WServerNews (formerly W2Knews)

MY PROFILE | PRIVACY

Vol. 14, #29 - Jul 13, 2009 - Issue #734

New Office 2010 Beta... But Do You Even Like Office 2007?

This issue of WServerNews is sponsored by

Editors Corner
- New Office 2010 Beta... But Do You Even Like Office 2007?
- Twittering End-Users Infected By Koobface Virus
- Quotes Of The Week
Webinars and Seminars
- Ninja Email Security Product Demonstration - July 14
- VIPRE Enterprise Product Demonstration - July 21
- Affordable, Enterprise Email Archiving - July 28
- 2009 BriForum End User Virtualization - July 21 - 23
Admin Toolbox
- Admin Tools We Think You Shouldn't Be Without:
Tech Briefing
- Microsoft Admits It Knew Of Critical IE Bug In Early '08
- Networking To Enhance Your IT Career
- How Win7 Stands Up To Security Tests
- Choosing Between Type 1 And Type 2 Client Virtualization
Windows Server News
- Configuring Hyper-V Hosts With Microsoft's VMMCA
Third Party News
- This Week's New Crop Of Multi-Platform Vulnerabilities
WServerNews Fave Links
- This Week's Links We Like. Tips, Hints And Fun Stuff.
WServerNews - Product of the Week
- Centrally Rollout New Software, Upgrades & Ensure App Usability

Centrally Rollout New Software, Upgrades & Ensure App Usability

Desktop Authority allows you to automate the software deployment process. Desktops will automatically install applications or upgrades from the closest deployment server.

Deploy MSI packages in minutes not hours
Target only users who need the application or patch
Update registry and permission settings to ensure updates are usable
Ensure roaming users automatically have the applications they need to be productive

ScriptLogic's Desktop Authority simplifies the deployment process and increases the ability for IT to selectively deploy applications.
http://www.wservernews.com/090713-Desktop-Authority

	Editors Corner

New Office 2010 Beta... But Do You Even Like Office 2007? Microsoft has released a slick website promoting Office 2010, and will likely announce the Office 2010 beta at the annual Partner Conference in New Orleans next week. The site has cute videos but not much substance. So now that Redmond is getting set to release Office 2010, what I'm interested in is do you even like Office 2007? Looks like the jury is split on this one. Let me know? Yes! Love it! Eh, I don't really care either way. No, I hate Office 2007 Vote here, third column bottom right: http://www.wservernews.com/090713-Vote Want to see the new Office 2010 videos? They are here: http://www.wservernews.com/090713-Office-Movie Twittering End-Users Infected By Koobface Virus The Twitter site claimed that the malware was sending fake tweets when the user logs into Twitter due to them being infected. Sunbelt Software's Research spokesperson Tom Kelchner stated that it sends a tweet with a link to a home video or a site, and when a user runs the video they are infected. Koobface then sends similar tweets to all of the users friends to infect them. Trend Micro's advanced threats researcher Ryan Flores said: "This is in contrast with previous Koobface Twitter activity wherein only three TinyURLs pointing to Koobface were used." "As of writing, there are a couple of hundred Twitter users affected by Koobface in the past few hours, but dozens more are being infected as we speak. We advise Twitter users to prevent from clicking URLs on tweets, specially if the tweet advertises a home video." Twitter said: "We are currently suspending all accounts that we detect sending such bogus tweets. If we suspend your account, we will send you an email notifying you of the suspension. This email also includes tips for removing the malware from your PC." More at SCMag: http://www.wservernews.com/090713-Twitter-Koobface Quotes Of The Week "All things are difficult before they are easy." -- Dr. Thomas Fuller (1654 - 1734) "Everything is easy when you know how." -- Andy Andrews Warm regards, and thank you for being a WServerNews subscriber. No trees were killed in the sending of this message, but a large number of electrons were terribly inconvenienced. Please tell your friends about us. They can subscribe here: http://www.wservernews.com/090713-Subscribe PS: Did you know this newsletter has a sister publication for XP users called WXPnews? You can subscribe here, and tell your friends: http://www.wservernews.com/090713-WXPNews PPS: And of course we also have our weekly VistaNews. You can subscribe here, and tell your friends too: http://www.wservernews.com/090713-VistaNews

Hope you enjoy this issue of WServerNews! Warm regards, Stu Sjouwerman |

Email me: [email protected]

Automated Uninstall of Symantec AV

No more 2-day SEP V11 Migration Classes! Sunbelt built VIPRE Enterprise; a completely new technology combining corporate antivirus plus an enterprise antispyware solution for total endpoint security designed by admins for admins. And that means EASY DEPLOYMENT. Save your IT budget and don't renew products from Symantec, McAfee and Trend Micro, Learn how VIPRE Enterprise takes much less resources than the competition! It's clearly time to ditch expensive, bloated, old-style AV products. Competitive Upgrade price: $10 per seat:
http://www.wservernews.com/090713-VIPRE-Enterprise

	Webinars and Seminars

Ninja Email Security Product Demonstration - July 14 Fight spam, viruses, trojans, phishing and other email security threats with Ninja? Email Security for Exchange. Join us for a look at this 'all-in-one' integrated and policy-based email security solution and learn how Sunbelt Software can help protect your enterprise environment and cut your Exchange admin time in half. Tuesday, July 14, 2009, 2:00pm - 2:30pm EDT http://www.wservernews.com/090713-Ninja-Demo VIPRE Enterprise Product Demonstration - July 21 Want total malware protection without the bloat? Join us for a look at VIPRE® Enterprise and learn how Sunbelt started with a blank slate to design a new, next-generation antivirus and antispyware technology to deal with today's complex malware in the most comprehensive, highly efficient manner. Tuesday, July 21, 2009, 2:00pm - 2:30pm EDT http://www.wservernews.com/090713-VIPRE-Demo Affordable, Enterprise Email Archiving - July 28 Exchange performance is suffering. Your users complain about email storage and don't want any quotas. Your CEO requires legal compliance. Want a high-end, feature-rich, admin-friendly product that solves all these issues at a very affordable price? Then don't miss this Sunbelt Exchange Archiver? webinar. Tuesday, July 28, 2009, 2:00pm - 3:00pm EDT http://www.wservernews.com/090713-Email-Archiving 2009 BriForum End User Virtualization - July 21 - 23 At this year's BriForum conference, 30 top independent experts, including analyst and blogger Brian Madden will hone in on how to accomplish more with less and optimize your virtual desktop infrastructures, Terminal Services / Remote Desktop Services, and application streaming projects. Plus with Windows 7 around the corner, you'll get tips and best practices for how to prepare your desktop for big changes in the second half of 2009. This event is only happening once this year, July 21 - 23 at the Hilton Chicago Hotel. To learn more about this event and to find out if you qualify for one of the many registrant fee discounts, visit the event website or contact Jackie Anderson, 781-657-1380. http://www.wservernews.com/090713-BriForum

	Admin Toolbox

Admin Tools We Think You Shouldn't Be Without: Make it easy to track user access to your Windows file servers! ScriptLogic's File System Auditor: Free Trial! http://www.wservernews.com/090713-File-System-Auditor Simplify your life with mPowerTools - 100+ Reports - Tackle AD chores in bulk A Search & Replace Tool - you'll never script again & no 3rd party databases! http://www.wservernews.com/090713-mPowerTools Automatically fix links when you move or rename files! Patented technology lets you perform data migrations without broken links. http://www.wservernews.com/090713-LinkFixerPlus

	Tech Briefing

Microsoft Admits It Knew Of Critical IE Bug In Early '08 Microsoft on Thursday confirmed it has known about a bug behind widespread Internet Explorer attacks for more than a year, but defended its security process against critics who say it should have acted faster. More at ComputerWorld: http://www.wservernews.com/090713-IE-Bug Networking To Enhance Your IT Career Networking is a critical element for maintaining a successful career in IT. Staying in touch with existing colleagues and attending events and creating new contacts is crucial. The top people in IT - and any field - are those who make themselves known. This tip offers expert advice for keeping and making good contacts and taking advantage of networking opportunities. http://www.wservernews.com/090713-IT-Career How Win7 Stands Up To Security Tests Windows 7 RC1 is proving to be faster and more stable than its predecessor. Devoid of ridiculously quirky user interface issues, overall, Win7 has been a much better experience compared to the trials and tribulations demonstrated with Vista. But how does Win7 measure up on the security scale? Find out here: http://www.wservernews.com/090713-Win7-Security Choosing Between Type 1 And Type 2 Client Virtualization One of the trends in the desktop virtualization now is "client virtualization," where a virtual machine is run directly on a user's laptop or desktop computer. This is nice because it's NOT server-based computing, so it works offline and with graphically intense applications. When looking at running a virtual machine directly on a client device, there are two types of ways this can be done, commonly called "type 1" and "type 2" solutions. Learn the difference between these two solutions and key considerations for choosing the right option for your organization. http://www.wservernews.com/090713-Client-Virtualization-Types

	Windows Server News

Configuring Hyper-V Hosts With Microsoft's VMMCA Microsoft's Virtual Machine Manager Configuration Analyzer (VMMCA) can verify that a host server is ready for Hyper-V R2 and, after installation, validate the configuration. Learn the correct Hyper-V settings you need to use VMMCA for configuration. http://www.wservernews.com/090713-Configure-Hyper-V

Third Party News

This Week's New Crop Of Multi-Platform Vulnerabilities

SNSI uses the latest Mitre Common Vulnerabilities and Exposures (CVE) list of computer incidents. It also contains the latest SANS/FBI top 20 vulnerability list. SNSI also uses the latest CERT, CIAC Microsoft and FedCIRC (Department of Homeland Security) advisories.

New Checks
L2565	RealPlayer 10 SWF frame handling vulnerability - SuSE	
L2566	Adobe Acroread getAnnots & customDictionaryOpen flaws - SuSE	
L2568	Cyrus-sasl encode64 saslutil.c string input weakness - SuSE	
L2569	Wireshark multiple security vulnerabilities - June 2009 - SuSE	
L2570	Ganglia-monitor-core process_path function error - SuSE	
L2578	Adobe Acroread overflow & memory corruption flaws July 2009 - SuSE
L2580	OptiPNG GIFReadNextExtension after-free weakness - SuSE	
L2581	CUPS NULL pointer dereference flaw - SuSE	
L2582	Quagga BGP daemon AS path long string error - SuSE	
L2585	Perl-DBD-Pg remote DBD::pg & dequote_bytea errors - SuSE	
L2586	Irssi off-by-one error in event_wallops function - SuSE	
L2588	Net-SNMP fmtaddr function TCP wrapper host.allow bypass - SuSE	
L2589	ImageMagick/GraphicsMagick flaw in XMakeImage function - SuSE	
L2590	PERL Compress::Raw::Zlib inflatevulnerability - SuSE	
L2591	Ipsec-Tools racoon memory leak & pointer flaws - SuSE	
L2592	Poppler multiple JBIG2 decoder security issues - SuSE	
L2594	Tomcat6 multiple vulnerabilities July 2009 - SuSE	
L2595	Gstreamer-plugins MED file handling error - SuSE	
S65	Lightweight Availability Collection Tool Vulnerability - Solaris	
W3636	Msvidctl.dll/MPEG2TunnelRequest ActiveX Vulnerabilities - XP/W2K3	
L2567	Apache2-mod_security2 mulitpart processing weakness - SuSE	
L2571	GhostScript JBIG2 decoder/BaseFont & CCITTFax decoder flaws- SuSE	
L2572	Libwmf vector graphics library weakness - SuSE	
L2573	Libxine1 gt_error_parse_trak_atom() function error - SuSE	
L2574	Net-SNMP netsnmp weakness using TCP wrappers - SuSE	
L2575	NTP crypto_recv with enabled autokey & cookedprint flaw - SuSE	
L2576	OpenSSL multiple DTLS fragment errors - SuSE	
L2577	Mozilla Firefox multiple vulnerabilities June 2009 - SuSE	
L2579	Java-1.6.0-ibm multiple security vulnerabilities - SuSE	
L2583	Pango glyph_string_set_size arbitrary long string flaw - SuSE	
L2584	Strongswan charon daemon vulnerabilities - SuSE	
L2587	OpenSSL DTLS out of sequence & ChangeCipher errors - SuSE	
L2593	Yast2 firewall failure to initialize during installation error - SuSE
L2596	Apache2-mod_php5 JSON parser & php_zip errors - SuSE	
M59	Safari 4.0.2 Security Updatre - Mac OS X	
N125	Clientless SSL VPN Vulnerabilities - Cisco ASA	
S70	Trusted Extensions panic with kernel UDP patch regressions - Solaris
S297	Kernel vulnerability in handling the process filesystem - OpenSolaris
S307	NFSv4 clients may lose data in file moves - Solaris 9	
S309	NetBackup mpt driver drop tape drive connections - Solaris 10	
S494	Net-SNMP GETBULK Request Handling - Solaris 10	
S533	Java System Access Mgr Cross Domain Controller Vul - Solaris 8 - 10	
W2850	FCKEditor CurrentFolder Upload Vulnerability	
W3120	Apple Safari WebKit Vulnerabilities - XP/W2K3/Vista/W2K8	
W3295	Apache Tomcat multiple vulnerabilities	


Updated Checks
H30	Wu-ftpd Local Directory Escape - HP-UX 11	
S124	NFS client may hang on remote file system access - Solaris 10	
W1142	Anti-virus Signature Outdated - McAfee	
W1986	Anti-virus Signature Outdated - Symantec	
W1999	Anti-virus Signature Outdated - Trend Micro	
W2067	Anti-virus Signature Outdated - F-Secure	
W2070	Anti-virus Signature Outdated - CA eTrust	
M76	ClamXav / ClamAV signatures not the latest - Mac OS X	
M80	Virex signature file out of date - Mac OS X	
S33	ClamAV signatures not updated - Solaris	
S68	IP Multicast and Event Port API Vulnerabilities - Solaris	
S130	Kerberos Mech Libraries/SPNEGO/multiple vulnerabilities - Solaris 8 - 10	
W2012	Anti-virus signature outdated - Avast! 4	
W2013	Anti-virus signature outdated - AVG 8 - W2K/XP/W2K3

Sunbelt Network Security Inspector version 2.0.2670.0 Definition Set 185 was released July 10, 2009. Sunbelt Software recommends you download the new SNSI Vulnerability Update Definitions 185, scan, and patch your machines today. To get the latest SNSI version, visit:
http://www.wservernews.com/090713-SNSI

	WServerNews Fave Links

This Week's Links We Like. Tips, Hints And Fun Stuff. Wow, a really awesome card magic trick. Let me know if you can figure it out: http://www.wservernews.com/090713-Magic The fastest 57 Chevy pickup truck in the World goes 0-300 mph in 8 seconds: http://www.wservernews.com/090713-Fastest-Truck If extraterrestrial civilizations are monitoring our TV broadcasts, then this is what they are currently watching: http://www.wservernews.com/090713-Electromagnetic-Leak Students from Turkey's Sakarya University have unveiled a remarkable attempt at creating Europe's most fuel-efficient vehicle. Dubbed the Sahimo, their pint-sized hydrogen car is cable of eking out an incredible 568 km on 1 liter of fuel (about 1,336 miles per gallon). http://www.wservernews.com/090713-Hydrogen-Vehicle For those who enjoy Evian mineral water, the Sugarhill Gang and CGI-enhanced roller-dancing babies: http://www.wservernews.com/090713-Babies The stunning Citroen GT concept car stops traffic as it cruises the streets of London: http://www.wservernews.com/090713-Supercar Web Site Story - CollegeHumor's Epic Internet Musical: http://www.wservernews.com/090713-Musical Funny video about a blonde and two geeks -- 2nd place winner of a competition by the University of Copenhagen: http://www.wservernews.com/090713-Science-Education Seen the weird new MSFT commercials for IE8? Yikes: http://www.wservernews.com/090713-Playlist Michael Jackson's personal arcade - this is quite a tour! http://www.wservernews.com/090713-Arcade A German firm called 'Style Your Garage' creates posters for garage doors that make it look as if your garage is where the action is. F1 car, F-18 Hornet, etc: http://www.wservernews.com/090713-GarageWraps The 50 year history of the Olympus PEN viewfinder camera in stop motion. 60.000 pictures were shot and 9.600 prints developed. No post production: http://www.wservernews.com/090713-Camera Time lapse video of night sky as it passes over Fort Davis, Texas (Alt. 5,000 ft). The galactic core of the Milky Way is brightly displayed: http://www.wservernews.com/090713-Night-Sky You don't really need to speak Russian to know what's going on here: http://www.wservernews.com/090713-Rich Top Gear puts two of the fastest road cars of all time head to head - Bugatti Veyron vs Mclaren F1: http://www.wservernews.com/090713-TopGear Want to gross out some one? They looked in the sewer and... they FOUND something. Ewwww! What IS that?!?!? http://www.wservernews.com/090713-What-Is-It

	WServerNews - Product of the Week

Centrally Rollout New Software, Upgrades & Ensure App Usability Desktop Authority allows you to automate the software deployment process. Desktops will automatically install applications or upgrades from the closest deployment server. Deploy MSI packages in minutes not hours Target only users who need the application or patch Update registry and permission settings to ensure updates are usable Ensure roaming users automatically have the applications they need to be productive ScriptLogic's Desktop Authority simplifies the deployment process and increases the ability for IT to selectively deploy applications. http://www.wservernews.com/090713-DesktopAuthority

Copyright © TechGenix Ltd.
TechGenix.com is in no way affiliated with Microsoft Corp.
Please read our Privacy Policy and Terms & Conditions.