or Windows Vista Ultimate.